$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: BKAszcj5Rzgaifw2jhITtA5ZEWHOa20ISRgWvx0ZCUI= Subject key identifier: 9B:50:8E:AE:03:65:D6:31:C4:44:85:4B:C1:99:4C:51:6B:65:91:06 Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 0771 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 0764 Signing time: Tue 04 Nov 2025 21:47:23 +0000 Manifest this update: Tue 04 Nov 2025 21:47:23 +0000 Manifest next update: Tue 11 Nov 2025 21:47:23 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: 8xIcOq+GTCENaSTrCxqNkW77Vc3U80pgAL2tzLbmlsw=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: 2jsCymQavrx92Kq4v6h75mDYqdyK8XpnNBvpUzJpvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Nov 4 21:47:23 2025 GMT Not After : Nov 11 21:47:23 2025 GMT Subject: CN=690a746b-9e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:99:77:e8:ed:08:6c:58:88:a9:fc:bd:03: 1d:27:db:24:4a:23:e4:12:c2:93:63:9a:74:a5:28: 75:c9:6c:bc:85:60:01:ec:07:c8:36:d0:5f:ea:a5: 80:f7:81:80:73:d5:f8:1f:4b:dc:12:5a:73:a1:16: a2:51:66:7b:4f:2c:6d:7b:81:31:20:84:8b:ef:99: 4a:4b:28:4b:53:9a:5f:b5:6f:4d:dd:34:17:f1:27: db:69:b3:95:c2:a5:88:78:1c:97:38:3c:c2:b8:69: 8a:1f:58:98:b8:31:ab:bf:1c:62:34:86:d3:83:42: 60:59:a2:2d:7a:80:76:9e:e9:66:0d:fe:9b:77:02: bd:74:5e:46:04:be:eb:e3:e1:7f:62:d8:c9:4b:48: 53:82:35:d1:88:bd:0c:c9:8c:18:9e:d7:35:dd:f9: e8:f1:fd:9f:e6:74:f7:1c:b4:69:97:6c:e6:a5:39: ca:b2:00:bc:e5:89:49:5a:97:0c:f0:2e:18:c5:3d: 1d:86:1d:19:a8:5b:fe:47:1c:be:37:77:30:ec:5a: a4:29:b9:07:c8:b8:24:8c:68:da:a4:ad:7e:d9:37: a7:ae:d9:dd:75:24:ce:e1:9d:21:16:b5:55:40:d4: 61:c3:cd:d8:84:9b:f4:94:9b:ee:e2:26:20:60:e4: d5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:50:8E:AE:03:65:D6:31:C4:44:85:4B:C1:99:4C:51:6B:65:91:06 X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:69:3a:72:71:93:ee:35:33:9b:9b:38:ac:87:c9:07:b3:d1: 53:b7:37:91:42:37:c9:7c:69:43:11:9f:e8:d3:d7:37:77:b8: de:6d:0a:10:0e:04:97:c7:ba:1e:77:f0:34:d2:bd:c0:8c:6f: 02:11:42:01:21:16:76:38:f7:4f:0e:0f:fd:a7:65:91:51:9d: c5:3a:00:3c:ae:c1:b1:32:02:75:63:06:42:69:0f:db:7a:60: ff:44:37:6e:b5:e2:d1:70:b0:53:eb:22:82:32:5a:90:4e:c0: ac:43:68:09:62:6e:a3:cf:cb:5b:3b:46:c9:6b:82:ae:8c:ec: 98:a1:2e:7d:c3:c2:0b:d7:16:21:ed:00:90:1e:7c:99:72:d1: df:b2:97:e2:86:e7:c3:7a:29:fc:d0:46:fe:94:9c:ce:de:d0: 2e:c7:f5:2c:e7:69:be:71:02:19:12:6d:23:3e:fd:1c:1a:de: 69:bc:2d:a5:cc:85:d3:b0:f9:35:9e:81:8a:18:6c:ca:94:f1: 3f:cc:c3:8d:33:4e:41:1a:59:b4:97:2d:9f:09:ea:90:ca:38: b4:a9:96:f0:98:56:5a:1d:57:46:19:24:48:83:dd:d0:fd:72: 02:0e:6e:29:f4:9a:67:78:0e:40:33:4f:ff:28:29:2b:3e:33: f6:aa:73:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjUxMTA0MjE0NzIzWhcNMjUxMTExMjE0NzIzWjAYMRYwFAYD VQQDEw02OTBhNzQ2Yi05ZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwmZd+jtCGxYiKn8vQMdJ9skSiPkEsKTY5p0pSh1yWy8hWAB7AfINtBf6qWA 94GAc9X4H0vcElpzoRaiUWZ7Tyxte4ExIISL75lKSyhLU5pftW9N3TQX8SfbabOV wqWIeByXODzCuGmKH1iYuDGrvxxiNIbTg0JgWaIteoB2nulmDf6bdwK9dF5GBL7r 4+F/YtjJS0hTgjXRiL0MyYwYntc13fno8f2f5nT3HLRpl2zmpTnKsgC85YlJWpcM 8C4YxT0dhh0ZqFv+Rxy+N3cw7FqkKbkHyLgkjGjapK1+2TenrtnddSTO4Z0hFrVV QNRhw83YhJv0lJvu4iYgYOTV3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtQjq4D ZdYxxESFS8GZTFFrZZEGMB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDaTpycZPuNTObmzish8kHs9FTtzeRQjfJfGlDEZ/o09c3d7jebQoQ DgSXx7oed/A00r3AjG8CEUIBIRZ2OPdPDg/9p2WRUZ3FOgA8rsGxMgJ1YwZCaQ/b emD/RDduteLRcLBT6yKCMlqQTsCsQ2gJYm6jz8tbO0bJa4KujOyYoS59w8IL1xYh 7QCQHnyZctHfspfihufDein80Eb+lJzO3tAux/Us52m+cQIZEm0jPv0cGt5pvC2l zIXTsPk1noGKGGzKlPE/zMONM05BGlm0ly2fCeqQyji0qZbwmFZaHVdGGSRIg93Q /XICDm4p9JpneA5AM0//KCkrPjP2qnMC -----END CERTIFICATE-----Generated at Wed Nov 5 15:34:12 2025 by rpki-client