$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: i2Y24kZIaXC/UdNP+40kjdI9DoeosePfWY/YAQlVWfs= Subject key identifier: AA:DD:FE:63:DC:38:FB:99:95:42:EE:C8:F6:0D:A9:10:39:FA:62:AE Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 07B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 07A3 Signing time: Sat 28 Feb 2026 22:00:07 +0000 Manifest this update: Sat 28 Feb 2026 22:00:07 +0000 Manifest next update: Sat 07 Mar 2026 22:00:07 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: U4rdTcqK5Dl1GsYviKA6F7HcNjIPEFH5wM4BDuFfhi0=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: 2jsCymQavrx92Kq4v6h75mDYqdyK8XpnNBvpUzJpvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 22:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1968 (0x7b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Feb 28 22:00:07 2026 GMT Not After : Mar 7 22:00:07 2026 GMT Subject: CN=69a36567-02ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1d:f3:8c:8c:99:05:68:9e:1a:fd:8c:dd:d0: de:de:67:42:42:e3:cb:4b:a8:60:5e:9d:1c:c2:74: b9:7d:f0:a0:6f:94:8a:39:57:29:a2:04:dd:92:08: f5:28:51:87:3d:3c:61:bf:96:a1:cc:f8:24:1a:41: 9b:cb:e8:ae:0c:7f:87:dc:c4:d8:ca:a9:e5:df:ca: 0a:66:60:29:e5:04:68:37:7c:18:36:dc:20:f0:80: 8c:a2:51:00:8d:b5:10:c5:68:6f:69:a9:61:70:c7: 3a:d1:c6:50:e0:73:bc:50:6d:e7:9a:3e:36:e8:7f: ae:84:63:e3:4d:76:60:4d:50:66:fc:bf:80:69:81: bf:7f:8a:c4:a9:58:2e:f8:41:a2:b6:25:8f:b8:dd: 43:d5:de:bb:72:95:73:2d:50:a9:4e:58:59:4e:ed: 6d:36:b3:58:ed:94:dc:59:f0:b4:52:00:67:c8:92: 7c:20:36:28:84:35:ec:27:c1:9d:38:3d:b0:f9:ae: 5f:ea:e2:10:3e:a9:21:be:11:93:34:ec:ab:24:df: 95:2b:0d:64:91:01:5d:c8:0b:ee:3f:a7:0a:9a:ed: 26:42:e5:70:9b:b1:70:c6:e0:3e:8e:6c:61:25:85: 94:91:11:08:3e:bb:2d:35:87:fe:5a:f0:48:f0:18: 3b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DD:FE:63:DC:38:FB:99:95:42:EE:C8:F6:0D:A9:10:39:FA:62:AE X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:34:5b:00:6d:e6:0f:77:3d:13:a2:f3:6a:fd:b0:33:17:54: 77:94:d2:43:5d:ee:e8:1c:0d:bd:29:ab:de:21:fb:4e:dc:aa: 79:fa:7f:ef:a7:b9:3a:11:e8:71:2c:0f:f4:a3:4e:5d:3a:a5: da:99:5a:e7:86:b0:6a:c4:68:00:41:dd:3b:c5:5f:6c:77:a0: f2:3e:7d:c2:8f:c5:9b:0c:14:39:9d:9b:07:e9:5a:c8:86:e7: c1:9b:24:25:e4:78:8c:b7:45:bd:a1:09:50:c7:0f:3c:fc:e1: b9:0b:76:10:72:ec:af:dd:cf:25:e5:a6:11:90:b8:58:d8:d6: 4c:09:a2:18:f8:9e:32:a0:c6:a6:ef:5a:ea:cf:d2:dd:11:81: 53:3e:cc:b4:47:0e:e6:83:a2:a2:8c:fa:59:20:f3:fd:92:ab: d4:61:90:12:44:69:1d:86:1f:46:a9:cf:7d:55:08:04:67:d3: fc:e9:78:7a:15:d5:ea:9d:8c:6d:14:96:9a:ce:de:d8:f3:48: e6:9a:de:49:ee:c5:37:d1:c1:cb:4a:d6:d8:c9:de:13:e3:91: 4b:5d:b9:c1:1b:da:88:50:44:b3:d0:73:8e:f4:7a:0b:25:96: e8:ff:ce:bb:63:05:d0:ea:9f:48:72:03:a4:ff:2d:5f:b6:57: cf:41:7b:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjYwMjI4MjIwMDA3WhcNMjYwMzA3MjIwMDA3WjAYMRYwFAYD VQQDDA02OWEzNjU2Ny0wMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh3zjIyZBWieGv2M3dDe3mdCQuPLS6hgXp0cwnS5ffCgb5SKOVcpogTdkgj1 KFGHPTxhv5ahzPgkGkGby+iuDH+H3MTYyqnl38oKZmAp5QRoN3wYNtwg8ICMolEA jbUQxWhvaalhcMc60cZQ4HO8UG3nmj426H+uhGPjTXZgTVBm/L+AaYG/f4rEqVgu +EGitiWPuN1D1d67cpVzLVCpTlhZTu1tNrNY7ZTcWfC0UgBnyJJ8IDYohDXsJ8Gd OD2w+a5f6uIQPqkhvhGTNOyrJN+VKw1kkQFdyAvuP6cKmu0mQuVwm7FwxuA+jmxh JYWUkREIPrstNYf+WvBI8Bg7CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrd/mPc OPuZlULuyPYNqRA5+mKuMB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfzRbAG3mD3c9E6Lzav2wMxdUd5TSQ13u6BwNvSmr3iH7Ttyqefp/76e5OhHo cSwP9KNOXTql2pla54awasRoAEHdO8VfbHeg8j59wo/FmwwUOZ2bB+layIbnwZsk JeR4jLdFvaEJUMcPPPzhuQt2EHLsr93PJeWmEZC4WNjWTAmiGPieMqDGpu9a6s/S 3RGBUz7MtEcO5oOiooz6WSDz/ZKr1GGQEkRpHYYfRqnPfVUIBGfT/Ol4ehXV6p2M bRSWms7e2PNI5preSe7FN9HBy0rW2MneE+ORS125wRvaiFBEs9BzjvR6CyWW6P/O u2MF0OqfSHIDpP8tX7ZXz0F7+A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:40:42 2026 by rpki-client