$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: HuBnIcrvxbEP9NymfpQfjGldBQvycmHyeEn7aV663vk= Subject key identifier: A7:28:E5:A3:50:85:8B:3C:44:D7:B8:AB:7C:A1:88:0A:09:4E:7C:21 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 0144 Signing time: Wed 29 Oct 2025 04:10:11 +0000 Manifest this update: Wed 29 Oct 2025 04:10:10 +0000 Manifest next update: Wed 05 Nov 2025 04:10:10 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: Q+LmEWLbh/Ee/uRIYIubAnCj1G8pw0nArcTZawb27VY=) 2: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: nZip0umQgQfNUVSJn6scZoNl7nqXBFARNgNZLe4qOTs=) 3: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: orqQypE5bc7gvUO4QzKhBPPdldDDB/JBoIJgb5EjBz0=) 4: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: 6lk7JsGwO4/wcTnuVTo0XHToPhtmgaBJiaipZQHj0o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 04:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Oct 29 04:10:10 2025 GMT Not After : Nov 5 04:10:10 2025 GMT Subject: CN=690193a3-36ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e2:5e:29:81:c9:97:03:e1:84:e2:e4:14:1c: 5a:09:85:86:08:dd:ba:20:b8:54:c2:fd:fc:67:05: 9a:33:a3:b2:d4:9b:df:a7:d8:19:2a:09:1e:9d:89: 83:20:34:34:79:3d:41:e6:f2:b6:ae:47:9e:ad:3c: 21:3e:29:45:a5:08:1b:b1:9a:e1:bf:c9:df:0f:7d: c6:ec:61:33:b7:f9:eb:d0:db:8f:ef:4e:a7:9d:99: d9:67:27:61:fc:9c:c6:d5:80:53:89:81:7c:f5:01: 11:0f:1e:1b:35:b6:bc:a1:2e:fb:56:1b:b7:c9:7c: de:64:6c:bb:7e:a4:da:cb:9b:82:a6:a0:00:40:d4: fd:3f:4b:90:1f:52:e8:6a:6a:f0:cf:4e:dd:ec:30: a4:93:b4:9d:8d:a8:7f:35:48:81:6c:fd:56:54:c1: b8:9c:c5:66:07:4b:0e:b3:a4:fb:ed:82:ee:2c:6d: 03:6b:f6:44:73:21:36:c1:a6:65:94:3e:29:db:b3: 22:a4:74:01:a2:2a:d3:6b:32:b3:b1:36:87:82:a0: 7b:6c:1f:cf:e8:46:7d:eb:fa:7c:15:0c:cd:28:e4: 66:78:0f:bd:da:02:aa:f8:b3:ba:3d:11:ed:84:29: 0b:7e:00:97:7e:fd:a1:e6:f2:71:a0:8a:0a:72:2d: 27:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:28:E5:A3:50:85:8B:3C:44:D7:B8:AB:7C:A1:88:0A:09:4E:7C:21 X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:a5:24:27:b2:7d:ce:73:b5:65:fb:d4:fc:72:f0:bb:f0:82: 47:18:f6:cc:1d:f1:6a:4b:de:02:44:f1:50:cc:20:3b:d6:b5: f4:f1:b3:ce:8b:d6:94:54:1d:91:4a:db:ba:85:07:13:63:b3: ed:b8:f1:9a:52:dd:d0:68:c5:79:4b:1d:87:33:fa:8a:30:f6: 47:a7:a1:21:b8:6b:8d:20:b1:f0:d4:d4:30:fd:79:58:18:55: 80:52:ac:c9:81:b4:b6:e5:b1:d7:c5:0d:19:5c:fe:b2:e7:81: 25:b5:80:4a:f9:43:61:4b:bd:d5:64:d5:37:54:d0:8b:3b:a2: 3b:41:9c:46:95:90:d9:fb:a6:b3:91:65:a5:5b:c7:2e:82:5a: eb:11:68:93:a7:fb:23:c2:7d:01:13:81:12:b5:5e:fd:b9:d5: 06:e8:a7:d0:7a:bf:53:f3:fd:20:f2:a8:2c:d3:17:a1:d9:81: 47:a6:50:f3:c3:bb:c4:4b:40:4a:9c:89:8e:f4:48:04:ca:7b: d1:6b:3e:4e:55:bd:67:30:fa:8f:47:14:e6:64:f6:04:83:f6: 4d:1f:64:91:c4:63:bc:d5:53:8f:66:69:b6:ea:89:2f:c5:bd: a8:47:5b:9b:88:44:22:a0:a3:e5:fb:e9:27:bf:2b:1d:f4:b8: 9b:9e:d6:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjUxMDI5MDQxMDEwWhcNMjUxMTA1MDQxMDEwWjAYMRYwFAYD VQQDEw02OTAxOTNhMy0zNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOJeKYHJlwPhhOLkFBxaCYWGCN26ILhUwv38ZwWaM6Oy1Jvfp9gZKgkenYmD IDQ0eT1B5vK2rkeerTwhPilFpQgbsZrhv8nfD33G7GEzt/nr0NuP706nnZnZZydh /JzG1YBTiYF89QERDx4bNba8oS77Vhu3yXzeZGy7fqTay5uCpqAAQNT9P0uQH1Lo amrwz07d7DCkk7Sdjah/NUiBbP1WVMG4nMVmB0sOs6T77YLuLG0Da/ZEcyE2waZl lD4p27MipHQBoirTazKzsTaHgqB7bB/P6EZ96/p8FQzNKORmeA+92gKq+LO6PRHt hCkLfgCXfv2h5vJxoIoKci0nXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKco5aNQ hYs8RNe4q3yhiAoJTnwhMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZ T25tY2s0cWc1QXBsSDh2Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCapSQnsn3Oc7Vl+9T8cvC78IJHGPbMHfFqS94CRPFQzCA71rX08bPO i9aUVB2RStu6hQcTY7PtuPGaUt3QaMV5Sx2HM/qKMPZHp6EhuGuNILHw1NQw/XlY GFWAUqzJgbS25bHXxQ0ZXP6y54EltYBK+UNhS73VZNU3VNCLO6I7QZxGlZDZ+6az kWWlW8cuglrrEWiTp/sjwn0BE4EStV79udUG6KfQer9T8/0g8qgs0xeh2YFHplDz w7vES0BKnImO9EgEynvRaz5OVb1nMPqPRxTmZPYEg/ZNH2SRxGO81VOPZmm26okv xb2oR1ubiEQioKPl++knvysd9LibntaY -----END CERTIFICATE-----Generated at Thu Oct 30 03:35:51 2025 by rpki-client