$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: UfTCjGQtCpIbHbTON2P6ecPXLYdK4feyPRC+TXLVNiI= Subject key identifier: 3D:E0:F6:EA:29:AA:47:33:FA:32:85:54:15:63:58:3A:33:FB:21:79 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 0198 Signing time: Sun 29 Mar 2026 04:03:19 +0000 Manifest this update: Sun 29 Mar 2026 04:03:18 +0000 Manifest next update: Sun 05 Apr 2026 04:03:18 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: +hXuIN6k/YGeQFytSSZsVnQ+Dx1FySFUqVexwQ/JGAg=) 2: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: owQYw9h+uccODUhkikEdlCDKK/hYVX6MWumcBf31Hrw=) 3: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: 0E4qYTpBck7zqd7XOVsdpYAiDLiP6vH0ev4CSQjnfXI=) 4: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: /8Gd5gZ758sNArtTS8yRpNug05q/Okyd5D7W2BUqcNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Mar 29 04:03:18 2026 GMT Not After : Apr 5 04:03:18 2026 GMT Subject: CN=69c8a487-c4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e7:a1:4a:bc:ec:84:2d:27:36:0a:bc:49:f1: a2:73:58:a4:d0:80:54:dd:2d:5d:52:af:f3:a8:08: 42:d7:e8:fb:56:f3:78:f3:89:bd:34:31:bb:40:b8: 1e:33:de:36:16:cf:6e:2b:a2:87:42:d7:aa:15:78: 33:dc:ac:d2:40:f1:db:18:78:66:3b:1a:70:35:f4: b6:65:cf:4e:5d:0b:d8:92:33:9f:e7:92:69:e8:de: 5a:9f:eb:9c:86:e0:4b:5a:03:48:d2:65:9b:fd:69: 00:98:71:0c:86:6e:3c:ae:3e:79:f7:f3:21:fe:62: 79:4e:25:3e:61:e3:ea:d8:ae:17:e8:bc:32:97:a6: 8a:bc:0f:e6:30:7f:e3:d9:84:71:17:cb:74:c6:3b: 62:11:55:fa:65:68:a0:97:b7:e3:7c:7b:7a:dc:15: 46:aa:9a:0a:d8:78:75:d4:fd:5f:65:be:29:56:cd: 8c:c6:bc:94:00:11:79:51:75:de:0d:43:c3:df:5d: 07:73:6b:5f:dd:4b:1a:29:10:ae:59:d0:9d:52:16: c1:5c:a2:f8:46:f8:ba:9e:4a:b5:72:71:11:b7:6e: 3b:d0:3a:95:b0:cb:17:0a:a0:da:02:77:04:e4:a4: 2c:4a:a1:4e:f5:82:ab:9f:00:40:cd:bc:a5:c9:56: 20:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E0:F6:EA:29:AA:47:33:FA:32:85:54:15:63:58:3A:33:FB:21:79 X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:d8:a4:1c:d6:be:84:2c:4f:81:6b:2f:bc:2c:81:4a:d3:01: 2b:26:2d:49:09:d5:f2:0a:8b:37:15:ce:63:29:9b:24:8c:91: 5c:bc:63:de:57:b9:4c:7b:60:e1:3f:df:61:98:ca:2a:27:3c: c6:8b:35:d0:77:bd:fb:78:67:6a:d3:cf:e0:52:de:45:87:55: 88:8f:98:08:44:5d:76:a0:ff:d1:d6:65:ff:28:22:90:b6:61: 35:af:de:2e:d1:ec:56:a5:c5:97:63:aa:0f:c2:4d:ca:04:1d: 83:c1:fd:a3:a0:e2:16:58:f0:9e:03:9f:07:bb:b4:56:96:78: 0c:3c:f0:56:b7:13:f6:e6:e3:f0:fe:94:74:b6:67:73:c1:65: 1d:5a:42:18:ee:8f:31:b0:2c:13:fa:f4:87:7f:84:09:d7:65: 20:25:7c:ab:4a:66:0b:69:41:3b:2b:62:43:c6:aa:b9:48:9d: 0b:12:65:e8:f7:35:75:88:c7:5a:d6:5d:a1:c0:47:dd:86:b8: 5c:78:ec:e4:0b:8f:ec:b1:df:6a:ce:9f:3a:27:00:bd:5b:db: 73:3a:27:06:88:2b:f4:7c:57:fe:77:e8:2c:df:29:b3:0f:02: 52:cf:48:8d:eb:3b:a9:6f:5a:57:e4:82:e9:06:42:e2:16:c0: f9:2f:4e:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjYwMzI5MDQwMzE4WhcNMjYwNDA1MDQwMzE4WjAYMRYwFAYD VQQDEw02OWM4YTQ4Ny1jNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruehSrzshC0nNgq8SfGic1ik0IBU3S1dUq/zqAhC1+j7VvN484m9NDG7QLge M942Fs9uK6KHQteqFXgz3KzSQPHbGHhmOxpwNfS2Zc9OXQvYkjOf55Jp6N5an+uc huBLWgNI0mWb/WkAmHEMhm48rj559/Mh/mJ5TiU+YePq2K4X6Lwyl6aKvA/mMH/j 2YRxF8t0xjtiEVX6ZWigl7fjfHt63BVGqpoK2Hh11P1fZb4pVs2MxryUABF5UXXe DUPD310Hc2tf3UsaKRCuWdCdUhbBXKL4Rvi6nkq1cnERt2470DqVsMsXCqDaAncE 5KQsSqFO9YKrnwBAzbylyVYghQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD3g9uop qkcz+jKFVBVjWDoz+yF5MB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZ T25tY2s0cWc1QXBsSDh2Z2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAetikHNa+hCxPgWsvvCyBStMBKyYtSQnV8gqLNxXOYymbJIyRXLxj3le5THtg 4T/fYZjKKic8xos10He9+3hnatPP4FLeRYdViI+YCERddqD/0dZl/ygikLZhNa/e LtHsVqXFl2OqD8JNygQdg8H9o6DiFljwngOfB7u0VpZ4DDzwVrcT9ubj8P6UdLZn c8FlHVpCGO6PMbAsE/r0h3+ECddlICV8q0pmC2lBOytiQ8aquUidCxJl6Pc1dYjH WtZdocBH3Ya4XHjs5AuP7LHfas6fOicAvVvbczonBogr9HxX/nfoLN8psw8CUs9I jes7qW9aV+SC6QZC4hbA+S9OvA== -----END CERTIFICATE-----Generated at Mon Mar 30 17:25:01 2026 by rpki-client