$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: OuTo5+BKbBa5CWt6k0sJWUA4MSlwZj23emkVSnFUq7Q= Subject key identifier: FA:A2:69:2C:45:85:AC:DD:62:B2:1F:11:2F:B6:F7:38:A6:A6:9C:10 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 012C Signing time: Tue 09 Sep 2025 04:44:34 +0000 Manifest this update: Tue 09 Sep 2025 04:44:34 +0000 Manifest next update: Tue 16 Sep 2025 04:44:34 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: d1kZlUkCyBJkZH2JrpIsQ7nJ6l8yMpA3WHHuw8H2jNI=) 2: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: nZip0umQgQfNUVSJn6scZoNl7nqXBFARNgNZLe4qOTs=) 3: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: orqQypE5bc7gvUO4QzKhBPPdldDDB/JBoIJgb5EjBz0=) 4: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: 6lk7JsGwO4/wcTnuVTo0XHToPhtmgaBJiaipZQHj0o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Sep 9 04:44:34 2025 GMT Not After : Sep 16 04:44:34 2025 GMT Subject: CN=68bfb0b2-b3e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e4:df:fc:2f:1a:f0:e3:96:78:19:06:b7:53: 73:83:68:98:00:0b:f7:4a:87:c8:ca:b7:21:d4:b4: f9:7b:55:f4:0b:70:80:76:13:49:08:27:d0:e2:8e: 4b:58:ba:95:fc:6f:5e:63:f6:3b:70:2c:10:ac:6b: 6d:07:25:f2:38:d5:8f:52:b7:10:d0:16:4d:2a:9e: db:d1:e3:eb:d0:23:e0:07:87:15:5a:68:6c:90:60: a7:2c:26:f4:da:5e:27:1a:93:56:40:29:ee:4a:a3: ef:1d:27:12:09:7e:6e:6b:39:eb:f4:74:3b:97:cd: e7:47:7f:93:50:3b:9d:b8:86:4e:42:f7:ea:42:25: 21:56:f2:1b:9f:75:3e:57:46:bd:75:26:e0:7e:cf: 3a:42:7c:b2:c2:75:9c:bb:ee:e3:75:d3:46:92:80: 16:a7:13:17:f0:d3:56:c7:f6:59:55:13:dd:73:d5: d2:14:32:46:bf:b2:aa:9f:6f:80:f9:4b:51:bd:01: 84:24:45:8f:ad:75:de:e0:1e:0a:e1:1e:77:0c:f3: ad:22:d5:99:08:2e:bc:7d:1d:0c:7e:08:2d:2a:45: fb:fe:3c:b5:f5:96:4f:35:0a:6b:23:0f:e1:ca:b5: b0:ad:ac:72:99:b1:d6:95:a4:60:1a:28:34:93:5e: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A2:69:2C:45:85:AC:DD:62:B2:1F:11:2F:B6:F7:38:A6:A6:9C:10 X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:df:4a:d9:84:08:a7:0b:be:c7:da:44:d1:dd:61:c5:5b:e5: 79:ed:a9:8c:b2:90:36:1c:7b:f4:8c:a9:78:f2:81:7b:14:04: a8:27:c3:13:93:24:b9:b4:c1:58:f2:ec:95:0f:e1:dd:34:9e: 48:73:3e:05:35:a1:59:59:0d:39:f1:8e:9f:f8:18:07:0f:69: 8b:72:63:06:ee:ff:4b:36:d4:56:9e:c8:58:5e:b5:ac:80:32: 57:27:4c:61:f1:e7:7d:53:8d:52:c8:e6:9b:c4:52:fd:60:99: 0a:96:7a:73:d8:29:90:4d:8c:6c:a1:65:cf:68:f8:1e:cb:2a: be:d2:6c:c8:0a:e4:6f:66:f3:f5:a5:54:c0:7d:af:9a:df:1d: f9:36:c0:c2:d4:55:e8:61:6b:34:2f:d4:e2:c6:d1:be:8b:9a: 94:3e:e7:50:9a:dc:8f:de:86:9b:19:f7:e6:eb:b5:da:4d:07: 99:8f:17:19:9d:99:67:9a:56:7c:91:bc:ca:d0:a5:f5:8b:20: b3:82:ef:26:46:b1:88:92:61:66:dd:cb:d3:5b:60:29:e0:c0: 89:3b:64:71:14:33:15:fa:77:46:6b:3b:b8:0a:ad:43:bd:5d: b3:79:5d:40:73:fc:eb:1a:ba:29:5d:61:5c:28:8b:7c:90:5f: b2:c0:25:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjUwOTA5MDQ0NDM0WhcNMjUwOTE2MDQ0NDM0WjAYMRYwFAYD VQQDEw02OGJmYjBiMi1iM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuTf/C8a8OOWeBkGt1Nzg2iYAAv3SofIyrch1LT5e1X0C3CAdhNJCCfQ4o5L WLqV/G9eY/Y7cCwQrGttByXyONWPUrcQ0BZNKp7b0ePr0CPgB4cVWmhskGCnLCb0 2l4nGpNWQCnuSqPvHScSCX5uaznr9HQ7l83nR3+TUDuduIZOQvfqQiUhVvIbn3U+ V0a9dSbgfs86QnyywnWcu+7jddNGkoAWpxMX8NNWx/ZZVRPdc9XSFDJGv7Kqn2+A +UtRvQGEJEWPrXXe4B4K4R53DPOtItWZCC68fR0MfggtKkX7/jy19ZZPNQprIw/h yrWwraxymbHWlaRgGig0k14vZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqiaSxF hazdYrIfES+29zimppwQMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZ T25tY2s0cWc1QXBsSDh2Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu30rZhAinC77H2kTR3WHFW+V57amMspA2HHv0jKl48oF7FASoJ8MT kyS5tMFY8uyVD+HdNJ5Icz4FNaFZWQ058Y6f+BgHD2mLcmMG7v9LNtRWnshYXrWs gDJXJ0xh8ed9U41SyOabxFL9YJkKlnpz2CmQTYxsoWXPaPgeyyq+0mzICuRvZvP1 pVTAfa+a3x35NsDC1FXoYWs0L9TixtG+i5qUPudQmtyP3oabGffm67XaTQeZjxcZ nZlnmlZ8kbzK0KX1iyCzgu8mRrGIkmFm3cvTW2Ap4MCJO2RxFDMV+ndGazu4Cq1D vV2zeV1Ac/zrGropXWFcKIt8kF+ywCWq -----END CERTIFICATE-----Generated at Tue Sep 9 17:44:55 2025 by rpki-client