$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: kLABkmLkC1QQMTk2K0jlJxK4udHn+SGoJu2K6oddMLQ= Subject key identifier: 12:0E:13:42:55:71:42:67:95:B5:C5:3B:33:46:39:D4:D4:2D:E4:02 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 01A2 Signing time: Fri 17 Apr 2026 03:59:40 +0000 Manifest this update: Fri 17 Apr 2026 03:59:40 +0000 Manifest next update: Fri 24 Apr 2026 03:59:40 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: TDXrT1L2YCYHOkG83ixF86Eok4BkSnIYCtHiLGdnZnk=) 2: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: owQYw9h+uccODUhkikEdlCDKK/hYVX6MWumcBf31Hrw=) 3: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: 0E4qYTpBck7zqd7XOVsdpYAiDLiP6vH0ev4CSQjnfXI=) 4: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: /8Gd5gZ758sNArtTS8yRpNug05q/Okyd5D7W2BUqcNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Apr 17 03:59:40 2026 GMT Not After : Apr 24 03:59:40 2026 GMT Subject: CN=69e1b02c-34c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:78:70:5f:2f:5b:3e:ab:7e:46:68:0d:4a:e7: bf:0f:21:e6:b5:09:02:b8:54:0a:e7:35:d9:b7:38: 27:34:2b:96:2e:e7:0b:41:1b:a8:6f:1b:21:46:13: d4:3f:67:b2:ad:a0:02:eb:2a:e2:f1:c2:b1:a2:b0: 89:45:44:01:60:52:49:ed:c6:ae:3f:9e:74:5c:9d: bb:43:84:38:27:c7:8c:25:14:86:e0:3d:a6:09:f9: 41:8f:75:2a:58:5d:d6:2c:dc:4d:be:36:af:1b:34: 39:c3:91:b6:39:39:b1:1a:c0:2a:2f:21:0b:7b:d0: 5e:9e:f1:c1:7f:36:ce:e9:68:f7:99:be:67:e6:f3: 22:df:e9:17:19:f2:c3:0e:bf:08:f1:10:8a:90:6e: b6:3d:86:f5:30:8c:0c:7f:b6:d8:f6:27:0d:1c:6a: e1:5c:5f:df:1a:c6:fa:53:ff:05:4e:63:02:65:0d: ec:30:7d:1d:f4:9f:be:f2:ba:f0:00:4d:5c:73:3a: 9d:6b:3b:3b:58:d7:d6:14:a9:17:42:91:b0:16:f2: c6:72:1b:e1:1f:d2:dc:b8:0c:b0:e8:bb:dd:cd:6b: 89:6e:6c:37:9e:10:be:c8:03:ac:63:35:28:02:7a: 25:0a:17:b7:47:ff:4f:4c:55:1c:35:5b:85:a2:e1: 7a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:0E:13:42:55:71:42:67:95:B5:C5:3B:33:46:39:D4:D4:2D:E4:02 X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:97:a3:5b:00:9a:d5:ca:61:1c:ba:b9:2a:cc:cd:ed:d5:55: c6:5a:c2:b5:b1:7b:1b:7c:bb:b7:78:f8:77:87:99:1e:41:37: 4b:7d:40:87:90:df:85:df:75:46:87:34:68:84:f0:dc:2e:a6: 24:a1:8c:60:8d:6c:f0:59:85:4e:f4:78:86:3c:51:fd:5a:3f: 48:d0:71:92:de:4f:a2:c5:a8:05:da:04:44:16:b4:fa:c6:6e: ce:d8:16:8a:81:a7:1a:eb:ed:72:21:2d:aa:81:cb:fa:db:35: 55:8a:9d:94:17:ee:f4:f0:7f:d3:a0:11:48:43:12:42:83:52: 19:67:ca:0e:66:e5:67:78:53:a5:e0:9e:b8:c5:62:fc:5b:a3: 6e:94:11:05:0f:b8:bd:78:34:b9:a9:83:1b:f6:ad:34:09:bb: 40:ef:6f:f1:44:3a:8c:e8:3b:eb:a0:8c:f5:cb:7c:55:ba:e4: 1e:ad:7d:21:12:c8:59:30:68:ae:22:26:83:2c:f9:07:8b:4c: 50:8a:63:de:9b:c6:b1:87:e9:4b:da:9b:cb:1f:84:b7:4d:ff: 26:ed:af:5e:d9:0e:07:01:b4:30:db:a0:b2:e4:20:1e:81:e5: 9b:09:51:4c:f6:51:d5:39:26:eb:d6:f1:be:7e:3e:ae:d5:5c: ed:11:0e:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjYwNDE3MDM1OTQwWhcNMjYwNDI0MDM1OTQwWjAYMRYwFAYD VQQDEw02OWUxYjAyYy0zNGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXhwXy9bPqt+RmgNSue/DyHmtQkCuFQK5zXZtzgnNCuWLucLQRuobxshRhPU P2eyraAC6yri8cKxorCJRUQBYFJJ7cauP550XJ27Q4Q4J8eMJRSG4D2mCflBj3Uq WF3WLNxNvjavGzQ5w5G2OTmxGsAqLyELe9BenvHBfzbO6Wj3mb5n5vMi3+kXGfLD Dr8I8RCKkG62PYb1MIwMf7bY9icNHGrhXF/fGsb6U/8FTmMCZQ3sMH0d9J++8rrw AE1cczqdazs7WNfWFKkXQpGwFvLGchvhH9LcuAyw6LvdzWuJbmw3nhC+yAOsYzUo AnolChe3R/9PTFUcNVuFouF6kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBIOE0JV cUJnlbXFOzNGOdTULeQCMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZ T25tY2s0cWc1QXBsSDh2Z2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiJejWwCa1cphHLq5KszN7dVVxlrCtbF7G3y7t3j4d4eZHkE3S31Ah5Dfhd91 Roc0aITw3C6mJKGMYI1s8FmFTvR4hjxR/Vo/SNBxkt5PosWoBdoERBa0+sZuztgW ioGnGuvtciEtqoHL+ts1VYqdlBfu9PB/06ARSEMSQoNSGWfKDmblZ3hTpeCeuMVi /FujbpQRBQ+4vXg0uamDG/atNAm7QO9v8UQ6jOg766CM9ct8VbrkHq19IRLIWTBo riImgyz5B4tMUIpj3pvGsYfpS9qbyx+Et03/Ju2vXtkOBwG0MNugsuQgHoHlmwlR TPZR1Tkm69bxvn4+rtVc7REOPA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:55:15 2026 by rpki-client