$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: 6bnoqFRGsqE+DpKSqDqvaiIArzF7iaKJVxDcR4Wccm0= Subject key identifier: 71:3A:F2:EA:30:C1:52:FF:23:A3:AA:73:F2:9D:62:A8:C1:C5:FE:0C Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 0147 Signing time: Mon 03 Nov 2025 04:21:14 +0000 Manifest this update: Mon 03 Nov 2025 04:21:13 +0000 Manifest next update: Mon 10 Nov 2025 04:21:13 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: WZz5qIOaVay7FSRaPgs1GQn18a/UUocR4dAbMmGhj2Q=) 2: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: nZip0umQgQfNUVSJn6scZoNl7nqXBFARNgNZLe4qOTs=) 3: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: orqQypE5bc7gvUO4QzKhBPPdldDDB/JBoIJgb5EjBz0=) 4: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: 6lk7JsGwO4/wcTnuVTo0XHToPhtmgaBJiaipZQHj0o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Nov 3 04:21:13 2025 GMT Not After : Nov 10 04:21:13 2025 GMT Subject: CN=69082dba-2367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8b:e6:53:7a:d5:c5:ef:d9:04:4a:bd:78:49: b7:ae:e7:72:ed:79:9e:a9:c9:4a:e0:2f:0d:0e:48: 60:f8:c3:e6:f6:55:ee:20:30:89:15:6c:be:f6:46: 49:ed:1b:59:93:61:6a:b5:ba:2b:cf:60:98:79:28: 55:98:76:33:d0:44:46:de:d2:08:da:76:51:aa:5f: ae:62:4a:5a:44:81:0e:34:bc:6a:1e:64:24:7b:54: e1:e8:52:64:bc:7a:6e:23:a7:b0:9e:8e:4b:d7:7c: df:80:28:c5:ef:c4:10:1c:32:ad:4a:ac:ea:8d:13: 17:43:bf:5f:10:ec:94:85:ea:c9:f3:d3:2f:a6:b0: 90:9e:93:2e:e1:1c:f5:ea:64:57:30:cb:c6:66:29: 56:47:46:02:1f:cb:dc:1b:a4:84:c1:d3:02:eb:88: bc:7c:4e:f5:95:30:06:c4:50:aa:61:7b:48:f6:57: d5:a8:d6:c1:82:3e:62:e8:9b:81:4d:d0:88:34:12: a9:76:23:d9:91:9e:1c:a1:55:c3:3c:ff:e6:40:c4: cf:29:f8:46:0d:e0:f4:90:85:29:c6:16:6b:ba:8b: ce:d7:b6:70:d2:e1:f4:a0:fc:e0:f7:1f:ec:e4:46: 7a:06:a1:1d:2b:b8:8c:36:d8:8f:dc:90:a2:65:bd: 78:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3A:F2:EA:30:C1:52:FF:23:A3:AA:73:F2:9D:62:A8:C1:C5:FE:0C X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:23:81:3b:8f:a8:55:1b:53:12:0a:06:e4:c1:04:9e:cb:6b: 1b:32:ef:ae:1b:e0:38:1e:89:0a:2f:03:73:b2:cc:12:8f:b4: 30:53:72:5e:62:38:1a:e1:c7:e9:21:b6:73:6f:4b:51:b4:0e: cb:38:d8:b5:cd:f3:f8:5d:2b:7c:26:8f:da:6b:e6:cd:6b:20: 06:9b:05:d0:f5:87:a0:1f:40:72:d3:04:23:e3:1e:18:c4:98: af:5a:a2:8f:a7:be:76:49:39:55:c4:ee:5a:cd:a3:ab:59:27: d3:89:7f:40:3f:d2:7a:86:19:18:48:78:8d:13:74:3b:35:7b: ec:02:ca:41:09:dc:18:5b:f9:46:aa:d6:39:12:28:d9:7a:58: 9a:ac:3e:f0:ba:ab:a3:f6:fc:c9:37:c5:74:64:73:82:4e:dc: d9:2e:11:26:76:33:37:86:50:23:d8:8f:c2:b5:55:42:fe:e5: 83:35:f8:6e:30:fa:b9:a8:90:cc:ea:bc:c8:25:c2:9c:e7:6f: 03:ce:c6:90:f7:e8:44:5b:78:63:1b:84:b6:ff:16:84:2d:33: 00:2e:61:8c:ff:5e:68:3f:00:35:b5:4c:08:35:4c:43:50:fb: 72:35:04:a5:e0:38:d4:46:57:1f:5c:2b:ef:f7:71:d6:70:7e: 3e:61:76:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjUxMTAzMDQyMTEzWhcNMjUxMTEwMDQyMTEzWjAYMRYwFAYD VQQDEw02OTA4MmRiYS0yMzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24vmU3rVxe/ZBEq9eEm3rudy7XmeqclK4C8NDkhg+MPm9lXuIDCJFWy+9kZJ 7RtZk2Fqtborz2CYeShVmHYz0ERG3tII2nZRql+uYkpaRIEONLxqHmQke1Th6FJk vHpuI6ewno5L13zfgCjF78QQHDKtSqzqjRMXQ79fEOyUherJ89MvprCQnpMu4Rz1 6mRXMMvGZilWR0YCH8vcG6SEwdMC64i8fE71lTAGxFCqYXtI9lfVqNbBgj5i6JuB TdCINBKpdiPZkZ4coVXDPP/mQMTPKfhGDeD0kIUpxhZruovO17Zw0uH0oPzg9x/s 5EZ6BqEdK7iMNtiP3JCiZb14bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHE68uow wVL/I6Oqc/KdYqjBxf4MMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZ T25tY2s0cWc1QXBsSDh2Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7I4E7j6hVG1MSCgbkwQSey2sbMu+uG+A4HokKLwNzsswSj7QwU3Je Yjga4cfpIbZzb0tRtA7LONi1zfP4XSt8Jo/aa+bNayAGmwXQ9YegH0By0wQj4x4Y xJivWqKPp752STlVxO5azaOrWSfTiX9AP9J6hhkYSHiNE3Q7NXvsAspBCdwYW/lG qtY5EijZeliarD7wuquj9vzJN8V0ZHOCTtzZLhEmdjM3hlAj2I/CtVVC/uWDNfhu MPq5qJDM6rzIJcKc528DzsaQ9+hEW3hjG4S2/xaELTMALmGM/15oPwA1tUwINUxD UPtyNQSl4DjURlcfXCvv93HWcH4+YXba -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:09 2025 by rpki-client