$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: SHXCy9dOPBGwX7sOPomiyUhRJ6OHhpwap4bU+MADEOg= Subject key identifier: 52:A8:24:8C:BF:8E:1A:14:F2:3E:1A:63:FE:DF:B6:A3:A0:57:26:8F Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 0188 Signing time: Sun 01 Mar 2026 05:32:05 +0000 Manifest this update: Sun 01 Mar 2026 05:32:04 +0000 Manifest next update: Sun 08 Mar 2026 05:32:04 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: DLsAlRbSCUiJVg/GO5UZnTefuYg20/hyqts4xdmhrKQ=) 2: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: N9HZOtDjwAVYZ0V6/QRwgOsRDrTbtS6asM6r+PbXB98=) 3: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: 2hsNAFkabzhr7/E6bRIYyYZpPaQwFIu7JDoM9rF8nDM=) 4: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: WINBkErIgwFqb2h1CvV04y5r8u3udMxY7F2UA5dFhHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Mar 1 05:32:04 2026 GMT Not After : Mar 8 05:32:04 2026 GMT Subject: CN=69a3cf55-b3bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:01:90:b0:59:5c:a1:18:3b:46:07:89:cc:4b: e3:4d:73:dc:d8:ce:f6:06:44:5f:57:44:b6:f4:ba: cf:55:fb:cc:5b:71:af:dd:2a:66:1a:87:2a:c0:9e: ad:7c:b1:f0:e3:25:2c:dc:87:4f:90:06:8e:30:37: 79:4f:09:8b:3d:39:91:a1:d3:f8:ad:d8:27:f3:ba: ac:a9:df:7a:17:ad:61:63:7c:30:23:07:0e:37:d8: e5:08:02:26:50:cb:4f:b2:8a:62:bf:2e:ea:5c:2f: 53:78:76:ec:77:5a:2f:a3:1e:ee:26:24:ef:0a:f3: 5f:e0:ec:d0:cf:50:8c:e3:04:7e:2b:93:7a:53:97: 3c:44:e5:4c:75:39:39:a9:40:62:2c:31:bd:73:b6: 39:b5:14:96:32:74:6e:2b:74:0d:20:8c:b4:02:c3: eb:d9:2d:cd:9a:ca:3d:63:7c:12:3f:f4:c5:85:2d: 65:1f:47:e9:93:1b:09:2d:56:5e:f3:62:58:46:45: 14:61:bb:f4:8b:0b:ef:6c:a2:c2:c4:4f:f0:16:bb: 16:68:c3:12:f8:84:fb:3e:d0:cf:13:75:ab:66:87: 8f:05:7d:49:df:d1:58:46:fa:7d:7a:93:d9:f2:5a: e3:a1:91:e6:33:07:71:13:e9:4d:86:18:a6:73:57: 80:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A8:24:8C:BF:8E:1A:14:F2:3E:1A:63:FE:DF:B6:A3:A0:57:26:8F X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:35:3a:38:9a:e9:e2:4e:41:0f:95:f8:f7:fd:43:52:9a:7c: 25:c0:f9:1e:2c:10:3a:44:d1:eb:1d:56:fd:66:74:36:b8:e1: f8:7d:ee:ee:cf:99:9e:05:6b:5d:e5:bc:d7:31:d0:81:60:dc: 49:f0:cd:c7:e6:e1:0b:21:7d:db:d2:69:1e:f4:f4:a0:ee:21: e8:5b:af:ce:74:a6:a8:05:fa:ef:1d:b1:9a:5f:a2:36:a4:5b: 38:3c:77:03:93:8d:ec:27:46:ab:9c:0f:9d:62:41:6d:30:c9: ae:48:0b:44:0f:e7:0d:3f:1b:66:76:49:d7:68:a3:cc:ae:c7: 93:3c:0a:fb:c5:c4:05:35:69:b3:99:ae:15:87:d7:bd:89:c8: ca:44:4e:84:f0:68:af:d4:4d:d9:e9:11:a8:6f:66:68:ab:3a: 0e:b0:09:e4:29:6f:c1:49:7e:06:5d:dc:4f:3e:27:4b:2f:8a: 71:63:c9:e0:7b:e7:96:ff:1b:1d:73:a5:54:79:4b:cd:34:8e: 2d:88:0b:96:49:b0:98:3e:62:7b:bf:f3:9f:b9:db:f5:1a:9f: 33:ee:a0:42:f5:b1:3f:ef:34:cb:50:41:68:d2:48:7c:f1:6a: 90:60:20:e6:ca:1a:95:9d:a8:b3:ff:16:3b:92:3c:b8:4e:8c: 62:11:c4:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjYwMzAxMDUzMjA0WhcNMjYwMzA4MDUzMjA0WjAYMRYwFAYD VQQDEw02OWEzY2Y1NS1iM2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAGQsFlcoRg7RgeJzEvjTXPc2M72BkRfV0S29LrPVfvMW3Gv3SpmGocqwJ6t fLHw4yUs3IdPkAaOMDd5TwmLPTmRodP4rdgn87qsqd96F61hY3wwIwcON9jlCAIm UMtPsopivy7qXC9TeHbsd1ovox7uJiTvCvNf4OzQz1CM4wR+K5N6U5c8ROVMdTk5 qUBiLDG9c7Y5tRSWMnRuK3QNIIy0AsPr2S3Nmso9Y3wSP/TFhS1lH0fpkxsJLVZe 82JYRkUUYbv0iwvvbKLCxE/wFrsWaMMS+IT7PtDPE3WrZoePBX1J39FYRvp9epPZ 8lrjoZHmMwdxE+lNhhimc1eA6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFKoJIy/ jhoU8j4aY/7ftqOgVyaPMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZ T25tY2s0cWc1QXBsSDh2Z2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsTU6OJrp4k5BD5X49/1DUpp8JcD5HiwQOkTR6x1W/WZ0Nrjh+H3u7s+ZngVr XeW81zHQgWDcSfDNx+bhCyF929JpHvT0oO4h6FuvznSmqAX67x2xml+iNqRbODx3 A5ON7CdGq5wPnWJBbTDJrkgLRA/nDT8bZnZJ12ijzK7HkzwK+8XEBTVps5muFYfX vYnIykROhPBor9RN2ekRqG9maKs6DrAJ5ClvwUl+Bl3cTz4nSy+KcWPJ4Hvnlv8b HXOlVHlLzTSOLYgLlkmwmD5ie7/zn7nb9RqfM+6gQvWxP+80y1BBaNJIfPFqkGAg 5soalZ2os/8WO5I8uE6MYhHEPQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:31 2026 by rpki-client