$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft File: JL-jY1L4TxqPpGnesOg26ANa5GY.mft (raw, json) Hash identifier: 3zKk3YvYkEqAHSAupLogKaWvkVwDGRwRdEfonoP1V3I= Subject key identifier: 47:72:98:89:74:80:47:B0:B3:AD:40:F8:C7:35:1C:8D:8D:9D:D8:E6 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 08D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft Manifest number: 08BC Signing time: Mon 02 Mar 2026 00:29:46 +0000 Manifest this update: Mon 02 Mar 2026 00:29:42 +0000 Manifest next update: Mon 09 Mar 2026 00:29:42 +0000 Files and hashes: 1: JL-jY1L4TxqPpGnesOg26ANa5GY.crl (hash: EcVSVWuKGwM/w3Ee45pRou2Cg89LCdeQKkUrv1wIsEU=) 2: 72603CD6D28811EAB7D79A47C4F9AE02.roa (hash: a0KJzFwwqv0lg3ULNBnJePGLp0NsrsB64/1kaRLoBG0=) 3: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (hash: U4HdV/PDUa6khnwJGf56kPZWlaze7/9evihtQtzPYLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2256 (0x8d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Mar 2 00:29:42 2026 GMT Not After : Mar 9 00:29:42 2026 GMT Subject: CN=69a4d9f9-261f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:82:b2:f6:d2:f7:14:f8:0a:95:64:88:6c:12: 8b:91:08:fb:f4:8e:35:13:c5:9a:3f:5c:ca:b4:27: b2:1e:d0:bf:6e:ad:d7:96:ef:72:5d:e5:ca:22:60: 4a:6b:c6:2f:14:e3:23:2f:b6:44:82:31:80:51:bb: a2:3a:35:e9:f2:7d:42:68:8b:fb:eb:b4:28:66:30: 3c:7b:7b:a4:a4:11:4f:9e:2c:d4:a2:e2:ce:6b:8e: d0:f2:44:76:62:0a:1a:d2:77:7b:02:ec:ed:90:a9: 04:f0:c3:dd:dc:97:2f:2a:26:2d:bf:a4:ce:0f:ce: 09:07:4c:b6:f5:c6:49:31:83:ae:1a:13:5a:e4:cd: 25:dc:56:d1:a4:ba:95:ae:37:53:ab:57:59:3d:8f: 83:53:ca:f8:63:e9:97:a1:05:53:3c:84:73:f9:7a: 5b:5a:85:cf:f6:ea:82:b6:8b:5a:5e:6b:ad:44:9a: 7f:3d:3d:a3:17:e6:c0:82:0d:b2:bb:65:26:5a:4c: 07:7a:c0:24:dd:0c:38:a9:aa:c2:4d:19:09:cb:51: 44:3d:d4:fe:bd:ae:bd:4c:2c:bc:cc:36:e3:64:aa: ac:56:2e:58:3e:7d:a0:bd:fc:b9:8d:be:60:23:67: cc:62:bb:72:c2:76:b9:6b:a2:da:42:27:26:cd:e0: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:72:98:89:74:80:47:B0:B3:AD:40:F8:C7:35:1C:8D:8D:9D:D8:E6 X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:4b:47:1e:c6:91:d3:ff:d2:18:0e:49:16:36:e0:09:b9:40: e1:84:b2:c0:87:3c:e0:8a:aa:6c:d2:85:2c:40:1d:bb:81:f4: b7:0f:a5:b6:b8:dd:6d:03:81:e1:f2:1a:24:63:32:15:51:e0: 81:2f:7c:0f:8f:8b:94:43:6a:57:d2:7a:af:cd:b8:9d:a2:d5: 30:39:ea:5c:04:ae:58:c3:10:f5:47:db:de:6b:06:5f:8b:b8: 7d:d9:af:b5:10:c1:9f:13:84:c1:57:b3:d4:00:9f:bc:bd:87: 05:d9:20:80:94:29:23:92:44:e6:75:b4:f3:37:d0:17:8e:89: 2c:13:ea:47:fa:a7:a2:08:84:c7:29:6e:88:20:f2:9e:8b:76: b4:bc:83:28:a8:34:1e:89:ff:69:13:a6:00:f6:2b:61:85:2a: ba:4d:50:c6:3e:43:b0:5f:2d:01:85:16:41:0e:6e:17:f8:7a: ab:fc:36:05:ec:35:c8:6a:43:90:eb:bc:72:08:44:1d:a5:cd: 0a:e8:9e:f3:25:a7:65:12:ac:51:83:3b:98:d1:88:1f:75:fa: 06:15:92:fd:4d:37:3f:80:41:c0:f7:31:f0:bf:a8:2a:e6:d4: 6e:eb:69:2e:3e:0a:9d:88:27:5a:18:32:eb:5a:44:88:01:a1: df:cf:47:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjYwMzAyMDAyOTQyWhcNMjYwMzA5MDAyOTQyWjAYMRYwFAYD VQQDEw02OWE0ZDlmOS0yNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYKy9tL3FPgKlWSIbBKLkQj79I41E8WaP1zKtCeyHtC/bq3Xlu9yXeXKImBK a8YvFOMjL7ZEgjGAUbuiOjXp8n1CaIv767QoZjA8e3ukpBFPnizUouLOa47Q8kR2 Ygoa0nd7AuztkKkE8MPd3JcvKiYtv6TOD84JB0y29cZJMYOuGhNa5M0l3FbRpLqV rjdTq1dZPY+DU8r4Y+mXoQVTPIRz+XpbWoXP9uqCtotaXmutRJp/PT2jF+bAgg2y u2UmWkwHesAk3Qw4qarCTRkJy1FEPdT+va69TCy8zDbjZKqsVi5YPn2gvfy5jb5g I2fMYrtywna5a6LaQicmzeB3ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEdymIl0 gEews61A+Mc1HI2NndjmMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDNFOC8zRjFGMEREQUQyODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4 cVBwR25lc09nMjZBTmE1R1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyEtHHsaR0//SGA5JFjbgCblA4YSywIc84IqqbNKFLEAdu4H0tw+ltrjdbQOB 4fIaJGMyFVHggS98D4+LlENqV9J6r824naLVMDnqXASuWMMQ9Ufb3msGX4u4fdmv tRDBnxOEwVez1ACfvL2HBdkggJQpI5JE5nW08zfQF46JLBPqR/qnogiExyluiCDy not2tLyDKKg0Hon/aROmAPYrYYUquk1Qxj5DsF8tAYUWQQ5uF/h6q/w2Bew1yGpD kOu8cghEHaXNCuie8yWnZRKsUYM7mNGIH3X6BhWS/U03P4BBwPcx8L+oKubUbutp Lj4KnYgnWhgy61pEiAGh389H/A== -----END CERTIFICATE-----Generated at Mon Mar 2 12:25:32 2026 by rpki-client