$ rpki-client -vvf rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft File: JSBFeBemYmHoez5BhOhi2ka6nw0.mft (raw, json) Hash identifier: seYZRBgouN6GfcX/k7ioBu/dA5j6w099FkorslK+iVE= Subject key identifier: 53:78:9A:57:6E:DA:C8:DA:E4:80:28:67:E6:A1:25:00:53:B7:36:C2 Authority key identifier: 25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D Certificate issuer: /CN=A9151EB5/serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Certificate serial: 0701 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft Manifest number: 06FE Signing time: Tue 24 Mar 2026 21:40:49 +0000 Manifest this update: Tue 24 Mar 2026 21:40:48 +0000 Manifest next update: Tue 31 Mar 2026 21:40:48 +0000 Files and hashes: 1: JSBFeBemYmHoez5BhOhi2ka6nw0.crl (hash: +lGIbzuB4HDjhpfQwV16iIK1dGef/bs4jwyEJtrW/Qw=) 2: 81ACEA76E74711EFA8F61A3DC4F9AE02.roa (hash: LvZ6b+WVzt+Ji3VKc/4yMnDItkz39BnNoLyO0UrJsiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1793 (0x701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151EB5, serialNumber=2520457817A66261E87B3E4184E862DA46BA9F0D Validity Not Before: Mar 24 21:40:48 2026 GMT Not After : Mar 31 21:40:48 2026 GMT Subject: CN=69c304e1-c1a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:14:5b:d5:90:61:08:84:af:18:32:a1:bd:35: 8e:bf:de:07:c0:2e:c3:44:90:cb:b9:9a:0b:e5:38: cd:6a:fc:d7:0f:11:32:62:6f:6b:8a:e5:e7:bf:e0: f0:ac:cd:c5:8f:7e:a6:84:83:70:8a:57:43:ca:44: e1:44:0e:1d:99:65:32:2d:d6:9b:dd:79:c5:aa:77: db:72:0f:98:d9:a5:1d:24:84:eb:fb:e5:82:c0:83: ca:c6:14:d7:78:a1:4a:f6:5e:a7:89:bf:b7:7d:2d: 83:d7:c0:a5:cb:5d:c7:7a:5c:c0:f0:7d:6a:66:39: 91:52:fc:29:cd:bf:b2:67:09:84:73:b8:3e:52:20: d0:60:a7:6f:a7:a4:92:5d:47:73:a5:15:9a:ff:42: d2:36:49:d2:64:16:23:08:fe:49:5b:07:fc:25:7a: 9b:ba:2e:6e:a4:91:38:98:9a:d0:fd:cc:de:35:bf: 80:88:e1:0c:b8:b2:a5:0f:ed:e9:27:09:f1:5d:0f: 64:96:d2:c4:b5:a5:12:8c:83:c4:ea:bc:80:25:a0: d0:cc:5d:97:2c:a5:db:70:3b:c6:b0:8c:2f:6b:04: 7d:97:c5:f7:f0:9a:f8:11:83:e8:41:a2:f2:ca:22: d8:51:c3:cc:6c:03:ff:07:ff:8b:92:1e:62:72:f9: e1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:78:9A:57:6E:DA:C8:DA:E4:80:28:67:E6:A1:25:00:53:B7:36:C2 X509v3 Authority Key Identifier: keyid:25:20:45:78:17:A6:62:61:E8:7B:3E:41:84:E8:62:DA:46:BA:9F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSBFeBemYmHoez5BhOhi2ka6nw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151EB5/C57E38FC7F9C11EBAFC91466C4F9AE02/JSBFeBemYmHoez5BhOhi2ka6nw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:0b:ca:49:fe:d1:11:d5:3a:aa:fb:06:d6:f9:bd:80:60:09: 15:a0:4d:99:b5:64:1e:78:60:42:3c:50:68:4a:59:d1:93:c4: 83:05:c7:7c:a8:5b:ac:a5:88:ce:fc:b0:66:89:29:59:93:25: d9:20:79:11:fe:c7:ae:2d:e9:a8:e7:7e:3a:b3:6f:9f:98:15: cb:8f:30:b3:05:e0:85:76:0e:58:9d:58:8f:03:bd:ee:0e:bd: 61:63:ec:73:59:cf:91:41:59:b0:e3:3a:a8:a8:fa:56:f6:fa: 77:8b:2b:18:e0:12:d6:f5:a1:22:46:e8:51:34:ce:56:b0:03: 19:30:92:f9:59:1a:de:70:f3:22:39:95:4c:14:24:02:c5:8e: c3:26:6d:08:ae:03:30:4c:30:ef:e0:5a:56:7b:70:b4:8f:32: d3:04:25:73:7d:58:c8:b5:31:36:f0:7b:06:88:83:3d:82:44: c1:23:b4:fb:c7:39:d9:65:e9:42:11:a6:f8:74:b7:c6:99:92: 93:88:33:a3:6b:30:6d:28:d0:47:85:69:15:ca:c8:52:6e:51: 72:bb:03:c4:f5:78:e9:62:bd:13:9f:25:98:1f:c6:e6:c3:30: 75:c2:61:36:08:d1:4f:fe:a9:15:9b:ed:e7:76:19:ba:a6:2a: de:78:4e:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFQjUxMTAvBgNVBAUTKDI1MjA0NTc4MTdBNjYyNjFFODdCM0U0MTg0RTg2MkRB NDZCQTlGMEQwHhcNMjYwMzI0MjE0MDQ4WhcNMjYwMzMxMjE0MDQ4WjAYMRYwFAYD VQQDEw02OWMzMDRlMS1jMWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xRb1ZBhCISvGDKhvTWOv94HwC7DRJDLuZoL5TjNavzXDxEyYm9riuXnv+Dw rM3Fj36mhINwildDykThRA4dmWUyLdab3XnFqnfbcg+Y2aUdJITr++WCwIPKxhTX eKFK9l6nib+3fS2D18Cly13HelzA8H1qZjmRUvwpzb+yZwmEc7g+UiDQYKdvp6SS XUdzpRWa/0LSNknSZBYjCP5JWwf8JXqbui5upJE4mJrQ/czeNb+AiOEMuLKlD+3p JwnxXQ9kltLEtaUSjIPE6ryAJaDQzF2XLKXbcDvGsIwvawR9l8X38Jr4EYPoQaLy yiLYUcPMbAP/B/+Lkh5icvnhhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFN4mldu 2sja5IAoZ+ahJQBTtzbCMB8GA1UdIwQYMBaAFCUgRXgXpmJh6Hs+QYToYtpGup8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUVCNS9DNTdFMzhGQzdG OUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVltSG9lejVCaE9oaTJrYTZu dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTQkZlQmVtWW1Ib2V6NUJoT2hpMmthNm53MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUVCNS9DNTdFMzhGQzdGOUMxMUVCQUZDOTE0NjZDNEY5QUUwMi9KU0JGZUJlbVlt SG9lejVCaE9oaTJrYTZudzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiAvKSf7REdU6qvsG1vm9gGAJFaBNmbVkHnhgQjxQaEpZ0ZPEgwXHfKhbrKWI zvywZokpWZMl2SB5Ef7Hri3pqOd+OrNvn5gVy48wswXghXYOWJ1YjwO97g69YWPs c1nPkUFZsOM6qKj6Vvb6d4srGOAS1vWhIkboUTTOVrADGTCS+Vka3nDzIjmVTBQk AsWOwyZtCK4DMEww7+BaVntwtI8y0wQlc31YyLUxNvB7BoiDPYJEwSO0+8c52WXp QhGm+HS3xpmSk4gzo2swbSjQR4VpFcrIUm5RcrsDxPV46WK9E58lmB/G5sMwdcJh NgjRT/6pFZvt53YZuqYq3nhOzA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:43:46 2026 by rpki-client