$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: qiLOT6tm6Ln8oQVbHDwU0sbVT3czCKAwyub/jYjUw8M= Subject key identifier: C2:F7:36:AA:56:46:32:EE:6B:B0:21:28:0E:E4:9E:91:CD:1D:BB:2D Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0769 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 0750 Signing time: Mon 02 Mar 2026 00:40:52 +0000 Manifest this update: Mon 02 Mar 2026 00:40:51 +0000 Manifest next update: Mon 09 Mar 2026 00:40:51 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: R8d+8L0OVTGTlHFsYhlju5/15U+602VVGh2TYzv1gbs=) 2: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: Edqwd+7S5FW+RSH1hNv3IRDd/a/nupHqU/W9+fP/QYw=) 3: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: 8Bf2rdYfYL741zuMOv5KtG3C9cn1bSgEVEELLNz/YH8=) 4: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: iME1Wafl/c0OdFfEQ+yf2PqIzRI/AG4449vj600jvuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1897 (0x769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Mar 2 00:40:51 2026 GMT Not After : Mar 9 00:40:51 2026 GMT Subject: CN=69a4dc94-8cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:88:64:83:97:95:03:15:2e:a3:82:f7:10: 04:fe:54:79:25:80:a4:f3:15:31:48:6c:a5:42:77: 7e:98:32:b5:fe:86:46:a3:52:ce:3d:d1:1e:e5:74: 40:7d:ce:52:af:7c:69:41:06:58:88:cf:5b:6f:18: 02:01:10:bf:96:47:8a:41:bf:67:3f:fa:9c:52:30: 94:90:1a:8d:41:60:3a:b3:1f:84:34:9d:9b:0b:49: 2e:07:41:2a:3c:e3:d7:84:7d:1e:0b:28:72:9c:dc: d5:67:39:0b:4d:6d:4a:4a:70:a2:11:5d:5b:f0:05: 8d:54:90:08:7c:2e:16:4e:f9:31:8b:10:e7:7f:61: c6:97:91:f2:d6:c1:dd:4f:af:a8:e8:d2:d2:20:ca: 97:c3:81:c6:a6:7a:a0:9e:6e:9e:46:0a:c9:dd:da: 78:f4:db:3d:c7:f3:7b:af:94:f5:c1:f4:74:d4:ff: 74:4e:5d:26:9b:13:37:e5:74:02:ce:df:a5:19:e6: 02:ae:0b:cb:25:c4:52:ae:0e:59:af:d1:66:34:37: 6d:e8:55:45:03:f0:f8:f7:c1:f8:66:b2:17:f7:73: fd:43:c7:2a:25:13:0b:93:1c:9b:c7:1a:72:0d:9d: 0f:ba:e3:49:a2:d1:16:9d:75:41:60:9a:9f:47:85: 40:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F7:36:AA:56:46:32:EE:6B:B0:21:28:0E:E4:9E:91:CD:1D:BB:2D X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f7:86:18:05:e3:ed:f8:9e:0b:f2:31:00:14:3d:7d:02:f8: 5b:f5:75:2f:3b:f1:96:6c:8d:1a:64:c8:8d:bb:d0:9a:c2:b4: 70:cf:2d:c7:f3:9b:4e:a2:ad:c3:04:94:cc:fb:52:15:18:d5: 8b:c1:c2:95:84:dd:7e:c6:13:b1:57:3e:a0:65:f0:4c:ea:29: 60:d4:ad:b6:9e:61:01:e3:ef:58:eb:bc:77:a3:02:28:9b:9e: 54:d4:f8:d8:3d:84:22:67:26:fe:e5:86:09:d0:e7:78:fd:2f: b6:66:c0:30:1b:b7:32:b5:0a:9b:7e:cd:32:00:33:dd:48:a8: 2b:46:e5:9b:0e:ff:b3:e0:f0:dc:e9:ba:e8:11:82:b4:75:2f: 7f:c4:be:48:b4:9c:68:8f:8d:da:35:23:5d:a2:b0:13:a8:9d: ce:99:32:f5:68:e6:b9:c7:6c:ca:b4:88:14:81:e0:09:7a:2a: db:bb:cb:6c:b6:f1:d8:31:bb:cb:dd:51:63:8b:4c:78:8b:17: 1d:f8:64:de:ad:64:fe:f0:a8:5d:14:8a:6b:b8:02:cb:2d:51: ef:b4:6c:f1:09:c1:25:5a:a0:52:c4:c8:e6:c8:b2:87:84:8c: ee:e9:ce:6c:2f:1b:13:66:1d:29:b1:df:b4:29:23:90:cd:b3: f4:f8:43:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjYwMzAyMDA0MDUxWhcNMjYwMzA5MDA0MDUxWjAYMRYwFAYD VQQDEw02OWE0ZGM5NC04Y2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmuIZIOXlQMVLqOC9xAE/lR5JYCk8xUxSGylQnd+mDK1/oZGo1LOPdEe5XRA fc5Sr3xpQQZYiM9bbxgCARC/lkeKQb9nP/qcUjCUkBqNQWA6sx+ENJ2bC0kuB0Eq POPXhH0eCyhynNzVZzkLTW1KSnCiEV1b8AWNVJAIfC4WTvkxixDnf2HGl5Hy1sHd T6+o6NLSIMqXw4HGpnqgnm6eRgrJ3dp49Ns9x/N7r5T1wfR01P90Tl0mmxM35XQC zt+lGeYCrgvLJcRSrg5Zr9FmNDdt6FVFA/D498H4ZrIX93P9Q8cqJRMLkxybxxpy DZ0PuuNJotEWnXVBYJqfR4VAzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFML3NqpW RjLua7AhKA7knpHNHbstMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATfeGGAXj7fieC/IxABQ9fQL4W/V1LzvxlmyNGmTIjbvQmsK0cM8tx/ObTqKt wwSUzPtSFRjVi8HClYTdfsYTsVc+oGXwTOopYNSttp5hAePvWOu8d6MCKJueVNT4 2D2EImcm/uWGCdDneP0vtmbAMBu3MrUKm37NMgAz3UioK0blmw7/s+Dw3Om66BGC tHUvf8S+SLScaI+N2jUjXaKwE6idzpky9WjmucdsyrSIFIHgCXoq27vLbLbx2DG7 y91RY4tMeIsXHfhk3q1k/vCoXRSKa7gCyy1R77Rs8QnBJVqgUsTI5siyh4SM7unO bC8bE2YdKbHftCkjkM2z9PhDBA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:32:51 2026 by rpki-client