$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: n3eTRvb5GF0O+38gsvSB7g95fAXv5RPpMswBcGajEL8= Subject key identifier: EE:60:84:4B:39:83:1B:E8:C2:82:57:EE:18:B2:0B:0C:52:AF:A1:67 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0726 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 0712 Signing time: Tue 04 Nov 2025 21:58:13 +0000 Manifest this update: Tue 04 Nov 2025 21:58:13 +0000 Manifest next update: Tue 11 Nov 2025 21:58:13 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: bCNHN0IdYyKpwQHYmPRtV3vbVGXWOf027pLYfEizlt0=) 2: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: 3pZFB7pMfCt+Nb4YQaCn5c2ZIXFgDeE9u77BOFaXST0=) 3: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: ivarDOVLEK1o/i2e326AVwZq4fhbkuq+7lnjx1EVCHE=) 4: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: gBF4oLr31oWPGA7GjogpSpsWc/XlGgo5urUgCfPiOZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1830 (0x726) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Nov 4 21:58:13 2025 GMT Not After : Nov 11 21:58:13 2025 GMT Subject: CN=690a76f5-1e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:71:68:bb:bf:3f:be:68:53:c0:64:e6:6c:bc: c7:f1:ea:10:e4:0d:2f:e9:66:db:ff:17:14:1e:79: dc:73:ec:02:22:c7:74:14:3c:34:23:3a:52:41:95: c5:a4:c6:a4:76:e2:b9:76:a9:0d:e4:52:14:35:e7: 77:8e:c1:bc:26:c9:89:72:00:09:f3:e7:91:c6:a6: a4:6f:14:0f:cb:2c:e1:6a:16:d3:1c:7a:f9:b9:25: 49:28:5a:e1:fc:38:da:96:fd:70:fd:94:2a:41:16: 8d:e4:11:e7:3e:84:dd:69:3c:76:13:7a:8b:49:27: d3:3c:bd:2c:f6:6a:1e:80:44:60:58:81:27:76:f3: f4:ad:e5:23:91:5e:a7:39:f0:18:5a:b6:2d:40:8e: a2:bf:cf:1b:9f:c8:c1:e1:b0:7e:d6:87:88:f6:11: 7b:36:ef:77:b8:02:16:58:9c:df:60:08:fa:b2:4f: c0:1d:67:31:8d:e4:15:32:31:60:dc:33:b6:4b:b9: 5d:02:fb:eb:2e:96:ef:ff:03:61:5c:59:2f:c9:57: e8:ea:20:04:33:eb:0c:78:9b:d7:ba:8e:44:2c:09: 55:0d:3d:79:b1:7f:6d:24:07:81:9e:95:01:6f:ae: d8:2a:08:6d:6a:94:32:65:b3:d1:a7:74:1f:af:b0: f7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:60:84:4B:39:83:1B:E8:C2:82:57:EE:18:B2:0B:0C:52:AF:A1:67 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:81:b6:dc:e1:55:95:de:24:10:63:e6:48:27:42:8c:36:68: 39:00:ad:de:cd:83:2f:97:8c:3b:8a:56:99:2e:a3:ed:6a:b4: b0:96:0a:18:aa:6f:23:2f:38:ed:6b:22:8c:3d:e7:4a:8f:3c: 09:75:34:b0:53:cc:4e:07:62:08:0b:d8:6f:6a:f5:c8:f5:3e: 7f:cc:3d:51:ee:c2:a7:cb:7b:e8:a9:74:13:0f:b8:cf:c3:56: ab:21:d7:9b:d3:cf:0e:41:74:ef:a4:1d:a8:29:8b:57:eb:9c: 3f:55:b3:db:af:11:4d:74:1a:1a:6a:7c:1c:79:b1:f5:ac:86: f4:ee:ce:7c:7a:86:b6:9c:94:cd:61:9d:50:4a:15:8a:27:53: d8:fe:d5:31:87:b6:32:77:4d:20:2b:74:91:15:3f:02:96:70: 80:84:07:db:cd:4c:96:09:a3:ad:4f:0a:75:be:1e:24:27:6f: 01:d0:b3:ec:2b:ec:7a:45:24:aa:4d:39:68:db:a0:0e:ec:fc: 05:e7:2a:ea:a7:29:15:e0:ad:e2:f1:74:63:6a:02:4c:a5:c8: 78:03:d5:3d:fd:eb:c7:3a:74:a8:bc:88:72:96:5b:b0:3d:18: 66:ee:c4:54:99:10:16:31:95:55:d9:43:a2:4c:a1:ac:23:e4: b9:e3:30:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUxMTA0MjE1ODEzWhcNMjUxMTExMjE1ODEzWjAYMRYwFAYD VQQDEw02OTBhNzZmNS0xZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHFou78/vmhTwGTmbLzH8eoQ5A0v6Wbb/xcUHnncc+wCIsd0FDw0IzpSQZXF pMakduK5dqkN5FIUNed3jsG8JsmJcgAJ8+eRxqakbxQPyyzhahbTHHr5uSVJKFrh /Djalv1w/ZQqQRaN5BHnPoTdaTx2E3qLSSfTPL0s9moegERgWIEndvP0reUjkV6n OfAYWrYtQI6iv88bn8jB4bB+1oeI9hF7Nu93uAIWWJzfYAj6sk/AHWcxjeQVMjFg 3DO2S7ldAvvrLpbv/wNhXFkvyVfo6iAEM+sMeJvXuo5ELAlVDT15sX9tJAeBnpUB b67YKghtapQyZbPRp3Qfr7D3FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5ghEs5 gxvowoJX7hiyCwxSr6FnMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+gbbc4VWV3iQQY+ZIJ0KMNmg5AK3ezYMvl4w7ilaZLqPtarSwlgoY qm8jLzjtayKMPedKjzwJdTSwU8xOB2IIC9hvavXI9T5/zD1R7sKny3voqXQTD7jP w1arIdeb088OQXTvpB2oKYtX65w/VbPbrxFNdBoaanwcebH1rIb07s58eoa2nJTN YZ1QShWKJ1PY/tUxh7Yyd00gK3SRFT8ClnCAhAfbzUyWCaOtTwp1vh4kJ28B0LPs K+x6RSSqTTlo26AO7PwF5yrqpykV4K3i8XRjagJMpch4A9U9/evHOnSovIhylluw PRhm7sRUmRAWMZVV2UOiTKGsI+S54zAH -----END CERTIFICATE-----Generated at Wed Nov 5 23:06:02 2025 by rpki-client