$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: Y+Wv4xjNBuxgF9iD/4pbT2sJPA4LvHv/0szxZ6jcRlc= Subject key identifier: 62:70:2E:03:31:55:C8:B8:BA:9E:FC:E4:B1:DE:38:91:4C:F6:5E:16 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0781 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 0768 Signing time: Thu 16 Apr 2026 21:34:14 +0000 Manifest this update: Thu 16 Apr 2026 21:34:14 +0000 Manifest next update: Thu 23 Apr 2026 21:34:14 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: H6bHKmiBjQhfaR0ulpM82luRuIkbcs0Wx12/p/QZF54=) 2: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: iME1Wafl/c0OdFfEQ+yf2PqIzRI/AG4449vj600jvuo=) 3: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: Edqwd+7S5FW+RSH1hNv3IRDd/a/nupHqU/W9+fP/QYw=) 4: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: 8Bf2rdYfYL741zuMOv5KtG3C9cn1bSgEVEELLNz/YH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1921 (0x781) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Apr 16 21:34:14 2026 GMT Not After : Apr 23 21:34:14 2026 GMT Subject: CN=69e155d6-9617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:12:c3:30:82:27:34:af:35:63:6e:de:d6:c0: 4f:a3:25:f7:6d:fc:f5:c7:e7:8f:a8:1b:1c:32:90: 91:c0:0d:3b:ac:20:89:93:a4:5f:13:7c:4f:8d:31: 13:7f:39:e5:ae:e2:50:dd:06:68:14:e2:71:ab:0b: f4:24:c4:e9:fc:e8:ad:20:4a:1c:cd:bc:f8:a0:fa: 18:06:59:7f:87:8d:93:24:f2:33:94:85:08:20:29: ea:5e:bf:73:42:af:61:eb:6b:8f:06:d5:50:fe:ce: 96:da:b4:e7:e6:ec:67:8f:5a:11:95:95:6f:70:e1: 2f:c7:82:8f:3a:74:83:46:52:5d:a7:d7:b4:db:95: c6:6f:d5:6f:82:60:fb:a4:11:9a:fe:84:f1:5f:1f: 95:6f:f9:1e:26:e8:b7:3f:18:62:3c:ca:b5:81:fc: fe:69:72:67:69:c4:fa:b4:07:71:a4:93:cd:30:36: bb:a2:2b:66:be:6b:3f:f5:b1:e4:ef:a9:65:02:86: 73:db:3c:9f:1b:e9:8d:d1:4c:02:6c:50:4c:5d:cb: 05:37:d0:bc:5c:62:69:ec:16:bf:0b:97:ba:a1:41: 45:a8:0a:a3:b7:11:dd:11:97:c1:1a:48:d2:f7:1b: 2d:75:fa:e7:5e:a6:9c:c4:ce:ae:cd:5a:40:68:b5: 9e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:70:2E:03:31:55:C8:B8:BA:9E:FC:E4:B1:DE:38:91:4C:F6:5E:16 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:2f:7b:1a:40:86:fb:38:f0:9b:e2:45:5c:0f:25:bb:77:5a: b3:f3:85:02:24:d6:0e:31:a5:17:74:61:6c:15:a9:c7:64:f1: 65:e3:b4:1b:4c:ef:c9:9b:85:d5:77:59:31:d0:b0:53:c1:03: ed:a6:b8:82:3f:e4:3d:eb:45:7e:36:28:07:a3:34:4e:02:43: 71:a0:19:97:e3:a6:c6:55:82:37:33:72:fb:64:17:ee:e0:b9: 2c:7f:d0:12:cd:a2:8b:b6:4a:29:af:83:1b:d4:7e:6e:e9:3b: a3:ab:4c:52:d1:d8:74:72:97:05:c5:a2:da:a4:72:89:cb:1d: 94:dd:18:73:af:33:e3:5a:7f:95:a7:d0:07:ba:cd:2f:b6:8f: b7:e1:47:0e:1d:fb:f0:6a:81:ba:7d:54:5f:9d:10:2e:27:7c: 79:ff:f3:dd:52:26:df:13:d8:3d:fc:5b:c7:fe:42:50:2f:1f: 06:ae:07:64:b5:4e:c3:d1:a5:97:d2:e1:de:98:12:82:e3:42: 8d:6b:e1:1c:78:c4:25:27:0b:b1:ba:fb:d2:a6:50:3f:38:38: 68:df:0e:ab:a7:c1:c9:f1:a4:76:ff:d4:db:b4:02:ee:79:18: ad:9e:07:c9:c8:3d:7f:9b:de:c7:b9:c4:9d:9e:6b:c2:17:93: 26:a1:35:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjYwNDE2MjEzNDE0WhcNMjYwNDIzMjEzNDE0WjAYMRYwFAYD VQQDEw02OWUxNTVkNi05NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRLDMIInNK81Y27e1sBPoyX3bfz1x+ePqBscMpCRwA07rCCJk6RfE3xPjTET fznlruJQ3QZoFOJxqwv0JMTp/OitIEoczbz4oPoYBll/h42TJPIzlIUIICnqXr9z Qq9h62uPBtVQ/s6W2rTn5uxnj1oRlZVvcOEvx4KPOnSDRlJdp9e025XGb9VvgmD7 pBGa/oTxXx+Vb/keJui3PxhiPMq1gfz+aXJnacT6tAdxpJPNMDa7oitmvms/9bHk 76llAoZz2zyfG+mN0UwCbFBMXcsFN9C8XGJp7Ba/C5e6oUFFqAqjtxHdEZfBGkjS 9xstdfrnXqacxM6uzVpAaLWedQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGJwLgMx Vci4up785LHeOJFM9l4WMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwy97GkCG+zjwm+JFXA8lu3das/OFAiTWDjGlF3RhbBWpx2TxZeO0G0zvyZuF 1XdZMdCwU8ED7aa4gj/kPetFfjYoB6M0TgJDcaAZl+OmxlWCNzNy+2QX7uC5LH/Q Es2ii7ZKKa+DG9R+buk7o6tMUtHYdHKXBcWi2qRyicsdlN0Yc68z41p/lafQB7rN L7aPt+FHDh378GqBun1UX50QLid8ef/z3VIm3xPYPfxbx/5CUC8fBq4HZLVOw9Gl l9Lh3pgSguNCjWvhHHjEJScLsbr70qZQPzg4aN8Oq6fByfGkdv/U27QC7nkYrZ4H ycg9f5vex7nEnZ5rwheTJqE10g== -----END CERTIFICATE-----Generated at Fri Apr 17 13:20:04 2026 by rpki-client