$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: 3uhSqXKOO2MPAT2o7X2UXwT43GigtHwl4KYKUo7GkDE= Subject key identifier: 37:EC:BE:22:EC:63:55:C0:73:67:5B:FB:58:B4:F8:8F:A4:72:3B:2F Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 06BD Signing time: Fri 30 May 2025 22:19:36 +0000 Manifest this update: Fri 30 May 2025 22:19:36 +0000 Manifest next update: Fri 06 Jun 2025 22:19:36 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: 8tqQbV1hUd0A866tLH971VbDR3yVoLuEATv6kjf7TXY=) 2: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: H1d0qtWMbN/ZLehnM+qkk/9VJSqY96iabdAlvpWRnf8=) 3: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: YNpH5Q9f52SuXXmbgomoqSZtciJ+QBf4TgDm3Z8IhyI=) 4: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: IRUZ+HQ+rrY+P2Ftx4LEZSfF4IIIe7sj7QLj+A7Ieao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: May 30 22:19:36 2025 GMT Not After : Jun 6 22:19:36 2025 GMT Subject: CN=683a2ef8-2d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:14:c8:d2:39:1b:b4:5e:55:01:5e:37:36:53: 65:3f:5a:58:fb:74:92:37:36:b9:91:3e:0d:b9:51: 62:2b:e8:dd:65:eb:6a:28:72:4d:b6:6b:a8:2d:aa: bb:31:2d:a7:0e:0f:ce:2d:24:d6:e0:0f:5b:58:79: 29:f0:ec:9c:aa:0a:7e:b4:fd:30:55:a8:c4:6e:98: 0d:47:86:92:46:9e:59:3e:1b:6c:54:f8:a2:36:6c: aa:75:47:40:7f:93:57:c8:09:11:ee:7c:b4:8c:dc: 1f:ca:54:a8:6a:11:a2:5a:d4:d3:2e:4c:a0:b5:55: 16:60:f9:a8:44:6a:9e:c4:50:0f:bb:dc:17:f1:25: a3:1a:d2:d4:1a:00:77:86:c9:b1:a7:f5:9d:bd:96: 99:a4:de:00:a1:63:87:f9:ee:e7:96:92:22:ef:70: d5:40:bc:c0:12:01:a0:82:a2:c1:49:93:eb:e8:37: 28:13:27:61:4b:a5:32:ff:78:8d:92:16:f7:cf:f7: ee:b5:70:82:72:a5:67:a7:ec:15:f3:a6:ff:86:0a: 6b:e5:fe:80:b0:4a:c0:75:dc:54:c6:d8:98:43:bd: bc:ee:d8:b6:fe:02:aa:0a:fb:70:06:b3:c0:99:7e: ed:ff:c7:08:65:f1:d0:b5:0c:79:14:91:49:15:f1: 5f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EC:BE:22:EC:63:55:C0:73:67:5B:FB:58:B4:F8:8F:A4:72:3B:2F X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:6b:e5:62:b2:a2:9e:51:8e:5f:5b:5a:b8:eb:10:3c:0d:03: 6e:bc:f4:86:d8:14:c5:aa:57:c2:3e:33:a5:34:a3:20:2e:db: 0c:27:1f:b0:d3:4c:0e:3c:06:7a:19:12:15:13:e6:2b:5a:81: 52:7b:48:c5:74:c7:32:cc:70:18:df:6e:03:22:8d:38:ee:da: df:8f:90:21:58:8a:c3:70:48:df:05:8d:8e:92:55:21:24:08: 68:88:74:92:ac:d5:30:40:9f:45:5a:cc:5e:73:22:14:7a:40: d3:6d:60:5f:af:6f:b6:fa:6d:98:5b:b4:17:ce:91:5c:c6:58: 05:97:cf:b8:dd:c7:ec:57:8d:d4:35:59:57:09:44:5b:01:d7: 0c:5f:3f:4c:92:6f:d2:65:83:3a:6b:04:4b:11:1c:ca:af:c1: 5e:89:f6:6c:4a:2b:c7:4e:33:e8:2f:0f:9b:f6:31:30:97:ec: 0c:ac:f1:90:2d:c9:42:da:81:19:cf:56:9c:d5:06:5c:4c:f9: cf:ee:cd:f8:7a:d0:ad:c4:3f:53:a0:37:f5:01:b2:d8:d7:f9: ae:14:01:5b:99:9c:bc:e2:58:2c:49:5c:7d:26:06:70:01:75: 6f:a8:8a:c1:62:95:f0:00:3e:16:97:e8:11:8b:78:cd:dd:0e: 3c:b3:b2:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUwNTMwMjIxOTM2WhcNMjUwNjA2MjIxOTM2WjAYMRYwFAYD VQQDEw02ODNhMmVmOC0yZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BTI0jkbtF5VAV43NlNlP1pY+3SSNza5kT4NuVFiK+jdZetqKHJNtmuoLaq7 MS2nDg/OLSTW4A9bWHkp8Oycqgp+tP0wVajEbpgNR4aSRp5ZPhtsVPiiNmyqdUdA f5NXyAkR7ny0jNwfylSoahGiWtTTLkygtVUWYPmoRGqexFAPu9wX8SWjGtLUGgB3 hsmxp/WdvZaZpN4AoWOH+e7nlpIi73DVQLzAEgGggqLBSZPr6DcoEydhS6Uy/3iN khb3z/futXCCcqVnp+wV86b/hgpr5f6AsErAddxUxtiYQ7287ti2/gKqCvtwBrPA mX7t/8cIZfHQtQx5FJFJFfFfvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfsviLs Y1XAc2db+1i0+I+kcjsvMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBa+VisqKeUY5fW1q46xA8DQNuvPSG2BTFqlfCPjOlNKMgLtsMJx+w 00wOPAZ6GRIVE+YrWoFSe0jFdMcyzHAY324DIo047trfj5AhWIrDcEjfBY2OklUh JAhoiHSSrNUwQJ9FWsxecyIUekDTbWBfr2+2+m2YW7QXzpFcxlgFl8+43cfsV43U NVlXCURbAdcMXz9Mkm/SZYM6awRLERzKr8FeifZsSivHTjPoLw+b9jEwl+wMrPGQ LclC2oEZz1ac1QZcTPnP7s34etCtxD9ToDf1AbLY1/muFAFbmZy84lgsSVx9JgZw AXVvqIrBYpXwAD4Wl+gRi3jN3Q48s7LE -----END CERTIFICATE-----Generated at Sat May 31 16:45:43 2025 by rpki-client