$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: 2kfqMprLp573tiJlpjvHlKNXbe04uU+QShPX/DaQU1I= Subject key identifier: 00:BA:24:64:CD:DB:4C:8F:1D:8B:A0:C0:77:A2:C0:C1:79:93:E3:B6 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 077B Signing time: Wed 20 May 2026 21:38:49 +0000 Manifest this update: Wed 20 May 2026 21:38:49 +0000 Manifest next update: Wed 27 May 2026 21:38:49 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: hA2gK3RXJa08K3nNnuDmIAA4SndWRuBya6f8h5Eu0bY=) 2: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: 8Bf2rdYfYL741zuMOv5KtG3C9cn1bSgEVEELLNz/YH8=) 3: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: iME1Wafl/c0OdFfEQ+yf2PqIzRI/AG4449vj600jvuo=) 4: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: CpFJfviv2G7kOoCAx8E0MIABIX073GlTgR5ffWoVVlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: May 20 21:38:49 2026 GMT Not After : May 27 21:38:49 2026 GMT Subject: CN=6a0e29e9-7168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c4:71:4e:62:33:df:9e:0e:04:3c:a9:22:53: 71:4a:90:68:55:6e:ac:56:53:b7:6d:e8:91:d9:1d: 70:06:0c:bc:1d:f8:ec:8c:c8:44:f1:3e:31:32:f2: 41:6f:26:d7:90:87:ef:74:b0:3e:41:82:8e:cc:36: 60:da:a3:d5:c7:57:38:38:7d:c5:ab:4d:3c:38:48: fc:2e:f6:a8:47:a2:b0:7e:b7:06:1f:99:95:53:d2: c7:d7:3e:56:5d:a5:7c:06:a8:22:f7:99:d7:3b:95: d3:a4:d4:c8:81:f6:81:23:b0:cd:aa:05:6d:ae:6e: 8b:3f:9b:5a:62:d9:c6:75:ba:e8:68:6c:56:bf:40: ea:b8:ae:4d:85:fc:18:74:75:e9:b3:6b:0e:a8:71: 0c:7a:cd:e1:50:e3:9b:91:00:56:2c:16:06:5b:b2: 75:bf:ca:7c:70:fd:c7:3b:6e:e7:3b:e5:a5:13:f3: ce:1e:4d:54:c8:70:fa:1a:23:c4:42:29:70:a4:74: d7:d2:76:f1:3d:f8:ff:37:3d:40:fa:00:df:73:bc: 20:19:2a:a9:c8:17:61:26:66:e2:2a:a0:2e:b2:a1: ab:d5:11:37:c9:b2:51:52:02:13:5e:49:37:ce:5b: 34:1a:f0:2d:87:5f:93:3f:b5:b5:22:05:63:9c:19: 25:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BA:24:64:CD:DB:4C:8F:1D:8B:A0:C0:77:A2:C0:C1:79:93:E3:B6 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0a:ad:a0:17:3d:dc:a0:db:17:59:d1:44:7a:0e:0d:8d:79: 73:e2:e8:b0:3c:00:0b:a0:07:b1:be:cf:28:fc:ef:92:51:22: 19:c8:34:4a:56:e2:88:7f:32:ab:49:db:63:1a:1e:52:b3:d4: 29:7d:54:9e:e5:54:b2:e4:4b:1b:69:9f:37:c0:87:b5:f0:d5: ee:e0:f4:cd:e3:8e:06:09:89:11:0a:1d:4d:c9:2b:0a:03:ab: 59:a7:56:e7:86:2e:08:c3:1a:08:84:ce:70:65:52:55:61:dc: 39:ee:68:6b:9c:a3:e0:9f:1a:a6:71:f2:64:d6:69:62:cc:06: 8a:f8:e2:9d:28:ad:2e:7e:3d:45:54:9b:1c:87:73:e5:f3:19: e2:da:d7:c7:1e:c1:26:3d:a1:1d:0e:c3:ac:01:d1:df:e2:bb: cd:f2:f9:e4:0e:07:a2:4a:b7:9c:88:25:8f:4b:b7:48:b8:52: 11:7b:7e:2a:70:ed:00:96:dd:12:47:79:81:a3:49:28:eb:83: c5:59:7b:76:5f:1f:95:02:4c:13:7c:83:7c:cb:70:93:b6:10: c7:72:19:c4:6d:bc:1b:88:63:82:5e:9e:d3:b6:cf:1f:32:e7: 47:01:eb:7f:df:c8:13:4c:23:b2:39:dd:93:75:5b:64:2e:c6: 1c:8f:e1:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjYwNTIwMjEzODQ5WhcNMjYwNTI3MjEzODQ5WjAYMRYwFAYD VQQDEw02YTBlMjllOS03MTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MRxTmIz354OBDypIlNxSpBoVW6sVlO3beiR2R1wBgy8HfjsjMhE8T4xMvJB bybXkIfvdLA+QYKOzDZg2qPVx1c4OH3Fq008OEj8LvaoR6KwfrcGH5mVU9LH1z5W XaV8Bqgi95nXO5XTpNTIgfaBI7DNqgVtrm6LP5taYtnGdbroaGxWv0DquK5NhfwY dHXps2sOqHEMes3hUOObkQBWLBYGW7J1v8p8cP3HO27nO+WlE/POHk1UyHD6GiPE QilwpHTX0nbxPfj/Nz1A+gDfc7wgGSqpyBdhJmbiKqAusqGr1RE3ybJRUgITXkk3 zls0GvAth1+TP7W1IgVjnBklYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAC6JGTN 20yPHYugwHeiwMF5k+O2MB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApAqtoBc93KDbF1nRRHoODY15c+LosDwAC6AHsb7PKPzvklEiGcg0SlbiiH8y q0nbYxoeUrPUKX1UnuVUsuRLG2mfN8CHtfDV7uD0zeOOBgmJEQodTckrCgOrWadW 54YuCMMaCITOcGVSVWHcOe5oa5yj4J8apnHyZNZpYswGivjinSitLn49RVSbHIdz 5fMZ4trXxx7BJj2hHQ7DrAHR3+K7zfL55A4Hokq3nIglj0u3SLhSEXt+KnDtAJbd Ekd5gaNJKOuDxVl7dl8flQJME3yDfMtwk7YQx3IZxG28G4hjgl6e07bPHzLnRwHr f9/IE0wjsjndk3VbZC7GHI/hMQ== -----END CERTIFICATE-----Generated at Thu May 21 10:27:45 2026 by rpki-client