$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: Oajy5xhQfIcd5U+s8fMxuf4ieyBMFptpSkZr6n78Nqg= Subject key identifier: F7:C4:4F:5F:2B:EB:0F:04:B4:44:EB:0A:0B:C7:A2:A7:87:B3:92:38 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 148C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 1348 Signing time: Thu 16 Apr 2026 16:57:46 +0000 Manifest this update: Thu 16 Apr 2026 16:57:46 +0000 Manifest next update: Thu 23 Apr 2026 16:57:46 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: zpKBtIe+97y9zwxnYLCzq70fxndnripP1dEi/RS3Afk=) 2: 6A5222E2B8CA11F0AEF0BA3CC4F9AE02.roa (hash: DErQ3o7TiaR6Xkm9YVkxrmIyVyHa9Hd4DAj359Ovfp8=) 3: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: ux2ARJ/bgr7if6KwYjchysUxhnA8D8TRZk6Lw4d52aw=) 4: 0038D872072E11EB8914E540C4F9AE02.roa (hash: BfVI3TFyV6fOpgoDG6kN2cNefVnef49M3JRzF9OGVQ8=) 5: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: WxVTSI5IqBCtDZMa9uJVKr0/nWjqcu853MnRjiV9FJM=) 6: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: Y0tv3S5qBpizFf7zS7O2Gepf7bo7jWIy8poU5vPkGKI=) 7: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: jlJ7Tld2dLSNm+vxLU+DB4uapMo/I9nK2H7uiQod+hI=) 8: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: 0JqXWVNYYl5QUi3Ff44dnxQVqYfsFqTw62wHqYfZBwc=) 9: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 0Ug2MlowSOnP4Pb++tVsQunj0HFM39e7BgFne7s9Gxk=) 10: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: 0nXqFu4Qi3Igds5cTks5iZ4dhntuRJvANiDD3hyPktU=) 11: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: 9gF1aAdFHEDmuDddG9VCS6z/7V4hA5cH16J97sGtqmY=) 12: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: 4ErdLc5I6Vjk6uLExe07aYdEJVnOiI+wzbQvVUiYi2A=) 13: AD7B2798CDCA11F096B9035EC4F9AE02.roa (hash: 1rrUr85BF/sY2udLImZ0ePN2Kgi1s7SnmiZY7CqnRO0=) 14: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: lO58lSpUoRJEo6C2ieXTdSjYTs9Vv0caugZb03Wynjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5260 (0x148c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Apr 16 16:57:46 2026 GMT Not After : Apr 23 16:57:46 2026 GMT Subject: CN=69e1150a-e457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:29:0e:f1:7e:01:db:f1:83:6d:0f:af:13:dd: f7:44:e1:5d:06:e4:74:d5:de:aa:fb:4d:17:0e:cf: a0:5f:d1:1a:ae:62:09:39:04:d1:de:33:b1:c2:63: b1:d0:35:e3:38:35:ff:bc:ec:a8:3d:e4:aa:03:21: 7f:e5:19:9e:d7:42:3f:b1:3e:bb:86:56:a2:9f:e4: d6:b8:9b:2c:f8:70:89:ca:2a:1b:ad:f3:a0:a9:b6: 03:84:e9:dc:3b:64:5b:cb:0d:15:38:de:9b:5d:0b: 93:ec:c6:e9:fe:65:1e:fd:d5:5f:df:15:b2:ba:06: f2:e4:eb:db:ac:45:4b:6c:95:9d:82:dd:c7:39:fb: c3:bd:9e:66:b0:8c:34:aa:50:9f:8d:f1:2a:15:4c: 15:6f:cb:75:13:7d:4d:90:b1:44:79:04:0f:c5:87: 6e:f6:db:8a:7b:ef:c2:d1:fc:b5:18:e4:06:8e:ec: 6e:a9:b0:6b:f0:a4:7a:44:06:0a:33:b6:7e:9c:a7: d1:bb:b9:d8:20:ee:ad:06:f4:f4:ad:30:d6:26:dc: a5:0e:eb:89:2c:f5:3c:5b:de:04:cc:da:29:cc:ff: 96:a1:92:45:be:70:c1:2c:fa:3e:c4:c4:5b:d7:da: 0c:51:8a:bd:86:31:a5:81:a2:99:d0:3e:2e:f2:de: 0f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C4:4F:5F:2B:EB:0F:04:B4:44:EB:0A:0B:C7:A2:A7:87:B3:92:38 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:d4:17:ad:b1:3d:05:10:e4:a6:f1:7a:3a:c4:fd:43:3b:55: 44:09:cc:11:53:70:2e:ff:f1:14:91:48:07:8a:17:3b:2f:47: b1:e2:3a:58:2a:8b:69:5f:64:70:1a:4d:10:9e:06:62:0b:a5: 64:9a:49:c3:e9:27:61:eb:bc:11:75:52:a4:14:f1:a7:ef:63: 65:39:b8:eb:97:84:ae:d9:d4:12:e2:d3:60:83:c1:82:bd:59: dd:a8:58:62:36:43:f0:63:59:84:72:60:fc:57:1c:c9:3c:00: de:17:89:67:17:7e:e9:a0:02:9c:ac:df:47:14:79:43:e5:c2: cd:49:63:9f:b1:84:f0:f9:86:e8:a1:61:d2:07:d7:07:50:d9: f7:de:2b:67:9e:ed:ee:2b:68:60:15:3c:22:91:63:26:b5:42: df:ca:d2:2b:ed:d9:c2:f9:bb:5c:53:9b:5a:3f:a3:6f:6e:45: 3e:09:9b:b5:b8:a8:2a:57:46:c2:ed:06:ec:10:93:c4:21:a6: 7b:a3:9d:a4:44:f2:bd:b7:e2:e9:81:2c:e7:24:32:af:b9:b6: 27:fb:65:0d:9b:25:19:01:9e:0c:d5:18:6e:1d:8a:d7:01:29: da:25:6c:54:80:35:3e:a8:2f:a6:18:87:04:47:75:b2:e9:53: 9c:5d:82:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjYwNDE2MTY1NzQ2WhcNMjYwNDIzMTY1NzQ2WjAYMRYwFAYD VQQDEw02OWUxMTUwYS1lNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkSkO8X4B2/GDbQ+vE933ROFdBuR01d6q+00XDs+gX9EarmIJOQTR3jOxwmOx 0DXjODX/vOyoPeSqAyF/5Rme10I/sT67hlain+TWuJss+HCJyiobrfOgqbYDhOnc O2Rbyw0VON6bXQuT7Mbp/mUe/dVf3xWyugby5OvbrEVLbJWdgt3HOfvDvZ5msIw0 qlCfjfEqFUwVb8t1E31NkLFEeQQPxYdu9tuKe+/C0fy1GOQGjuxuqbBr8KR6RAYK M7Z+nKfRu7nYIO6tBvT0rTDWJtylDuuJLPU8W94EzNopzP+WoZJFvnDBLPo+xMRb 19oMUYq9hjGlgaKZ0D4u8t4PSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPfET18r 6w8EtETrCgvHoqeHs5I4MB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAANQXrbE9BRDkpvF6OsT9QztVRAnMEVNwLv/xFJFIB4oXOy9HseI6WCqLaV9k cBpNEJ4GYgulZJpJw+knYeu8EXVSpBTxp+9jZTm465eErtnUEuLTYIPBgr1Z3ahY YjZD8GNZhHJg/FccyTwA3heJZxd+6aACnKzfRxR5Q+XCzUljn7GE8PmG6KFh0gfX B1DZ994rZ57t7itoYBU8IpFjJrVC38rSK+3Zwvm7XFObWj+jb25FPgmbtbioKldG wu0G7BCTxCGme6OdpETyvbfi6YEs5yQyr7m2J/tlDZslGQGeDNUYbh2K1wEp2iVs VIA1PqgvphiHBEd1sulTnF2CAg== -----END CERTIFICATE-----Generated at Fri Apr 17 16:53:51 2026 by rpki-client