$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: hXNIx9YYNjzEFVfrXJBrPMh1HZMNRtYwkMGfBe4z2cU= Subject key identifier: 33:28:ED:F5:1E:9C:2E:6B:A9:D3:9E:E8:E5:4B:4B:89:62:57:9D:4F Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 381E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3667 Signing time: Thu 16 Apr 2026 14:17:46 +0000 Manifest this update: Thu 16 Apr 2026 14:17:46 +0000 Manifest next update: Thu 23 Apr 2026 14:17:46 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: 8vEiVAmNcKr2oG4HYa9JeZ6SXXtRYNEqgjGfCIVf9Wk=) 2: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: UUODOJY5+5q5pcm8Nr35HeyzWAGOprJTcgD1liIBbik=) 3: BFB4B7B2EB5C11F0BDF448C8486F56BC.roa (hash: uE/rnhwB3ME5JOA1z9OMjoAfdFiu/bbfu+6j3t7mLB8=) 4: 88978730772311EBB972032EC4F9AE02.roa (hash: H9kR7aKKfkWFeCcbwIuFh1k6Ox63w9qdIWH7tbADEBs=) 5: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: Rfvf6Vj64V/DcT+xX9bZ8JiVA8egzGFFRJ+JQllzS44=) 6: 181D46FCEE5611F0B0ABEB00546F56BC.roa (hash: 0v/XMQ2d8xTna5t6oAMoofbfgmP+DjOOYOL6BBl6lZc=) 7: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: SOQcp2o/vipjBiaInCM2WE18Os9teruHe/tKBdXo2pM=) 8: 05BF31A412A111F19F0D7733B3EE528E.roa (hash: DDHyAiyJR9qzEXBGbIoi4qHLBw3ZayKontdEM6TL8tc=) 9: 89A73D46772311EBB972032EC4F9AE02.roa (hash: OmCcAoJqaG+VM4I0xGI0MWEjDCQ4puKtwGSlsV9t2PI=) 10: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: D9hmvA6dDXSOuTlZ3qbzZ4eSbUShWWWPmR9njY7G+Ic=) 11: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: +nqzlPuV0MHTJ+4S2S0Nu+k/HevxF1u4cYkYwAyCCHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14366 (0x381e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Apr 16 14:17:46 2026 GMT Not After : Apr 23 14:17:46 2026 GMT Subject: CN=69e0ef8a-6c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:df:32:1f:fb:9c:8f:d9:6a:27:e2:d0:80:42: f9:69:a9:0f:2c:63:b9:98:3e:38:01:1c:1e:3d:12: a2:e5:81:29:55:ab:fd:f8:e6:89:b7:e1:37:dd:19: db:16:7b:64:47:dc:8d:3d:54:45:d4:0f:b8:ae:ae: 3d:28:5b:71:6b:eb:d6:1f:d3:a6:ef:49:2b:df:52: 76:5b:80:e6:c1:b9:2b:fe:2a:fe:db:7e:52:a9:f9: d9:8f:0e:93:cf:52:19:36:24:c2:ee:a5:70:46:87: 42:ce:05:9a:ce:5d:94:ee:dc:3e:96:fe:b9:a5:87: cf:f6:68:6a:78:5e:9a:f3:21:a4:1b:72:f8:db:aa: 2e:dc:a3:91:20:c7:9c:e3:3a:f1:e0:87:9c:2f:30: 79:e1:f8:08:b2:aa:a4:2c:48:81:0c:a0:a8:db:e2: 38:cd:bd:28:53:1c:88:60:49:63:a3:da:2a:87:15: 4b:5b:f2:2b:ad:85:ba:bc:17:67:59:44:52:a6:80: d1:fb:2e:21:1f:9f:a0:85:99:e5:41:b9:ef:aa:d1: c7:b2:5f:dc:91:c8:5b:52:13:98:bd:3f:14:7d:73: a8:4c:36:b9:5f:9d:07:e2:81:7b:18:bc:bb:01:11: 53:30:13:c4:89:fd:5b:05:cd:0a:76:d7:f8:41:1b: f7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:28:ED:F5:1E:9C:2E:6B:A9:D3:9E:E8:E5:4B:4B:89:62:57:9D:4F X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:7d:cf:a6:9a:4c:8b:4c:57:57:27:2d:28:7e:3a:81:fb:3a: 4c:9f:ff:52:6c:98:c1:fd:7f:97:1a:98:b7:1e:41:b0:90:fe: 1e:03:27:c1:cf:3b:4b:f8:d8:eb:6f:e3:24:f7:a6:d1:b7:fe: cb:d5:06:97:b8:14:4c:cc:12:3b:75:1c:3d:0b:dd:35:72:db: 85:7f:20:f7:0b:1e:5f:b9:fb:c6:61:d9:30:3b:a0:ab:70:3f: 48:90:05:ba:3d:29:3c:41:91:05:c6:36:3f:44:a6:00:b6:5b: 40:d6:99:39:2c:fc:57:82:b6:bd:85:a2:c4:ab:60:6d:4b:ed: 78:68:eb:65:9b:0b:f0:8c:18:88:2f:32:e8:07:18:f4:39:5a: 21:b7:d5:ba:a2:b9:3a:57:7c:f4:47:3c:78:2e:c1:94:cf:af: cd:c9:9c:62:e4:66:5c:86:b3:21:95:80:3d:b1:fd:af:71:da: 74:f4:5f:3c:36:03:b8:39:36:61:0c:cc:76:30:23:5e:05:e1: 93:c7:df:04:eb:22:8a:b6:7d:3f:55:c3:4d:68:d3:55:9b:10: 26:93:01:5f:b0:d9:5c:98:a7:ad:94:55:67:e5:24:cb:b8:a2: a8:03:72:a4:bb:5b:19:af:f9:f7:de:27:90:ab:a3:64:62:e5: 6e:e0:8e:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjYwNDE2MTQxNzQ2WhcNMjYwNDIzMTQxNzQ2WjAYMRYwFAYD VQQDEw02OWUwZWY4YS02YzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmt8yH/ucj9lqJ+LQgEL5aakPLGO5mD44ARwePRKi5YEpVav9+OaJt+E33Rnb FntkR9yNPVRF1A+4rq49KFtxa+vWH9Om70kr31J2W4Dmwbkr/ir+235SqfnZjw6T z1IZNiTC7qVwRodCzgWazl2U7tw+lv65pYfP9mhqeF6a8yGkG3L426ou3KORIMec 4zrx4IecLzB54fgIsqqkLEiBDKCo2+I4zb0oUxyIYEljo9oqhxVLW/IrrYW6vBdn WURSpoDR+y4hH5+ghZnlQbnvqtHHsl/ckchbUhOYvT8UfXOoTDa5X50H4oF7GLy7 ARFTMBPEif1bBc0Kdtf4QRv3FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDMo7fUe nC5rqdOe6OVLS4liV51PMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIX3PpppMi0xXVyctKH46gfs6TJ//UmyYwf1/lxqYtx5BsJD+HgMnwc87S/jY 62/jJPem0bf+y9UGl7gUTMwSO3UcPQvdNXLbhX8g9wseX7n7xmHZMDugq3A/SJAF uj0pPEGRBcY2P0SmALZbQNaZOSz8V4K2vYWixKtgbUvteGjrZZsL8IwYiC8y6AcY 9DlaIbfVuqK5Old89Ec8eC7BlM+vzcmcYuRmXIazIZWAPbH9r3HadPRfPDYDuDk2 YQzMdjAjXgXhk8ffBOsiirZ9P1XDTWjTVZsQJpMBX7DZXJinrZRVZ+Uky7iiqANy pLtbGa/5994nkKujZGLlbuCOIQ== -----END CERTIFICATE-----Generated at Fri Apr 17 07:22:35 2026 by rpki-client