$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: ofkEJXz5K8AUf5To/czy8+d8wPhQPPQ9kXtDEhiOXFA= Subject key identifier: FA:A4:0B:67:A3:54:2E:00:A5:FD:F1:E9:E8:27:88:4F:D4:55:57:D3 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 383C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3685 Signing time: Fri 12 Jun 2026 14:17:55 +0000 Manifest this update: Fri 12 Jun 2026 14:17:55 +0000 Manifest next update: Fri 19 Jun 2026 14:17:55 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: trWrAoBccYyu4KQsBWDSn9ktEUciluO3Nw/dvAAL7SA=) 2: BFB4B7B2EB5C11F0BDF448C8486F56BC.roa (hash: uE/rnhwB3ME5JOA1z9OMjoAfdFiu/bbfu+6j3t7mLB8=) 3: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: +nqzlPuV0MHTJ+4S2S0Nu+k/HevxF1u4cYkYwAyCCHg=) 4: 89A73D46772311EBB972032EC4F9AE02.roa (hash: OmCcAoJqaG+VM4I0xGI0MWEjDCQ4puKtwGSlsV9t2PI=) 5: 88978730772311EBB972032EC4F9AE02.roa (hash: H9kR7aKKfkWFeCcbwIuFh1k6Ox63w9qdIWH7tbADEBs=) 6: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: D9hmvA6dDXSOuTlZ3qbzZ4eSbUShWWWPmR9njY7G+Ic=) 7: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: UUODOJY5+5q5pcm8Nr35HeyzWAGOprJTcgD1liIBbik=) 8: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: SOQcp2o/vipjBiaInCM2WE18Os9teruHe/tKBdXo2pM=) 9: 181D46FCEE5611F0B0ABEB00546F56BC.roa (hash: 0v/XMQ2d8xTna5t6oAMoofbfgmP+DjOOYOL6BBl6lZc=) 10: 05BF31A412A111F19F0D7733B3EE528E.roa (hash: DDHyAiyJR9qzEXBGbIoi4qHLBw3ZayKontdEM6TL8tc=) 11: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: Rfvf6Vj64V/DcT+xX9bZ8JiVA8egzGFFRJ+JQllzS44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14396 (0x383c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 12 14:17:55 2026 GMT Not After : Jun 19 14:17:55 2026 GMT Subject: CN=6a2c1513-00c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:34:36:01:34:03:61:22:02:1f:f9:cc:41: 85:ce:5a:16:00:49:bb:89:f4:d9:b2:54:47:73:08: 1a:22:7a:8a:69:b9:1f:df:23:26:e4:36:c9:d0:44: ff:b0:01:3f:b5:f7:50:5e:24:07:3b:0c:46:e9:fc: 57:ba:aa:bd:04:d8:ed:93:22:da:0a:41:2b:47:54: 2f:43:4f:b5:42:bc:62:0e:03:e4:f2:c0:0e:bd:e5: b1:2b:10:bb:0a:92:2f:33:d5:6f:19:59:68:b8:a7: 3d:93:87:05:f0:41:f0:a2:2b:21:4d:00:66:c3:2c: 5a:fc:13:02:bb:ba:f8:e6:5f:ef:d1:32:49:0a:ac: c0:01:1b:60:1b:97:42:48:8e:71:35:a0:7d:69:91: 09:6f:ea:23:2a:76:9c:4a:b3:fc:b0:bd:4d:cd:c1: 65:e3:6b:ed:c3:8c:f4:91:44:45:b7:d8:e3:44:ca: 4c:1f:0d:ca:ab:fe:47:13:f5:df:44:71:e5:97:ae: 02:e4:5d:d9:a8:a1:57:58:5b:23:0a:54:97:31:0d: 2a:7a:cf:50:ce:e3:da:a7:88:72:8e:65:77:11:20: bd:9b:4b:f6:13:37:9f:fa:20:ca:c4:e5:60:0d:c7: 0e:1e:13:d4:62:cb:d0:76:76:60:ec:61:43:11:3a: 0f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A4:0B:67:A3:54:2E:00:A5:FD:F1:E9:E8:27:88:4F:D4:55:57:D3 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:71:70:50:62:76:d7:67:c8:04:5b:ce:df:57:e1:d7:7b:0f: 4e:15:93:2b:d5:34:ee:4c:ae:7b:f8:ac:d8:b0:b0:3f:45:d9: 20:ea:b3:e5:08:21:e8:9e:a4:f3:7c:34:cc:c3:80:85:7b:0c: 5e:c7:1f:fc:46:bf:a6:dc:f8:1a:51:1f:70:ef:4b:f6:1b:e2: b9:0b:9b:83:65:dd:50:13:85:67:fa:d7:6f:4f:ab:8a:4d:6f: 03:70:90:4c:14:69:8f:67:5f:96:fe:a2:85:b6:3d:61:9b:74: 81:6a:93:62:c1:72:99:ba:ad:15:75:1a:cd:75:c0:9c:cd:b4: 27:d4:58:52:6c:b9:9e:f8:f8:95:a1:0e:d7:1d:c5:6b:06:c0: cf:45:da:e3:08:5c:a7:f3:48:35:4c:46:0d:9f:83:dd:b8:6c: f5:cb:d0:91:64:ac:66:5c:b1:cd:67:5f:6a:4d:89:10:52:7c: 4d:e1:7f:07:99:ee:80:31:cd:ad:a4:2b:ff:4b:b9:4b:1d:4c: fa:11:0a:24:84:36:f8:c9:95:b9:f3:0e:f3:15:c4:58:c0:1b: 29:01:24:4f:e8:77:33:a7:a8:ad:09:d9:25:b9:eb:71:e0:ea: c0:20:b4:1f:4c:be:95:68:83:cb:16:4d:f0:80:42:2c:de:c3: 87:d4:64:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICODwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjYwNjEyMTQxNzU1WhcNMjYwNjE5MTQxNzU1WjAYMRYwFAYD VQQDEw02YTJjMTUxMy0wMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUw0NgE0A2EiAh/5zEGFzloWAEm7ifTZslRHcwgaInqKabkf3yMm5DbJ0ET/ sAE/tfdQXiQHOwxG6fxXuqq9BNjtkyLaCkErR1QvQ0+1QrxiDgPk8sAOveWxKxC7 CpIvM9VvGVlouKc9k4cF8EHwoishTQBmwyxa/BMCu7r45l/v0TJJCqzAARtgG5dC SI5xNaB9aZEJb+ojKnacSrP8sL1NzcFl42vtw4z0kURFt9jjRMpMHw3Kq/5HE/Xf RHHll64C5F3ZqKFXWFsjClSXMQ0qes9QzuPap4hyjmV3ESC9m0v2Ezef+iDKxOVg DccOHhPUYsvQdnZg7GFDEToPPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPqkC2ej VC4Apf3x6egniE/UVVfTMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc3FwUGJ212fIBFvO31fh13sPThWTK9U07kyue/is2LCwP0XZIOqz5Qgh6J6k 83w0zMOAhXsMXscf/Ea/ptz4GlEfcO9L9hviuQubg2XdUBOFZ/rXb0+rik1vA3CQ TBRpj2dflv6ihbY9YZt0gWqTYsFymbqtFXUazXXAnM20J9RYUmy5nvj4laEO1x3F awbAz0Xa4whcp/NINUxGDZ+D3bhs9cvQkWSsZlyxzWdfak2JEFJ8TeF/B5nugDHN raQr/0u5Sx1M+hEKJIQ2+MmVufMO8xXEWMAbKQEkT+h3M6eorQnZJbnrceDqwCC0 H0y+lWiDyxZN8IBCLN7Dh9Rk2A== -----END CERTIFICATE-----Generated at Sat Jun 13 14:50:20 2026 by rpki-client