$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: 0bacgarOMjxPsxTnfGCwblPHxJQus4IndufW9VXbzMM= Subject key identifier: EC:4E:11:09:B9:09:88:D2:1F:AE:34:16:2E:9A:0D:12:06:2C:F9:1C Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 374A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3641 Signing time: Sat 28 Feb 2026 14:18:30 +0000 Manifest this update: Sat 28 Feb 2026 14:18:29 +0000 Manifest next update: Sat 07 Mar 2026 14:18:29 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: POTpxLqonNHJAwOEWSwgbSBib+0KVqy3To0e0GBV0Jc=) 2: 89A73D46772311EBB972032EC4F9AE02.roa (hash: XuHnyV+8ostPyxjnkXbOX1jZ/I58/X+dM54MTwceYk4=) 3: 05BF31A412A111F19F0D7733B3EE528E.roa (hash: 61jDWWDKd90oSHboNJPNDq1F1xi5lJNklhwlns9ZzWY=) 4: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: y0rKzz0Snv9R04rws22+gkqq6O4bsk45u6pWMoN9Nv4=) 5: 88978730772311EBB972032EC4F9AE02.roa (hash: qCAbrTOTO+u9wG2AtJMHwCg2F2RB06RJBS+v/M0CnSU=) 6: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: c64Vl37mpYyYPtB+a7iS5BAfnlfof6VQdScRe1f9gTs=) 7: 181D46FCEE5611F0B0ABEB00546F56BC.roa (hash: xk8ZjIW3AbcG3XDMHlT0zd8lNw7PiRPi9audlNomzxg=) 8: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: cR3YLJTaJB1UEeMod2G2IzGpTxjgWQxKqLHSOOJJ9ow=) 9: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: TDi1US3IvoxG5dIWQrDwLdGVITGuuc28njDlDxGTjC8=) 10: BFB4B7B2EB5C11F0BDF448C8486F56BC.roa (hash: biWsDMh8Eh4e2nKNO7SUfxXUgzUV8I8YyMxqd6Gz3Uo=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: EPnm9b7f6Fi+HuaDB+ZZ5U0JlDE5ec6kD82XWxJwRHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14154 (0x374a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Feb 28 14:18:29 2026 GMT Not After : Mar 7 14:18:29 2026 GMT Subject: CN=69a2f936-21de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b2:d1:ce:cb:c0:aa:e5:19:7f:7e:4c:f6:41: 39:83:52:df:dc:2b:09:5d:f1:48:be:db:fb:c2:1d: 4a:3c:1a:06:f4:56:35:4a:f8:86:db:07:4a:6a:c4: 89:c0:64:80:d8:0f:44:c2:32:e1:8a:82:4e:3e:15: 35:f5:3f:8e:44:e8:5d:a6:24:b0:fb:98:a9:d8:a2: e7:80:60:d7:36:e2:69:8f:33:85:aa:64:d9:33:ab: 30:4b:9b:3e:5f:0c:20:d4:21:01:14:bc:08:c2:65: 8e:2a:15:13:c4:5a:ae:b6:7d:d8:72:25:e3:e2:15: eb:6d:f1:6b:55:f8:2d:1e:99:64:a8:b2:9b:ad:f9: 31:8d:a6:dd:86:aa:35:e3:e0:bf:55:7b:e3:65:8b: 12:f3:e9:08:34:7f:74:6a:de:8b:69:80:19:3f:ea: ba:1c:76:a7:a5:ac:4e:ad:5d:d3:fc:d2:d3:39:1c: 09:9a:ef:30:72:57:5a:09:ac:2a:21:a0:32:0c:e7: 77:ea:33:2e:38:ab:be:71:39:02:ad:36:28:1b:ad: 3a:9a:c6:17:cb:5b:0b:97:9e:f2:5c:69:0c:03:db: 5d:d2:ce:5d:b7:b3:5d:c6:4b:8f:1a:1a:69:54:f5: be:c0:2e:f5:8a:ee:36:50:17:a5:f2:05:f8:b0:72: 7a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:4E:11:09:B9:09:88:D2:1F:AE:34:16:2E:9A:0D:12:06:2C:F9:1C X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:ad:83:fa:b7:cc:bd:67:d8:e4:bb:2a:c5:7d:5e:89:3c:d6: 9f:19:d9:16:39:ba:3f:61:9c:7f:a8:1d:c3:e1:e8:93:7a:a1: 12:36:2b:31:5f:7a:29:8d:40:98:40:3a:69:1b:51:76:94:47: e7:87:2c:9e:63:79:50:cf:23:f1:b0:81:3e:42:5e:fa:83:41: c9:35:c6:f7:64:a1:ac:93:4a:46:16:36:7f:fb:a1:65:07:32: 34:d9:2c:07:7f:22:ef:2b:14:51:af:b5:79:82:14:69:97:bd: 4f:c8:21:f9:4c:2f:3f:26:da:99:d2:4a:a3:a8:37:42:48:72: b5:6b:cf:58:00:bb:e6:0d:5c:b7:13:da:d3:df:df:48:cc:20: c1:43:f1:c6:5a:9c:2c:0d:fb:ee:40:30:09:25:f3:cf:50:28: 29:f6:10:38:9f:53:fb:fb:7e:7b:a4:7f:27:b9:5f:60:5a:05: ef:85:71:4b:0b:04:e8:9d:a9:66:45:3d:f5:ee:7c:20:45:0b: 37:97:ca:f6:9d:79:7a:b9:81:b3:9b:f7:d5:39:05:31:23:9f: b8:da:db:de:e1:8e:10:2c:e1:1f:15:f1:92:ac:c2:c6:98:1b: 4c:ae:73:35:60:6e:02:9a:12:11:53:75:c5:37:a2:c4:e3:59: cd:5c:bb:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICN0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjYwMjI4MTQxODI5WhcNMjYwMzA3MTQxODI5WjAYMRYwFAYD VQQDEw02OWEyZjkzNi0yMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbLRzsvAquUZf35M9kE5g1Lf3CsJXfFIvtv7wh1KPBoG9FY1SviG2wdKasSJ wGSA2A9EwjLhioJOPhU19T+OROhdpiSw+5ip2KLngGDXNuJpjzOFqmTZM6swS5s+ Xwwg1CEBFLwIwmWOKhUTxFqutn3YciXj4hXrbfFrVfgtHplkqLKbrfkxjabdhqo1 4+C/VXvjZYsS8+kINH90at6LaYAZP+q6HHanpaxOrV3T/NLTORwJmu8wcldaCawq IaAyDOd36jMuOKu+cTkCrTYoG606msYXy1sLl57yXGkMA9td0s5dt7NdxkuPGhpp VPW+wC71iu42UBel8gX4sHJ6AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxOEQm5 CYjSH640Fi6aDRIGLPkcMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl62D+rfMvWfY5LsqxX1eiTzWnxnZFjm6P2Gcf6gdw+Hok3qhEjYrMV96KY1A mEA6aRtRdpRH54csnmN5UM8j8bCBPkJe+oNByTXG92ShrJNKRhY2f/uhZQcyNNks B38i7ysUUa+1eYIUaZe9T8gh+UwvPybamdJKo6g3QkhytWvPWAC75g1ctxPa09/f SMwgwUPxxlqcLA377kAwCSXzz1AoKfYQOJ9T+/t+e6R/J7lfYFoF74VxSwsE6J2p ZkU99e58IEULN5fK9p15ermBs5v31TkFMSOfuNrb3uGOECzhHxXxkqzCxpgbTK5z NWBuApoSEVN1xTeixONZzVy7Ww== -----END CERTIFICATE-----Generated at Sun Mar 1 22:42:52 2026 by rpki-client