$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: 7cWP6IeAQkJ6R3zDRfNUGRo7SPCbsvrC9Pipn31yzD0= Subject key identifier: C0:77:44:2D:FD:AC:3E:9C:61:F1:84:71:77:AA:B0:46:72:78:0D:09 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 133C Signing time: Tue 24 Mar 2026 16:55:48 +0000 Manifest this update: Tue 24 Mar 2026 16:55:47 +0000 Manifest next update: Tue 31 Mar 2026 16:55:47 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: DoyD4BNPz0kLKlx42lAU7012Jm0AwzUHSOIYaDNWP/Y=) 2: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: ux2ARJ/bgr7if6KwYjchysUxhnA8D8TRZk6Lw4d52aw=) 3: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: 0nXqFu4Qi3Igds5cTks5iZ4dhntuRJvANiDD3hyPktU=) 4: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: 9gF1aAdFHEDmuDddG9VCS6z/7V4hA5cH16J97sGtqmY=) 5: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: 0JqXWVNYYl5QUi3Ff44dnxQVqYfsFqTw62wHqYfZBwc=) 6: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: Y0tv3S5qBpizFf7zS7O2Gepf7bo7jWIy8poU5vPkGKI=) 7: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: WxVTSI5IqBCtDZMa9uJVKr0/nWjqcu853MnRjiV9FJM=) 8: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: 4ErdLc5I6Vjk6uLExe07aYdEJVnOiI+wzbQvVUiYi2A=) 9: 0038D872072E11EB8914E540C4F9AE02.roa (hash: BfVI3TFyV6fOpgoDG6kN2cNefVnef49M3JRzF9OGVQ8=) 10: AD7B2798CDCA11F096B9035EC4F9AE02.roa (hash: 1rrUr85BF/sY2udLImZ0ePN2Kgi1s7SnmiZY7CqnRO0=) 11: 6A5222E2B8CA11F0AEF0BA3CC4F9AE02.roa (hash: DErQ3o7TiaR6Xkm9YVkxrmIyVyHa9Hd4DAj359Ovfp8=) 12: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: jlJ7Tld2dLSNm+vxLU+DB4uapMo/I9nK2H7uiQod+hI=) 13: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 0Ug2MlowSOnP4Pb++tVsQunj0HFM39e7BgFne7s9Gxk=) 14: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: lO58lSpUoRJEo6C2ieXTdSjYTs9Vv0caugZb03Wynjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5248 (0x1480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Mar 24 16:55:47 2026 GMT Not After : Mar 31 16:55:47 2026 GMT Subject: CN=69c2c213-013d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:84:65:31:96:04:f8:5b:4a:42:b3:60:73:2c: b2:33:1d:ed:75:4f:85:a7:64:6d:03:73:0e:c3:d8: bb:f1:c3:47:cd:df:ed:4b:0e:97:4a:a2:94:5a:bf: 71:ba:d5:8d:c9:dd:e1:ea:3c:b9:62:3b:d2:7f:3b: b1:00:83:ac:0f:f9:71:ea:62:cd:00:28:56:13:58: 37:0c:68:7c:78:ac:4f:e8:21:58:38:cb:77:e5:bb: 48:2c:df:c3:7e:36:ca:fa:77:df:20:3f:65:e5:d4: 10:12:ac:e8:5b:41:d0:89:cf:5e:00:19:85:c0:ec: b3:bb:df:76:4d:ce:b0:7a:49:ae:6c:e2:6f:0f:35: 6a:f3:92:c1:33:42:7b:0d:a0:ba:0f:f9:a5:8d:33: de:11:d1:90:91:e4:59:8a:2c:a4:b2:d8:09:60:81: 7d:3d:45:0f:cd:1b:e0:c3:48:ab:39:cb:45:69:e9: 81:89:81:0b:ef:8b:ad:67:66:fa:af:fc:83:92:28: 58:de:57:64:f2:49:db:15:8e:a3:7f:dc:61:fe:54: d8:a8:a7:4f:d8:6d:b4:2b:f8:50:51:23:8a:36:cd: 75:fd:3a:05:a5:a5:e9:ca:dc:fc:a6:b6:00:78:87: a7:cc:e6:6b:6f:dd:31:b5:dd:0d:fc:b5:00:7e:42: 63:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:77:44:2D:FD:AC:3E:9C:61:F1:84:71:77:AA:B0:46:72:78:0D:09 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:03:e0:60:2b:29:e8:74:76:6f:e7:e2:a5:57:2e:e4:2c:4d: 29:b8:2a:63:7d:a2:32:b9:43:0e:93:1b:3c:a9:e1:4f:4b:58: b5:18:ee:3f:9a:8b:c9:3a:47:13:81:25:4b:65:25:94:0f:e9: 77:91:54:47:b3:8a:82:10:fa:ef:39:07:88:09:ee:0b:03:98: 2f:eb:40:b1:c2:b8:eb:40:d5:5f:7a:65:fd:1c:e0:1b:47:14: b9:e7:de:54:39:14:79:4a:e8:68:81:5e:e8:1b:74:d8:f6:46: 98:52:48:f0:80:8a:f0:21:41:d9:a5:90:d2:b1:d6:6a:6e:45: 03:48:77:66:81:66:54:a8:f1:14:bc:bf:a4:f1:bd:12:e1:2c: 19:15:fc:fa:46:36:78:81:c7:c3:69:fa:af:7f:f4:f3:d2:25: a1:a4:17:2a:61:6b:5b:64:10:87:02:6a:5f:67:76:59:9a:17: e8:22:63:85:95:e2:2a:db:a4:12:2e:e6:ff:76:fa:d9:f9:3e: ab:19:c0:7d:8a:ad:12:cf:d5:b5:97:bf:a7:9e:b1:c4:23:3d: 54:f4:2f:6f:dd:1d:fd:aa:00:b4:60:c1:82:88:f3:2e:b2:a2: 8d:2c:e3:a2:74:ec:99:20:c5:02:0f:d8:75:6f:82:63:05:14: 4e:be:0b:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjYwMzI0MTY1NTQ3WhcNMjYwMzMxMTY1NTQ3WjAYMRYwFAYD VQQDEw02OWMyYzIxMy0wMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjIRlMZYE+FtKQrNgcyyyMx3tdU+Fp2RtA3MOw9i78cNHzd/tSw6XSqKUWr9x utWNyd3h6jy5YjvSfzuxAIOsD/lx6mLNAChWE1g3DGh8eKxP6CFYOMt35btILN/D fjbK+nffID9l5dQQEqzoW0HQic9eABmFwOyzu992Tc6wekmubOJvDzVq85LBM0J7 DaC6D/mljTPeEdGQkeRZiiykstgJYIF9PUUPzRvgw0irOctFaemBiYEL74utZ2b6 r/yDkihY3ldk8knbFY6jf9xh/lTYqKdP2G20K/hQUSOKNs11/ToFpaXpytz8prYA eIenzOZrb90xtd0N/LUAfkJj2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMB3RC39 rD6cYfGEcXeqsEZyeA0JMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAigPgYCsp6HR2b+fipVcu5CxNKbgqY32iMrlDDpMbPKnhT0tYtRjuP5qLyTpH E4ElS2UllA/pd5FUR7OKghD67zkHiAnuCwOYL+tAscK460DVX3pl/RzgG0cUuefe VDkUeUroaIFe6Bt02PZGmFJI8ICK8CFB2aWQ0rHWam5FA0h3ZoFmVKjxFLy/pPG9 EuEsGRX8+kY2eIHHw2n6r3/089IloaQXKmFrW2QQhwJqX2d2WZoX6CJjhZXiKtuk Ei7m/3b62fk+qxnAfYqtEs/VtZe/p56xxCM9VPQvb90d/aoAtGDBgojzLrKijSzj onTsmSDFAg/YdW+CYwUUTr4LYg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:27:19 2026 by rpki-client