$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: 4qzCmWiRGals5CydA4K/VwY5l3TncRRh2UJMKasO3YA= Subject key identifier: 80:16:40:A8:B7:70:D7:DF:2F:16:0D:F3:A3:95:C6:E0:E5:6C:D0:8D Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 149D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 1359 Signing time: Wed 20 May 2026 17:01:07 +0000 Manifest this update: Wed 20 May 2026 17:01:06 +0000 Manifest next update: Wed 27 May 2026 17:01:06 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: M22i4k8aV0RbeydLsGPXrJP+FJvCJN9YIw2huSa+xXM=) 2: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 0Ug2MlowSOnP4Pb++tVsQunj0HFM39e7BgFne7s9Gxk=) 3: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: ux2ARJ/bgr7if6KwYjchysUxhnA8D8TRZk6Lw4d52aw=) 4: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: Y0tv3S5qBpizFf7zS7O2Gepf7bo7jWIy8poU5vPkGKI=) 5: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: jlJ7Tld2dLSNm+vxLU+DB4uapMo/I9nK2H7uiQod+hI=) 6: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: 9gF1aAdFHEDmuDddG9VCS6z/7V4hA5cH16J97sGtqmY=) 7: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: 4ErdLc5I6Vjk6uLExe07aYdEJVnOiI+wzbQvVUiYi2A=) 8: 6A5222E2B8CA11F0AEF0BA3CC4F9AE02.roa (hash: DErQ3o7TiaR6Xkm9YVkxrmIyVyHa9Hd4DAj359Ovfp8=) 9: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: WxVTSI5IqBCtDZMa9uJVKr0/nWjqcu853MnRjiV9FJM=) 10: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: 0nXqFu4Qi3Igds5cTks5iZ4dhntuRJvANiDD3hyPktU=) 11: 0038D872072E11EB8914E540C4F9AE02.roa (hash: BfVI3TFyV6fOpgoDG6kN2cNefVnef49M3JRzF9OGVQ8=) 12: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: lO58lSpUoRJEo6C2ieXTdSjYTs9Vv0caugZb03Wynjg=) 13: AD7B2798CDCA11F096B9035EC4F9AE02.roa (hash: 1rrUr85BF/sY2udLImZ0ePN2Kgi1s7SnmiZY7CqnRO0=) 14: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: 0JqXWVNYYl5QUi3Ff44dnxQVqYfsFqTw62wHqYfZBwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5277 (0x149d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: May 20 17:01:06 2026 GMT Not After : May 27 17:01:06 2026 GMT Subject: CN=6a0de8d3-ff8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:4e:c2:d6:99:33:ce:88:fb:bf:0a:56:eb: 61:54:26:d6:9a:ec:10:04:89:c1:94:52:d8:0a:94: 12:a2:a6:75:3f:3d:f9:9f:46:e0:d6:59:4f:cb:2e: 22:02:f4:e9:f7:93:5e:d2:d5:a2:fb:0c:4a:8f:e0: 4b:23:d8:b6:97:86:2b:1d:4f:b2:07:af:6e:53:8a: 5a:7a:35:3c:62:79:99:db:91:f0:76:9e:c4:00:89: 5a:cb:69:51:19:f5:70:4d:bf:5d:19:90:85:cb:48: b2:8e:6d:3b:70:35:b2:46:4d:59:d4:c8:fa:d0:fd: 1a:1f:df:c2:e9:8b:19:85:52:9b:d0:8f:22:75:db: 8a:c6:3e:53:5a:c1:b1:0b:bd:ae:bd:b8:9d:84:df: 92:8c:20:03:d6:d7:f3:f5:25:99:26:4b:5b:57:e1: 88:8b:4c:d1:0c:a7:71:92:e6:fd:89:39:6c:6d:22: fe:b1:1d:82:7c:69:2b:4b:96:03:09:03:9d:92:f2: c3:9f:5b:76:23:44:0d:28:d3:0d:b8:f7:f5:93:60: e8:fa:99:35:b4:28:46:bc:b3:93:06:fd:f5:e4:e1: 79:de:1f:00:39:bd:eb:e9:48:2a:9a:14:cf:c2:e6: ac:9c:e7:5a:16:59:6e:11:2c:86:cb:3d:e4:71:2d: 1b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:16:40:A8:B7:70:D7:DF:2F:16:0D:F3:A3:95:C6:E0:E5:6C:D0:8D X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:5c:4f:e3:34:e3:62:6f:b1:4a:8c:a3:2c:52:82:fb:9c:4a: 8d:27:a8:0f:30:78:1a:51:0d:f5:78:48:33:1d:d8:1c:1a:26: 93:2e:1c:a9:83:4e:c8:ab:f4:58:88:95:8a:dc:8c:df:64:1a: 92:f6:9d:04:9c:fe:97:e5:7c:06:65:35:0d:85:45:11:00:c3: d9:9c:c6:18:5e:f4:82:18:a5:2f:4c:f7:06:d2:53:e7:63:70: b5:13:66:35:53:6c:f7:48:8d:80:8a:68:1c:df:89:1d:69:ae: 34:27:ae:95:fe:46:cd:e6:fb:f7:f6:0a:54:3a:f4:6d:f7:b6: 27:30:d2:a1:74:9e:7e:bd:26:cd:64:28:39:c7:80:c9:95:39: 6c:d1:8e:51:0d:4c:44:5e:02:e5:b7:a9:c1:1b:5f:b8:04:03: f6:e0:77:28:75:4d:42:da:c0:33:24:e7:c1:8a:3f:3e:33:1b: 36:d3:85:35:a2:72:26:b9:85:50:a1:28:2c:4d:82:66:8a:54: fa:40:48:4c:56:5a:fd:a7:9f:17:b2:83:c1:56:cb:1f:e1:4d: 76:a6:a0:9d:9b:d5:9b:8e:4a:fa:76:f5:b7:21:81:a4:13:74: 24:da:b9:65:b1:c3:0d:a2:1d:18:97:48:f6:cc:8a:c7:e8:73: f6:56:f9:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjYwNTIwMTcwMTA2WhcNMjYwNTI3MTcwMTA2WjAYMRYwFAYD VQQDEw02YTBkZThkMy1mZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry1OwtaZM86I+78KVuthVCbWmuwQBInBlFLYCpQSoqZ1Pz35n0bg1llPyy4i AvTp95Ne0tWi+wxKj+BLI9i2l4YrHU+yB69uU4paejU8YnmZ25Hwdp7EAIlay2lR GfVwTb9dGZCFy0iyjm07cDWyRk1Z1Mj60P0aH9/C6YsZhVKb0I8idduKxj5TWsGx C72uvbidhN+SjCAD1tfz9SWZJktbV+GIi0zRDKdxkub9iTlsbSL+sR2CfGkrS5YD CQOdkvLDn1t2I0QNKNMNuPf1k2Do+pk1tChGvLOTBv315OF53h8AOb3r6UgqmhTP wuasnOdaFlluESyGyz3kcS0blQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIAWQKi3 cNffLxYN86OVxuDlbNCNMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHFxP4zTjYm+xSoyjLFKC+5xKjSeoDzB4GlEN9XhIMx3YHBomky4cqYNOyKv0 WIiVityM32QakvadBJz+l+V8BmU1DYVFEQDD2ZzGGF70ghilL0z3BtJT52NwtRNm NVNs90iNgIpoHN+JHWmuNCeulf5Gzeb79/YKVDr0bfe2JzDSoXSefr0mzWQoOceA yZU5bNGOUQ1MRF4C5bepwRtfuAQD9uB3KHVNQtrAMyTnwYo/PjMbNtOFNaJyJrmF UKEoLE2CZopU+kBITFZa/aefF7KDwVbLH+FNdqagnZvVm45K+nb1tyGBpBN0JNq5 ZbHDDaIdGJdI9syKx+hz9lb5wg== -----END CERTIFICATE-----Generated at Thu May 21 12:25:55 2026 by rpki-client