$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 3AjNuvrKRS5JMTML1vVPPhuh5ylDu1e8fuVifD4UR6Y= Subject key identifier: 91:F9:AF:67:E5:1D:4A:4C:5C:98:49:1C:BE:2D:2E:F5:E5:CD:30:75 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 183F Signing time: Wed 04 Mar 2026 16:43:16 +0000 Manifest this update: Wed 04 Mar 2026 16:43:16 +0000 Manifest next update: Wed 11 Mar 2026 16:43:16 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: XttgiFWnqcSMap1CRnvk0mokaXdKrsjTsLisbnW3ElE=) 2: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) 3: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 8: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 16:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6786 (0x1a82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 4 16:43:16 2026 GMT Not After : Mar 11 16:43:16 2026 GMT Subject: CN=69a86124-0115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:a6:13:b7:be:31:76:43:e2:e2:8f:a9:56: 39:1f:6c:af:b3:41:7e:41:2d:c7:01:27:3c:dc:48: 1f:4a:91:00:a6:99:c1:ab:31:00:b4:8c:a4:9e:74: 77:f6:2c:ce:85:0f:c2:10:17:72:45:45:a5:7f:5e: ed:38:d1:64:c5:9f:a9:24:fc:6a:cf:b6:00:d5:24: 6c:27:09:1f:7e:d0:79:3c:4f:15:9f:73:56:1d:e3: 7b:2a:97:21:99:30:dc:32:89:bd:1d:09:ca:4a:ed: 77:eb:1d:9f:b0:c2:0a:a9:90:06:bf:18:63:4d:ee: d1:6e:a2:4b:a5:8d:10:4a:65:96:35:20:2c:ff:9e: 52:7a:ab:d1:b3:5b:03:40:a0:83:69:0b:86:c4:63: bc:f6:80:70:42:6c:d0:69:25:cc:fb:6f:0a:8c:dc: a0:1a:8a:2e:51:4c:e8:2a:75:ee:9b:2b:27:82:c0: 8a:e5:4d:f2:ca:b9:86:0b:6c:a6:ec:89:1f:1c:e8: 02:38:90:2d:97:46:d1:9c:7e:c1:8f:11:50:42:e8: 38:cf:13:bc:b0:89:87:f7:d4:cf:d9:fb:21:9e:25: f3:b3:59:4f:77:a8:ad:eb:c2:2c:16:3d:27:bb:1d: 20:5a:22:d5:3b:db:1a:0c:1d:c2:fe:df:c4:a6:15: 51:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F9:AF:67:E5:1D:4A:4C:5C:98:49:1C:BE:2D:2E:F5:E5:CD:30:75 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:60:a4:48:fd:ee:6d:3a:74:a8:37:50:b4:d4:ff:a7:2d:fe: 15:3f:26:b8:5b:c2:f7:31:52:9b:3d:14:06:77:ef:d5:da:39: fb:fe:2b:f8:01:74:92:83:79:4f:70:e8:05:d3:41:8c:d2:57: b0:50:13:fc:cd:b1:08:17:1e:14:2f:07:57:2f:a4:e8:fd:af: 14:f6:64:e5:76:a7:1b:5a:97:0b:83:88:5e:86:96:fe:34:b1: 1c:ab:4a:ba:b1:b7:88:6b:16:ba:40:6d:3d:1c:cf:b1:47:01: 2b:4f:79:21:fd:a3:99:08:c1:ca:45:82:be:d5:1e:3e:11:d6: 2a:a7:38:4a:bd:77:8d:91:32:f8:3a:12:2d:e1:c0:ea:bd:6a: 26:d7:b2:be:6b:be:5e:cd:50:c7:bf:9a:a7:95:de:ed:7b:b2: 6d:b1:c2:6a:81:db:e5:32:cf:a8:42:56:97:9d:f6:a9:ae:eb: 25:b2:18:f1:c9:cd:ca:22:27:d8:48:cf:ec:69:b0:fc:2b:fc: be:87:dd:f5:44:1a:fd:04:66:c6:8c:42:20:89:70:2d:46:b9: 31:09:35:08:bd:69:51:c1:bf:b6:84:c3:c2:ad:01:b9:5a:1e: c8:58:d7:f6:3f:98:3e:8a:09:3e:ea:f0:04:8a:9a:a0:ff:38: 4e:8b:5d:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzA0MTY0MzE2WhcNMjYwMzExMTY0MzE2WjAYMRYwFAYD VQQDEw02OWE4NjEyNC0wMTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC2mE7e+MXZD4uKPqVY5H2yvs0F+QS3HASc83EgfSpEAppnBqzEAtIyknnR3 9izOhQ/CEBdyRUWlf17tONFkxZ+pJPxqz7YA1SRsJwkfftB5PE8Vn3NWHeN7Kpch mTDcMom9HQnKSu136x2fsMIKqZAGvxhjTe7RbqJLpY0QSmWWNSAs/55SeqvRs1sD QKCDaQuGxGO89oBwQmzQaSXM+28KjNygGoouUUzoKnXumysngsCK5U3yyrmGC2ym 7IkfHOgCOJAtl0bRnH7BjxFQQug4zxO8sImH99TP2fshniXzs1lPd6it68IsFj0n ux0gWiLVO9saDB3C/t/EphVRKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJH5r2fl HUpMXJhJHL4tLvXlzTB1MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoWCkSP3ubTp0qDdQtNT/py3+FT8muFvC9zFSmz0UBnfv1do5+/4r+AF0koN5 T3DoBdNBjNJXsFAT/M2xCBceFC8HVy+k6P2vFPZk5XanG1qXC4OIXoaW/jSxHKtK urG3iGsWukBtPRzPsUcBK095If2jmQjBykWCvtUePhHWKqc4Sr13jZEy+DoSLeHA 6r1qJteyvmu+Xs1Qx7+ap5Xe7XuybbHCaoHb5TLPqEJWl532qa7rJbIY8cnNyiIn 2EjP7Gmw/Cv8vofd9UQa/QRmxoxCIIlwLUa5MQk1CL1pUcG/toTDwq0BuVoeyFjX 9j+YPooJPurwBIqaoP84TotdJw== -----END CERTIFICATE-----Generated at Thu Mar 5 13:12:43 2026 by rpki-client