$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 2mQ6w75JgHREK6477dDdJrDSGn9G0BjhQ58WYE+elM8= Subject key identifier: 13:27:F1:21:4F:80:AA:2C:8D:D3:23:34:A5:05:66:7F:2E:E2:1D:44 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 184B Signing time: Sat 28 Mar 2026 16:47:00 +0000 Manifest this update: Sat 28 Mar 2026 16:46:59 +0000 Manifest next update: Sat 04 Apr 2026 16:46:59 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: YB2Q5EZfo4a2ZXZils5npilqsqs/RjPaQj4Rf2f+BOE=) 2: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 4: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 16:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6798 (0x1a8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 28 16:46:59 2026 GMT Not After : Apr 4 16:46:59 2026 GMT Subject: CN=69c80604-accc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c5:96:b4:36:2f:3a:a3:08:4a:af:5d:25:43: 02:bb:4a:b2:28:b3:1c:e5:47:85:7c:d3:cc:a4:c9: 41:a2:37:f6:a5:b9:e7:9c:39:b6:89:6f:99:40:4a: 6b:b3:89:8a:49:aa:f3:14:86:1d:5f:dc:7f:3f:e8: 54:a4:08:4a:7b:e1:d7:a4:cc:f5:d5:5d:43:b3:81: d2:64:67:4d:60:13:c0:7a:a7:b2:15:a8:f3:60:fa: 84:e8:b5:0e:8a:4d:24:27:17:e6:04:86:d0:ea:ee: b7:d1:2e:84:45:a3:60:7d:63:03:40:be:22:92:18: 4f:e5:e0:27:26:67:44:d0:a5:b5:91:31:0b:41:a8: 29:1f:ae:38:52:e6:36:f5:8a:53:1a:d0:eb:08:2a: 83:b8:1c:03:46:3c:da:8c:a6:54:8b:97:bc:6c:ce: 9d:a3:3a:69:bf:99:c0:9c:31:96:81:2d:b9:5d:d5: 27:6b:4d:91:f4:37:ad:ce:93:ea:b0:85:3a:f1:b8: 3a:7a:be:98:2b:95:86:d6:e0:b9:d7:2e:81:6c:11: 20:27:21:a1:eb:e7:51:36:c0:20:fb:f3:1e:d1:84: 9a:4e:fc:50:d5:d8:43:17:d4:f9:7b:d6:bc:8c:97: 1d:eb:c7:86:5a:e5:8b:da:c6:e5:1c:36:7f:ae:ae: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:27:F1:21:4F:80:AA:2C:8D:D3:23:34:A5:05:66:7F:2E:E2:1D:44 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ca:f1:0f:2a:18:c6:5f:2a:18:04:c1:e1:3a:6f:c5:95:f3: 80:fa:4c:eb:93:64:f2:9c:38:03:11:64:58:76:66:a6:89:a1: 4a:7d:1c:75:1c:bd:51:3c:07:83:fa:07:d8:39:9e:cd:fe:25: 49:28:96:7e:1f:cc:bf:0c:30:5f:86:01:d2:b3:8a:1f:09:d6: 4c:b8:5e:ff:17:7e:b4:6e:12:ab:a7:88:d7:db:3a:b1:ca:8e: b5:35:1a:5f:4a:37:38:0f:47:ad:f4:90:32:2f:cf:55:05:18: e6:a9:7a:27:e4:48:78:4a:74:7e:b0:66:06:06:24:23:8c:e5: a0:99:17:bc:4e:16:88:b3:5f:8e:05:0f:72:2c:fc:68:f4:35: f1:d8:21:03:c6:f2:d0:72:c8:dd:ca:9e:8f:4d:11:af:d0:c9: b6:84:d9:83:88:c3:f8:e6:b7:3e:c9:08:b2:d5:fd:43:a0:da: 71:86:eb:ac:d2:ff:eb:d1:95:a0:f3:2f:81:f8:22:31:60:70: e0:db:c6:93:db:2b:3b:ea:f0:bf:51:74:bf:8c:19:4f:77:1d: e3:08:41:2b:a7:d1:4a:bc:bc:00:d4:cd:78:00:e1:f8:98:b8: 7d:95:46:a2:ce:b9:e0:84:df:63:82:d2:e3:4b:f4:5e:44:99: 99:be:8e:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzI4MTY0NjU5WhcNMjYwNDA0MTY0NjU5WjAYMRYwFAYD VQQDEw02OWM4MDYwNC1hY2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMWWtDYvOqMISq9dJUMCu0qyKLMc5UeFfNPMpMlBojf2pbnnnDm2iW+ZQEpr s4mKSarzFIYdX9x/P+hUpAhKe+HXpMz11V1Ds4HSZGdNYBPAeqeyFajzYPqE6LUO ik0kJxfmBIbQ6u630S6ERaNgfWMDQL4ikhhP5eAnJmdE0KW1kTELQagpH644UuY2 9YpTGtDrCCqDuBwDRjzajKZUi5e8bM6dozppv5nAnDGWgS25XdUna02R9DetzpPq sIU68bg6er6YK5WG1uC51y6BbBEgJyGh6+dRNsAg+/Me0YSaTvxQ1dhDF9T5e9a8 jJcd68eGWuWL2sblHDZ/rq7IHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBMn8SFP gKosjdMjNKUFZn8u4h1EMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQMrxDyoYxl8qGATB4TpvxZXzgPpM65Nk8pw4AxFkWHZmpomhSn0cdRy9UTwH g/oH2Dmezf4lSSiWfh/MvwwwX4YB0rOKHwnWTLhe/xd+tG4Sq6eI19s6scqOtTUa X0o3OA9HrfSQMi/PVQUY5ql6J+RIeEp0frBmBgYkI4zloJkXvE4WiLNfjgUPciz8 aPQ18dghA8by0HLI3cqej00Rr9DJtoTZg4jD+Oa3PskIstX9Q6DacYbrrNL/69GV oPMvgfgiMWBw4NvGk9srO+rwv1F0v4wZT3cd4whBK6fRSry8ANTNeADh+Ji4fZVG os654ITfY4LS40v0XkSZmb6Odw== -----END CERTIFICATE-----Generated at Sat Mar 28 22:38:52 2026 by rpki-client