$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: d+NyJab3DawFXQqDXAvpC8EO1UKr8rMJPes5KxdihvI= Subject key identifier: 7B:9D:24:67:03:7F:C1:53:B8:C0:C6:52:F8:DB:35:CB:5F:83:C1:6B Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1858 Signing time: Sun 12 Apr 2026 16:46:59 +0000 Manifest this update: Sun 12 Apr 2026 16:46:59 +0000 Manifest next update: Sun 19 Apr 2026 16:46:59 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: QMKPQmHI5055o6kYEasSHAHY5Z2V2AjWqkbgI8I/dYw=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 5: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 6: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 16:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6813 (0x1a9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 12 16:46:59 2026 GMT Not After : Apr 19 16:46:59 2026 GMT Subject: CN=69dbcc83-8cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:f8:22:a6:c9:c7:a6:a7:fc:d9:8d:b3:c3: c6:33:73:51:0c:f8:91:39:8f:b4:86:b3:6a:26:7b: b3:90:9c:06:0c:8b:84:54:15:99:99:f5:73:25:f8: f8:02:2f:af:0c:a9:4e:22:62:fa:92:e0:0f:01:e7: b2:b2:da:f6:bc:77:e7:3c:e6:0f:c3:a5:83:31:a2: 2f:93:34:60:40:7c:c3:be:07:20:f5:aa:25:c3:d2: f1:55:0f:66:91:aa:1f:12:6e:26:a9:b8:b2:65:2f: 4c:1a:f4:e5:4a:44:aa:54:1f:3b:0f:ef:b2:28:ea: d5:50:85:5b:5a:c0:d3:af:05:95:26:7e:a4:31:82: 92:da:d3:cb:26:3b:00:26:dc:55:99:de:32:f0:6f: b9:36:89:83:ee:f1:17:9d:fa:58:71:b6:70:5d:2b: 23:66:a8:92:df:73:93:55:fa:b1:41:43:ac:3d:c3: 91:78:ea:46:db:15:c6:4f:63:51:39:b1:08:c4:55: 37:4d:d0:08:48:48:8a:8e:e6:79:a7:60:63:d8:d7: 4f:e7:52:19:e8:d5:49:9e:6c:0a:ff:84:95:81:f3: bd:b3:05:75:c1:d0:1e:db:e2:8d:24:44:d2:f0:ca: 12:c4:4d:de:77:00:f8:de:88:0e:70:7f:0d:24:94: 53:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9D:24:67:03:7F:C1:53:B8:C0:C6:52:F8:DB:35:CB:5F:83:C1:6B X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:e7:c5:54:ad:81:0b:c9:d1:24:50:6a:98:5a:27:a9:b6:cc: ab:72:4f:7a:27:36:ca:14:22:3d:1f:b6:ea:2b:30:8b:1a:73: fa:a6:c2:1a:67:f4:f1:12:a8:4a:08:de:b0:61:74:76:8f:bb: c0:8d:a7:2e:e1:a9:62:bd:11:7e:0b:d3:53:95:02:30:52:20: d7:bf:a2:a1:7a:62:d2:81:c4:99:bf:06:b3:30:ef:68:a2:78: 4d:1f:af:c9:81:57:bc:e8:3c:ad:b9:fb:44:a5:34:a6:64:48: 0d:84:5b:91:fb:7a:ed:ac:b3:a6:df:1f:14:b5:bc:64:f0:0f: 9c:96:01:9a:0c:80:03:fd:ca:db:a4:68:e4:9d:f2:ff:84:3f: 15:3d:ed:4a:04:53:fa:d9:88:86:aa:4f:2d:71:40:36:bf:b3: 7f:69:8b:e7:c4:4f:f6:c0:95:01:c4:60:03:d9:0f:e7:45:71: 46:b8:c2:4a:fc:ec:60:c8:4d:ff:a5:b0:53:6e:2e:65:40:54: d8:e1:ce:b6:0b:82:12:35:e1:3d:7a:3a:bf:ba:47:30:dd:37: a3:34:16:4a:4d:25:11:d7:40:ae:d3:a0:f3:f7:0c:7f:db:f5: 96:1a:35:9a:0a:ec:20:24:ae:26:24:58:45:dd:a2:92:68:41: 50:4f:ed:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDEyMTY0NjU5WhcNMjYwNDE5MTY0NjU5WjAYMRYwFAYD VQQDEw02OWRiY2M4My04Y2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7z4IqbJx6an/NmNs8PGM3NRDPiROY+0hrNqJnuzkJwGDIuEVBWZmfVzJfj4 Ai+vDKlOImL6kuAPAeeystr2vHfnPOYPw6WDMaIvkzRgQHzDvgcg9aolw9LxVQ9m kaofEm4mqbiyZS9MGvTlSkSqVB87D++yKOrVUIVbWsDTrwWVJn6kMYKS2tPLJjsA JtxVmd4y8G+5NomD7vEXnfpYcbZwXSsjZqiS33OTVfqxQUOsPcOReOpG2xXGT2NR ObEIxFU3TdAISEiKjuZ5p2Bj2NdP51IZ6NVJnmwK/4SVgfO9swV1wdAe2+KNJETS 8MoSxE3edwD43ogOcH8NJJRTowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHudJGcD f8FTuMDGUvjbNctfg8FrMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADufFVK2BC8nRJFBqmFonqbbMq3JPeic2yhQiPR+26iswixpz+qbCGmf08RKo SgjesGF0do+7wI2nLuGpYr0RfgvTU5UCMFIg17+ioXpi0oHEmb8GszDvaKJ4TR+v yYFXvOg8rbn7RKU0pmRIDYRbkft67ayzpt8fFLW8ZPAPnJYBmgyAA/3K26Ro5J3y /4Q/FT3tSgRT+tmIhqpPLXFANr+zf2mL58RP9sCVAcRgA9kP50VxRrjCSvzsYMhN /6WwU24uZUBU2OHOtguCEjXhPXo6v7pHMN03ozQWSk0lEddArtOg8/cMf9v1lho1 mgrsICSuJiRYRd2ikmhBUE/tLw== -----END CERTIFICATE-----Generated at Mon Apr 13 01:59:24 2026 by rpki-client