$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: hmrxU5oazeFPfrNolIbPKT0k5+CRcH9GuQ7SN6LO9Z8= Subject key identifier: EA:2A:A6:8B:FA:13:71:9B:E6:DE:1C:90:22:FD:9C:78:DA:F4:5D:1F Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1865 Signing time: Mon 04 May 2026 16:48:44 +0000 Manifest this update: Mon 04 May 2026 16:48:43 +0000 Manifest next update: Mon 11 May 2026 16:48:43 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: h7gMAZGcelapMOEJA5AJyFg5eEErEgVloqZm2RqcRr0=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) 8: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6827 (0x1aab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 4 16:48:43 2026 GMT Not After : May 11 16:48:43 2026 GMT Subject: CN=69f8cdec-3390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:48:e0:3b:b9:75:e3:aa:31:fa:9b:7c:b4:4c: 09:18:6d:f3:08:bf:95:fb:57:a0:ac:a9:a7:5a:9e: eb:94:7f:d4:e8:0a:5c:c0:27:6a:83:ec:be:7a:59: 23:40:ea:35:b7:b0:88:dd:96:32:1f:a1:80:38:c4: 8e:14:27:d6:d3:56:8d:4a:a6:86:29:95:ef:ef:93: de:0e:a0:e6:b3:15:61:51:3f:62:2b:51:13:cf:0d: 0f:68:de:34:50:e2:cb:c7:4e:3c:95:02:4f:2f:44: 33:44:48:93:de:b4:85:e9:b2:98:12:3f:03:15:92: 12:0c:39:9d:2e:dc:3d:00:33:49:cb:87:a0:82:b1: 11:bb:ac:6e:58:bd:6c:49:76:c3:04:ac:45:bc:9a: 7e:08:bb:05:ee:b2:ee:b3:35:d5:07:49:40:a1:80: bd:36:a1:ee:cd:76:de:48:7e:de:33:cc:3b:89:d2: 35:b5:18:d2:73:41:75:50:f9:d3:d2:5e:04:6d:36: ca:9d:72:8a:f3:29:e5:db:11:5c:b8:80:cc:d1:01: 28:a4:cf:cd:48:bf:80:45:1d:f2:37:a1:81:7c:55: 3e:30:f3:bc:d9:69:94:d2:b3:78:a9:55:17:cb:bf: 22:5f:c0:13:7b:ed:db:ec:6b:97:a9:f9:e5:22:34: 1a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2A:A6:8B:FA:13:71:9B:E6:DE:1C:90:22:FD:9C:78:DA:F4:5D:1F X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:bf:52:9a:3e:25:0f:fb:39:40:85:73:ad:50:c8:99:42:aa: cf:c5:c6:5b:09:f2:2d:4f:df:2f:f3:72:08:2e:42:82:5e:a0: bb:4c:5c:c0:33:2a:67:c9:be:dd:fb:c5:aa:77:2d:2b:3f:d1: 21:18:82:bd:e5:db:68:23:3f:de:6b:31:c0:d9:00:f4:28:39: f2:bb:c3:3c:f0:c6:72:b1:df:bd:a4:d7:ab:32:cd:b0:5e:3e: 93:43:96:32:ad:f0:eb:4a:a5:a4:09:15:6a:e0:ac:61:98:f1: e9:03:4f:fa:4d:b0:ef:d1:fa:db:43:91:2e:b8:e5:5a:f3:9e: 7b:58:53:23:93:af:83:ee:6f:05:0f:02:7a:99:39:b7:4c:b5: 13:c2:a4:24:9e:15:f7:ec:7b:97:d1:3b:7b:0b:55:07:6a:26: 53:ef:3a:26:df:b7:d3:f6:ac:da:89:ae:66:8d:a2:41:58:90: 07:e5:1b:e2:e8:b8:77:ef:ba:cf:8c:6f:2e:cb:60:37:e9:90: a3:33:7e:18:84:b9:c8:3e:2d:d9:30:af:e3:39:da:f1:07:f8: 02:f0:ec:49:7f:f4:88:da:e5:00:91:9b:46:65:3b:f6:fe:1b: 5f:e4:07:d9:24:50:76:76:d2:ee:55:8c:d1:f4:e4:17:7f:ad: 55:fd:da:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNTA0MTY0ODQzWhcNMjYwNTExMTY0ODQzWjAYMRYwFAYD VQQDEw02OWY4Y2RlYy0zMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0jgO7l146ox+pt8tEwJGG3zCL+V+1egrKmnWp7rlH/U6ApcwCdqg+y+elkj QOo1t7CI3ZYyH6GAOMSOFCfW01aNSqaGKZXv75PeDqDmsxVhUT9iK1ETzw0PaN40 UOLLx048lQJPL0QzREiT3rSF6bKYEj8DFZISDDmdLtw9ADNJy4eggrERu6xuWL1s SXbDBKxFvJp+CLsF7rLuszXVB0lAoYC9NqHuzXbeSH7eM8w7idI1tRjSc0F1UPnT 0l4EbTbKnXKK8ynl2xFcuIDM0QEopM/NSL+ARR3yN6GBfFU+MPO82WmU0rN4qVUX y78iX8ATe+3b7GuXqfnlIjQarwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOoqpov6 E3Gb5t4ckCL9nHja9F0fMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUr9Smj4lD/s5QIVzrVDImUKqz8XGWwnyLU/fL/NyCC5Cgl6gu0xcwDMqZ8m+ 3fvFqnctKz/RIRiCveXbaCM/3msxwNkA9Cg58rvDPPDGcrHfvaTXqzLNsF4+k0OW Mq3w60qlpAkVauCsYZjx6QNP+k2w79H620ORLrjlWvOee1hTI5Ovg+5vBQ8Cepk5 t0y1E8KkJJ4V9+x7l9E7ewtVB2omU+86Jt+30/as2omuZo2iQViQB+Ub4ui4d++6 z4xvLstgN+mQozN+GIS5yD4t2TCv4zna8Qf4AvDsSX/0iNrlAJGbRmU79v4bX+QH 2SRQdnbS7lWM0fTkF3+tVf3agA== -----END CERTIFICATE-----Generated at Tue May 5 00:51:12 2026 by rpki-client