$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: LYLAWNDOjDqPx0ftAm4kJIF5qNPnqOKMWkRazxpeM5E= Subject key identifier: F9:26:6F:0E:DF:49:51:39:5E:73:D9:24:AC:40:33:29:F2:94:BD:FE Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1851 Signing time: Tue 31 Mar 2026 16:51:53 +0000 Manifest this update: Tue 31 Mar 2026 16:51:53 +0000 Manifest next update: Tue 07 Apr 2026 16:51:53 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: FiAzZ2yWIXWI3AzNaL24y8jQSn78iFMpYoIAipJhDVY=) 2: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 3: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 5: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 6: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: GLdltmEd57fyynplgd0oUG1PEP5bNYkQQgxEwtWyqrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6805 (0x1a95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 31 16:51:53 2026 GMT Not After : Apr 7 16:51:53 2026 GMT Subject: CN=69cbfba9-cdfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:2a:05:fb:f6:93:f8:1f:c6:fb:92:e6:33: 52:cb:af:8e:3f:d4:a4:e0:07:92:c6:79:cc:52:bb: de:17:e6:08:73:c0:8b:ed:2c:a0:dc:df:50:67:c5: 66:2b:ff:e8:cf:23:27:ef:c3:da:6a:fa:c9:41:e6: a2:a3:2f:2b:33:9d:96:50:cf:bd:59:1f:31:eb:32: 05:1f:d2:03:fc:3f:da:fe:91:73:fb:a7:9a:ce:7c: 86:2b:62:18:67:2c:e2:ba:46:3c:c5:4c:14:84:93: c2:2e:80:56:0d:95:3f:70:e5:55:16:22:b4:44:62: e6:60:d0:d2:61:ee:ff:42:6e:26:a6:3a:8e:cc:97: e5:73:34:b1:61:e0:58:55:4c:7c:c5:bb:2c:e4:eb: e9:64:7c:74:50:07:ca:1d:19:ed:27:fa:4a:aa:d2: 0a:da:4b:d1:1d:bc:1c:ab:e4:1c:27:a2:4e:dc:3b: 08:df:86:08:1e:9a:01:d5:6e:61:0e:34:ce:78:1b: 35:82:07:d8:45:ff:b4:d1:28:22:6e:f1:d1:2d:eb: 94:99:83:ff:12:26:3e:a3:c5:dc:53:af:34:84:d3: d9:05:49:22:9b:db:6a:be:4f:4a:db:f9:5b:e9:a6: 90:87:b6:54:6b:13:67:87:21:41:e1:22:23:73:81: e2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:26:6F:0E:DF:49:51:39:5E:73:D9:24:AC:40:33:29:F2:94:BD:FE X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:02:31:2c:36:0e:f8:8c:d4:93:73:43:4a:5a:2c:4f:2d:0c: 52:5e:e6:32:1d:dc:f3:34:8b:bb:df:7a:ab:01:f2:7c:e5:71: 07:09:f2:5c:09:6d:48:14:dc:3d:30:a8:0a:4d:f8:45:ac:cb: 8e:a4:ee:e7:ff:b4:8b:fd:fe:1a:7e:5e:c7:6a:89:b1:ec:92: 43:52:90:b3:e7:c9:a5:62:4b:1d:68:5d:bc:be:1a:73:c7:59: 42:d7:02:88:50:e7:d8:67:01:ba:d6:31:f1:40:fb:26:33:be: 11:34:6f:1e:da:16:4b:31:9b:97:99:3b:cc:35:85:71:4f:d7: 04:48:59:d0:89:dc:b9:14:37:b6:22:b0:7e:21:9d:c6:c3:26: 63:d0:03:e6:91:81:e5:dd:f1:8d:61:77:2d:56:dc:03:b9:e9: 28:32:18:c5:3b:f4:85:26:aa:1f:96:9b:f4:71:68:df:31:8e: 29:48:f5:97:eb:bd:a4:df:99:19:3e:02:81:7d:c0:54:ff:25: 7a:13:a1:29:0a:28:ba:b1:43:aa:f7:17:34:3e:4f:7d:8b:d2: 49:a2:36:f7:63:63:52:84:23:53:28:50:c4:12:02:ed:75:35: be:0e:23:56:57:3a:85:82:8a:7f:f1:e8:26:51:db:f6:c5:ac: 6c:b7:1f:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzMxMTY1MTUzWhcNMjYwNDA3MTY1MTUzWjAYMRYwFAYD VQQDEw02OWNiZmJhOS1jZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxYqBfv2k/gfxvuS5jNSy6+OP9Sk4AeSxnnMUrveF+YIc8CL7Syg3N9QZ8Vm K//ozyMn78PaavrJQeaioy8rM52WUM+9WR8x6zIFH9ID/D/a/pFz+6eaznyGK2IY ZyziukY8xUwUhJPCLoBWDZU/cOVVFiK0RGLmYNDSYe7/Qm4mpjqOzJflczSxYeBY VUx8xbss5OvpZHx0UAfKHRntJ/pKqtIK2kvRHbwcq+QcJ6JO3DsI34YIHpoB1W5h DjTOeBs1ggfYRf+00SgibvHRLeuUmYP/EiY+o8XcU680hNPZBUkim9tqvk9K2/lb 6aaQh7ZUaxNnhyFB4SIjc4HijwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPkmbw7f SVE5XnPZJKxAMynylL3+MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPAIxLDYO+IzUk3NDSlosTy0MUl7mMh3c8zSLu996qwHyfOVxBwnyXAltSBTc PTCoCk34RazLjqTu5/+0i/3+Gn5ex2qJseySQ1KQs+fJpWJLHWhdvL4ac8dZQtcC iFDn2GcButYx8UD7JjO+ETRvHtoWSzGbl5k7zDWFcU/XBEhZ0IncuRQ3tiKwfiGd xsMmY9AD5pGB5d3xjWF3LVbcA7npKDIYxTv0hSaqH5ab9HFo3zGOKUj1l+u9pN+Z GT4CgX3AVP8lehOhKQoourFDqvcXND5PfYvSSaI292NjUoQjUyhQxBIC7XU1vg4j Vlc6hYKKf/HoJlHb9sWsbLcfhQ== -----END CERTIFICATE-----Generated at Wed Apr 1 19:22:36 2026 by rpki-client