$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: aY72vSGhnkisPyZMywNjV+3EZ8KknOPHuVGm/0g5r88= Subject key identifier: 9A:11:BB:5C:5E:6D:97:B7:CA:9B:1E:54:06:B0:0D:F4:DA:7B:37:27 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 188E Signing time: Mon 22 Jun 2026 16:47:14 +0000 Manifest this update: Mon 22 Jun 2026 16:47:14 +0000 Manifest next update: Mon 29 Jun 2026 16:47:14 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: TQAcxTAV0ndohO0H1gc+DDtktE/F0T3efrrxgUFD1P8=) 2: D00F9A8643A511F1B04E115C93833773.roa (hash: QPdt4fsCL2XWpqN3V1Gtq0d4gMm1PZ100Z5/4Fr7hyA=) 3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 8: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 16:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6883 (0x1ae3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 22 16:47:14 2026 GMT Not After : Jun 29 16:47:14 2026 GMT Subject: CN=6a396712-9542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6f:ba:b5:54:32:b2:80:98:5d:3d:fe:3a:a2: 37:18:9a:b8:be:1c:ef:44:47:e6:86:ec:ab:4f:56: 99:0f:39:68:52:4e:ee:96:ab:e4:36:d1:26:a0:47: 06:ca:57:57:d7:26:20:b4:c2:71:d2:3b:a1:88:3b: 0e:ad:97:1d:cb:cd:46:8a:95:7e:26:a3:d1:83:93: 8e:39:66:12:85:8a:a3:27:e1:fc:aa:33:47:ca:1d: b8:89:61:3a:96:d8:5a:ea:73:63:df:ae:e0:9d:58: 40:dd:cf:82:86:5c:fe:ba:23:fc:80:69:88:61:3a: 4e:1a:e0:9e:f2:e8:25:46:f1:ad:dc:36:80:cb:e9: 6b:f2:94:0b:ca:0a:40:07:38:f4:4c:ba:cd:e3:db: 10:93:cc:73:6f:04:4a:fc:6e:f1:a7:cb:19:37:de: 53:61:c2:2c:e3:4a:5d:c0:ad:92:81:34:c3:ad:37: 4b:50:1e:93:a4:b5:ef:7b:6c:16:d7:10:f7:a1:7c: 9e:0b:b9:55:61:bb:12:0f:e8:4d:bc:57:b1:f1:cc: 14:8b:0e:23:bb:20:0a:b0:ae:10:fd:9c:24:9f:9a: 8f:0a:2c:53:c7:7a:bd:94:1b:7e:be:2d:c8:e2:f4: b6:f9:75:0d:a9:2c:6e:dc:c9:e7:eb:e9:a3:bb:5a: 22:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:11:BB:5C:5E:6D:97:B7:CA:9B:1E:54:06:B0:0D:F4:DA:7B:37:27 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:46:56:59:24:f3:7e:13:72:6c:9b:b9:b8:fd:71:66:0e:e5: ee:bb:36:f7:bb:1a:87:18:7a:2d:d6:c8:ea:3e:c2:62:0b:20: 94:df:35:11:9f:4f:15:d9:e1:8f:8b:14:ed:a7:85:b8:b8:35: 9d:b1:40:4b:2d:8b:34:cb:4a:c1:fd:d8:d9:94:a9:50:46:48: 69:4b:3e:63:99:4f:d7:bb:25:02:34:10:b8:b1:d5:eb:c5:2d: 3c:2e:65:6c:05:c4:11:7f:dc:42:01:84:e0:f3:37:dd:aa:82: c5:26:90:e2:4c:42:b2:22:bc:65:3b:25:6a:be:59:20:cc:00: c3:df:35:ac:4a:86:fc:ae:12:12:72:5f:05:41:51:d1:b2:e7: 5b:43:74:53:63:62:e9:3e:b1:59:d0:37:bc:7b:8d:47:15:83: fc:be:78:b9:97:d7:39:7e:c6:8f:d2:02:b0:01:67:ae:37:81: 68:fa:cf:02:d5:9c:0a:94:d8:c2:b7:66:db:83:52:02:3d:05: 14:a1:d6:d2:23:74:80:be:a4:25:68:cf:f5:00:41:44:44:7f: 20:a5:d6:6b:76:68:10:6d:ab:fe:f7:96:7e:00:06:e3:75:08: 48:46:7a:c4:a0:4b:ff:73:ea:b9:17:8d:ba:d9:a7:52:d5:74: b8:d3:af:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNjIyMTY0NzE0WhcNMjYwNjI5MTY0NzE0WjAYMRYwFAYD VQQDEw02YTM5NjcxMi05NTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5m+6tVQysoCYXT3+OqI3GJq4vhzvREfmhuyrT1aZDzloUk7ulqvkNtEmoEcG yldX1yYgtMJx0juhiDsOrZcdy81GipV+JqPRg5OOOWYShYqjJ+H8qjNHyh24iWE6 ltha6nNj367gnVhA3c+Chlz+uiP8gGmIYTpOGuCe8uglRvGt3DaAy+lr8pQLygpA Bzj0TLrN49sQk8xzbwRK/G7xp8sZN95TYcIs40pdwK2SgTTDrTdLUB6TpLXve2wW 1xD3oXyeC7lVYbsSD+hNvFex8cwUiw4juyAKsK4Q/Zwkn5qPCixTx3q9lBt+vi3I 4vS2+XUNqSxu3Mnn6+mju1oicwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJoRu1xe bZe3ypseVAawDfTaezcnMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASEZWWSTzfhNybJu5uP1xZg7l7rs297sahxh6LdbI6j7CYgsglN81EZ9PFdnh j4sU7aeFuLg1nbFASy2LNMtKwf3Y2ZSpUEZIaUs+Y5lP17slAjQQuLHV68UtPC5l bAXEEX/cQgGE4PM33aqCxSaQ4kxCsiK8ZTslar5ZIMwAw981rEqG/K4SEnJfBUFR 0bLnW0N0U2Ni6T6xWdA3vHuNRxWD/L54uZfXOX7Gj9ICsAFnrjeBaPrPAtWcCpTY wrdm24NSAj0FFKHW0iN0gL6kJWjP9QBBRER/IKXWa3ZoEG2r/veWfgAG43UISEZ6 xKBL/3PquReNutmnUtV0uNOvxA== -----END CERTIFICATE-----Generated at Wed Jun 24 06:12:43 2026 by rpki-client