$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 8rozk+/glAXcTbcUuj3Xdg76O4mQBcZYJsGWf8D40Dc= Subject key identifier: EA:6B:19:C9:8D:EE:36:3B:C5:FF:7C:C7:F4:09:36:AE:20:12:94:4B Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1ABD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1877 Signing time: Sat 06 Jun 2026 16:45:31 +0000 Manifest this update: Sat 06 Jun 2026 16:45:31 +0000 Manifest next update: Sat 13 Jun 2026 16:45:31 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: +UOfqQ+KAXf9aN1tRZvPRGzw7TZFGz3lZnuINtzV5uQ=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 8: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 16:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6845 (0x1abd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 6 16:45:31 2026 GMT Not After : Jun 13 16:45:31 2026 GMT Subject: CN=6a244eab-8755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b3:b3:bd:2f:91:78:b9:22:90:35:64:79:cd: ee:f4:78:fe:db:dd:ed:b4:96:5a:17:f5:d5:74:62: 51:c2:af:be:cb:0f:2e:49:ba:a3:e2:35:41:2e:a2: 15:ff:c1:68:44:19:d6:87:91:6b:ae:38:bb:f6:c6: 44:a8:51:d9:38:fd:53:86:82:53:32:fd:99:22:42: 3f:5f:fc:8a:14:57:cc:65:ee:06:8a:b6:88:9b:4b: a6:8b:63:e2:d0:f2:31:33:c0:be:c5:7e:a0:73:a3: 6a:4d:ce:1d:93:90:7e:11:2c:93:ac:38:60:d4:38: bd:57:05:dc:ed:f8:c0:b9:aa:06:70:9e:47:8f:5e: b8:bb:76:67:e8:a7:3e:ad:45:79:5b:73:ff:74:60: 23:be:26:67:d8:6f:3f:c0:b7:57:38:bd:53:bd:a6: 72:3e:08:65:ab:85:65:81:17:1e:62:58:3a:6d:57: e6:f0:b7:96:dd:fe:9a:c8:0c:96:e6:f7:71:d7:28: 02:74:0c:43:bb:e6:c9:e1:ac:3e:7b:6f:a6:a0:a6: aa:4d:2a:c2:8a:10:bb:69:10:6f:d6:d6:5f:b9:b2: e3:e8:d1:3f:b6:a1:c9:33:14:39:a9:ab:32:fd:49: a5:0e:5e:37:86:f3:97:bd:5a:e3:c4:92:ce:e2:a7: 1e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6B:19:C9:8D:EE:36:3B:C5:FF:7C:C7:F4:09:36:AE:20:12:94:4B X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:67:60:a9:33:43:59:eb:57:3e:b1:c5:dc:38:2e:b4:59:5f: f5:39:5c:56:48:7c:83:cb:93:93:3c:2c:13:4f:6b:58:11:41: f9:62:1c:64:f5:57:5d:2e:f0:02:b2:e4:db:62:db:a3:7d:d4: 3e:51:01:8e:14:5d:d6:79:f8:e2:98:62:35:f4:04:d5:d8:5c: 0b:15:67:99:66:d1:7d:39:02:89:e9:25:a1:a5:ef:8f:96:de: 35:bc:d6:37:2c:b6:12:58:08:e0:63:94:ad:bc:e7:7e:0b:1b: f1:76:6a:e2:cd:1e:62:0d:dd:4b:15:d8:23:39:5b:bf:f1:f2: 6f:32:bc:53:2f:3e:50:2c:0f:17:e7:24:3f:af:8e:2d:28:6d: e2:df:06:1f:38:93:c4:01:b3:9b:5a:3c:dc:9c:f9:f5:b3:83: 53:85:ca:77:0c:1e:57:9a:db:fa:c7:b7:ad:e4:bf:fc:b2:57: 07:ab:5a:2f:12:cc:fd:73:1d:b0:d0:1d:3e:8c:47:a0:2e:1b: 55:f3:e8:4e:88:be:e8:d9:6d:02:d1:b6:f0:b3:bb:9f:fe:16: f4:89:b4:68:0d:9b:5b:fc:70:41:bc:67:d2:f1:c1:28:f1:98: 8a:f6:f7:37:d9:e8:fd:ef:f4:77:24:63:95:3b:9e:17:d2:cd: 43:26:54:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNjA2MTY0NTMxWhcNMjYwNjEzMTY0NTMxWjAYMRYwFAYD VQQDEw02YTI0NGVhYi04NzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrOzvS+ReLkikDVkec3u9Hj+293ttJZaF/XVdGJRwq++yw8uSbqj4jVBLqIV /8FoRBnWh5Frrji79sZEqFHZOP1ThoJTMv2ZIkI/X/yKFFfMZe4GiraIm0umi2Pi 0PIxM8C+xX6gc6NqTc4dk5B+ESyTrDhg1Di9VwXc7fjAuaoGcJ5Hj164u3Zn6Kc+ rUV5W3P/dGAjviZn2G8/wLdXOL1TvaZyPghlq4VlgRceYlg6bVfm8LeW3f6ayAyW 5vdx1ygCdAxDu+bJ4aw+e2+moKaqTSrCihC7aRBv1tZfubLj6NE/tqHJMxQ5qasy /UmlDl43hvOXvVrjxJLO4qce2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOprGcmN 7jY7xf98x/QJNq4gEpRLMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWWdgqTNDWetXPrHF3DgutFlf9TlcVkh8g8uTkzwsE09rWBFB+WIcZPVXXS7w ArLk22Lbo33UPlEBjhRd1nn44phiNfQE1dhcCxVnmWbRfTkCiekloaXvj5beNbzW Nyy2ElgI4GOUrbznfgsb8XZq4s0eYg3dSxXYIzlbv/HybzK8Uy8+UCwPF+ckP6+O LSht4t8GHziTxAGzm1o83Jz59bODU4XKdwweV5rb+se3reS//LJXB6taLxLM/XMd sNAdPoxHoC4bVfPoToi+6NltAtG28LO7n/4W9Im0aA2bW/xwQbxn0vHBKPGYivb3 N9no/e/0dyRjlTueF9LNQyZUew== -----END CERTIFICATE-----Generated at Mon Jun 8 12:53:14 2026 by rpki-client