$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: iUiYGmtaOZd2AROcYqh2izpeQUi2GoHahVhzAUTIP4o= Subject key identifier: 25:EA:22:F2:4A:41:06:4C:69:5C:46:36:37:BC:30:92:F5:F9:EB:D9 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 185C Signing time: Mon 20 Apr 2026 16:46:34 +0000 Manifest this update: Mon 20 Apr 2026 16:46:33 +0000 Manifest next update: Mon 27 Apr 2026 16:46:33 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: aJMyAEkM2zGv/0ubj3MxjnvW5OEp5WP3sy4QY6MIS54=) 2: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 5: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 6: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6817 (0x1aa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 20 16:46:33 2026 GMT Not After : Apr 27 16:46:33 2026 GMT Subject: CN=69e6586a-4add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0a:81:00:0b:6b:49:c0:80:47:f2:b7:55:6a: 3d:6e:fc:34:f0:12:6c:ae:f7:ea:31:c0:95:27:26: b8:87:d4:d3:6a:9a:83:36:c2:f2:f7:aa:87:62:0e: aa:65:fc:ba:21:84:fb:a7:7c:da:5f:09:04:32:53: cd:bb:68:58:ac:25:b6:86:83:34:6c:68:4c:50:f9: f3:17:66:38:18:b2:f6:72:ee:6a:fd:47:d2:ad:05: 31:8e:72:17:47:7e:a6:8d:70:08:28:c7:f8:1c:e9: a7:44:56:e5:bd:77:a7:e4:d4:6c:08:1e:e7:eb:56: 7f:f8:b5:47:da:f5:c7:b6:d2:80:b2:ec:e7:fa:45: 3d:a9:a6:ed:2f:0a:47:a8:04:4b:a5:f8:3e:57:79: 91:4d:60:39:93:af:e1:f5:03:13:c0:7f:02:22:c9: fc:1c:45:09:ab:0a:8c:24:11:78:4c:37:28:ec:30: 11:6d:68:0f:cd:f6:5f:c8:31:61:df:d3:d9:b5:1a: b8:d9:61:f2:00:4b:6a:b8:64:d9:d5:64:c8:38:6e: c6:e4:31:c8:f3:74:37:ed:7b:55:f3:74:c7:46:ba: 1d:e4:2e:3b:97:f4:bd:ae:60:22:70:c8:c0:df:4e: 35:11:ed:c8:4a:90:28:47:8d:a3:e7:98:b3:44:4b: 48:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EA:22:F2:4A:41:06:4C:69:5C:46:36:37:BC:30:92:F5:F9:EB:D9 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:80:92:9c:09:7d:2e:1e:e1:be:43:58:1d:c1:0d:83:bd:a8: 8e:d1:a4:26:50:cf:d2:0e:8a:09:df:a7:1f:ff:d0:ff:1e:6a: 89:ff:a7:67:e5:63:98:5e:76:90:a5:df:82:e8:80:c3:6a:22: 2e:86:df:52:2e:ad:68:04:ec:1c:c5:e9:5b:30:48:ee:a1:28: 02:85:90:4b:44:33:02:a8:72:64:67:58:f5:db:60:c9:f2:12: 81:e4:cf:ee:3b:a6:1c:40:85:6d:ca:60:4d:44:7f:57:a0:5d: 66:36:d0:f0:cc:8c:d0:be:12:07:8a:1e:67:77:0a:ae:56:e4: e8:95:19:cd:0f:23:78:99:e6:b6:7f:a6:c2:a6:53:7c:78:ba: f8:08:bf:b9:ae:d9:e6:00:20:3c:0f:14:03:c3:15:c4:32:25: b6:d4:a7:27:24:7e:fa:ad:35:c0:71:e9:44:2a:36:34:23:e6: 38:03:3a:1a:51:3b:e4:8d:32:cd:59:42:42:10:50:65:45:64: 72:99:6e:0e:2c:80:a4:85:07:11:b3:32:7a:5a:ad:16:8b:3c: 4a:c3:7d:5e:af:9f:11:38:3e:ba:c1:d4:19:ac:29:22:f5:30: 4c:72:52:24:78:44:56:bd:89:1e:d4:c2:92:2c:b4:f0:df:4e: 57:d0:cf:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDIwMTY0NjMzWhcNMjYwNDI3MTY0NjMzWjAYMRYwFAYD VQQDEw02OWU2NTg2YS00YWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QqBAAtrScCAR/K3VWo9bvw08BJsrvfqMcCVJya4h9TTapqDNsLy96qHYg6q Zfy6IYT7p3zaXwkEMlPNu2hYrCW2hoM0bGhMUPnzF2Y4GLL2cu5q/UfSrQUxjnIX R36mjXAIKMf4HOmnRFblvXen5NRsCB7n61Z/+LVH2vXHttKAsuzn+kU9qabtLwpH qARLpfg+V3mRTWA5k6/h9QMTwH8CIsn8HEUJqwqMJBF4TDco7DARbWgPzfZfyDFh 39PZtRq42WHyAEtquGTZ1WTIOG7G5DHI83Q37XtV83THRrod5C47l/S9rmAicMjA 3041Ee3ISpAoR42j55izREtIbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCXqIvJK QQZMaVxGNje8MJL1+evZMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYICSnAl9Lh7hvkNYHcENg72ojtGkJlDP0g6KCd+nH//Q/x5qif+nZ+VjmF52 kKXfguiAw2oiLobfUi6taATsHMXpWzBI7qEoAoWQS0QzAqhyZGdY9dtgyfISgeTP 7jumHECFbcpgTUR/V6BdZjbQ8MyM0L4SB4oeZ3cKrlbk6JUZzQ8jeJnmtn+mwqZT fHi6+Ai/ua7Z5gAgPA8UA8MVxDIlttSnJyR++q01wHHpRCo2NCPmOAM6GlE75I0y zVlCQhBQZUVkcpluDiyApIUHEbMyelqtFos8SsN9Xq+fETg+usHUGawpIvUwTHJS JHhEVr2JHtTCkiy08N9OV9DP8w== -----END CERTIFICATE-----Generated at Tue Apr 21 04:31:29 2026 by rpki-client