$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 7cQePMAqMjTm6H7C4xtjbHXox362jVev/KFF2tkm83c= Subject key identifier: AB:CB:5F:0D:00:DD:2D:4D:85:8E:9E:7E:A4:22:D1:05:FE:08:CF:11 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1868 Signing time: Sun 10 May 2026 16:47:06 +0000 Manifest this update: Sun 10 May 2026 16:47:06 +0000 Manifest next update: Sun 17 May 2026 16:47:06 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: wLuTz0R1G/MADFxZzDyRDgAkIYRDtGh9SoownHIxsKA=) 2: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 5: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 8: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 16:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6830 (0x1aae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 10 16:47:06 2026 GMT Not After : May 17 16:47:06 2026 GMT Subject: CN=6a00b68a-14d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6d:9d:c6:38:f0:84:fe:90:b6:2d:eb:90:af: e7:23:c1:ce:2e:11:17:24:45:00:5f:32:af:32:f5: 0b:f3:26:85:51:26:fe:5c:84:23:fd:f9:1e:02:3b: c6:19:98:a5:ea:a8:ed:a9:d7:e7:73:a0:f6:47:82: 07:52:b3:e3:ba:cb:b6:1e:bd:f4:b0:7c:aa:a2:92: b0:11:7b:8e:4d:e9:ba:dd:54:c7:f2:44:16:81:8f: 8c:8e:ab:d4:2c:43:c9:a7:65:44:8e:2f:9f:fc:ad: f6:04:1b:0a:a1:36:6b:5b:7d:e3:79:41:50:d1:e9: 75:74:46:f7:95:d4:42:88:14:dc:21:01:22:47:1e: d1:b8:df:00:99:24:07:f3:2a:5a:65:13:fc:37:18: 62:b1:a9:c6:ec:aa:6d:84:41:9d:74:26:b2:2d:b1: 19:18:a6:cd:7a:e0:ec:fd:2a:5b:22:2c:fd:b4:b1: a9:1e:d4:0c:e5:b1:99:72:6b:c6:50:1f:2e:d1:e0: 9b:c3:db:b8:bc:d8:56:39:72:ff:b6:fb:da:c3:03: 88:31:3c:e7:1c:59:b1:2f:80:cd:9c:73:4b:02:9e: 3b:bc:15:ba:42:01:53:1b:8f:c8:54:1e:94:1f:a2: 81:17:ec:b9:d0:34:e7:fa:23:de:d3:fe:46:28:d9: f0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CB:5F:0D:00:DD:2D:4D:85:8E:9E:7E:A4:22:D1:05:FE:08:CF:11 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:1e:49:87:a3:76:8a:b4:44:10:82:4e:b3:9f:91:c6:99:ed: b5:be:dc:a9:d3:1c:23:96:f7:6b:74:8f:6d:3c:3e:dc:ab:f1: 95:45:22:7d:d7:11:7c:99:ae:ce:7c:2e:d3:ff:b2:28:39:e3: d1:9d:27:63:d7:94:3e:ac:63:82:7b:8f:a9:24:42:d2:ee:03: 05:59:e5:30:27:62:2c:36:d5:6a:9d:6c:a0:c9:d3:94:a0:57: b9:2a:41:31:3e:c8:80:35:eb:64:e1:76:1f:f8:56:00:22:74: de:3f:a1:aa:c4:68:67:4c:eb:e8:40:9c:f1:0b:6e:e4:5d:ce: 13:ee:6e:a3:16:af:81:04:ad:4d:b9:f9:8b:f8:8f:60:da:06: 9f:07:00:ae:f2:94:81:32:f5:a9:67:89:b9:60:32:dc:0e:37: 82:34:83:0b:45:7c:fa:e5:1b:2a:40:45:ee:4b:16:b1:34:3f: d4:83:83:4f:d5:28:59:50:cd:e8:2a:af:96:fd:ee:ef:92:6a: f5:4b:be:ed:46:97:54:63:b4:2e:ee:70:9e:ff:14:bf:64:b4: 53:b3:94:8d:94:09:ea:a4:6d:bb:80:1f:1a:fd:d9:6a:9d:85: 10:e1:13:6f:c6:24:57:30:6e:59:7c:c6:ae:ac:49:5e:de:21: 34:53:3e:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNTEwMTY0NzA2WhcNMjYwNTE3MTY0NzA2WjAYMRYwFAYD VQQDEw02YTAwYjY4YS0xNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnm2dxjjwhP6Qti3rkK/nI8HOLhEXJEUAXzKvMvUL8yaFUSb+XIQj/fkeAjvG GZil6qjtqdfnc6D2R4IHUrPjusu2Hr30sHyqopKwEXuOTem63VTH8kQWgY+MjqvU LEPJp2VEji+f/K32BBsKoTZrW33jeUFQ0el1dEb3ldRCiBTcIQEiRx7RuN8AmSQH 8ypaZRP8NxhisanG7KpthEGddCayLbEZGKbNeuDs/SpbIiz9tLGpHtQM5bGZcmvG UB8u0eCbw9u4vNhWOXL/tvvawwOIMTznHFmxL4DNnHNLAp47vBW6QgFTG4/IVB6U H6KBF+y50DTn+iPe0/5GKNnwrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKvLXw0A 3S1NhY6efqQi0QX+CM8RMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAch5Jh6N2irREEIJOs5+Rxpnttb7cqdMcI5b3a3SPbTw+3KvxlUUifdcRfJmu znwu0/+yKDnj0Z0nY9eUPqxjgnuPqSRC0u4DBVnlMCdiLDbVap1soMnTlKBXuSpB MT7IgDXrZOF2H/hWACJ03j+hqsRoZ0zr6ECc8Qtu5F3OE+5uoxavgQStTbn5i/iP YNoGnwcArvKUgTL1qWeJuWAy3A43gjSDC0V8+uUbKkBF7ksWsTQ/1IODT9UoWVDN 6Cqvlv3u75Jq9Uu+7UaXVGO0Lu5wnv8Uv2S0U7OUjZQJ6qRtu4AfGv3Zap2FEOET b8YkVzBuWXzGrqxJXt4hNFM+ZQ== -----END CERTIFICATE-----Generated at Mon May 11 03:36:46 2026 by rpki-client