$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 5cW0eVd6+P+9dqjve4W4YrdcX+N6VXg8yfp/kLy35xg= Subject key identifier: 4E:DA:0A:6A:5B:F5:76:7A:43:02:BC:90:02:62:BF:C7:5B:BE:E6:B8 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1864 Signing time: Sat 02 May 2026 16:51:16 +0000 Manifest this update: Sat 02 May 2026 16:51:15 +0000 Manifest next update: Sat 09 May 2026 16:51:15 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: SEHBh8GQ7COf9hmjPBXkDHCQdp562p7xH9LDKgs9Lvw=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 6: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) 7: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 16:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6826 (0x1aaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 2 16:51:15 2026 GMT Not After : May 9 16:51:15 2026 GMT Subject: CN=69f62b84-188c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8a:60:0a:46:00:c1:25:92:8f:2f:54:58:fc: 0b:8b:b1:7b:b8:42:13:a0:5f:6e:f4:1e:fe:29:a1: 34:42:f3:9f:11:0f:43:45:d6:5b:df:22:38:da:5a: aa:7e:0c:1c:0c:75:93:c7:d1:3d:45:45:65:ab:47: b8:55:c6:09:4b:26:9e:9d:bf:03:a7:16:18:0c:5c: 1b:15:54:a6:0d:bf:ca:54:5b:c8:e0:56:b5:f6:a8: 7f:a7:9c:88:a3:36:66:f6:68:0e:33:36:5e:34:79: f0:a0:48:e6:9b:54:2a:6f:ed:d5:b2:24:b4:5d:2e: e5:b4:f5:b4:4c:1f:98:2f:5d:14:e6:78:7b:12:58: a3:07:57:22:32:ed:c0:4a:c3:c2:3b:b9:f5:f3:38: b8:7b:3c:7f:6d:9a:b7:e3:bf:bd:ec:26:a2:8c:8f: 4e:9a:4e:5e:63:d7:d0:ba:ca:dc:9d:1a:43:43:71: 05:9e:9e:4b:4e:48:8e:0c:57:5d:62:f1:b4:48:b3: 45:44:d6:db:31:d4:fb:42:ea:ad:41:c8:cd:28:a7: e0:41:98:19:16:5d:62:2e:9e:28:7c:cb:85:5d:e9: a9:c6:c0:39:57:6d:a1:cc:3f:9a:81:2c:dc:46:26: 94:db:62:ef:79:10:18:17:dd:69:00:31:f7:81:09: a1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DA:0A:6A:5B:F5:76:7A:43:02:BC:90:02:62:BF:C7:5B:BE:E6:B8 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:3e:26:c4:73:bc:0e:d0:b1:c1:56:0e:63:71:39:c3:c6:d8: b9:84:dc:f1:72:b9:b7:25:d5:c8:4d:01:fc:04:0c:a4:26:26: 21:1e:2a:af:b2:00:5a:b1:0b:32:13:0f:90:78:0c:f9:44:56: 57:05:2e:72:4b:5d:b4:52:7f:a0:5a:7c:88:02:c8:f7:d3:1a: 04:68:da:dc:88:ac:ac:4e:29:77:5f:8f:1a:e9:36:b2:f5:ce: be:cd:cf:85:c3:28:f2:fd:dc:29:d7:69:5b:16:e8:73:02:04: d3:9d:ab:2b:8d:40:52:54:d4:05:ef:09:97:96:8c:76:38:93: 79:22:c2:ef:8e:42:a5:d6:a8:49:e8:9c:16:6e:a5:d9:4e:6d: 07:bf:77:cd:43:08:30:21:78:12:b5:c5:5f:b7:2e:b0:1b:a7: 34:2e:0e:e8:0e:e3:0b:68:1a:33:be:40:e3:bd:a7:b8:6a:2d: 4e:ac:6b:c6:c2:75:76:0b:24:77:69:77:0b:70:f6:a5:0d:f5: c8:83:c1:2c:a2:cc:dc:3f:8d:82:74:d0:ef:34:58:7a:b0:22: ab:2b:d8:74:08:64:61:94:43:f1:ed:f3:b5:5a:74:cb:9f:8d: 07:a2:35:19:fe:58:ae:2e:04:6a:21:a1:7e:38:71:48:e7:ca: 1c:81:4a:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNTAyMTY1MTE1WhcNMjYwNTA5MTY1MTE1WjAYMRYwFAYD VQQDEw02OWY2MmI4NC0xODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYpgCkYAwSWSjy9UWPwLi7F7uEIToF9u9B7+KaE0QvOfEQ9DRdZb3yI42lqq fgwcDHWTx9E9RUVlq0e4VcYJSyaenb8DpxYYDFwbFVSmDb/KVFvI4Fa19qh/p5yI ozZm9mgOMzZeNHnwoEjmm1Qqb+3VsiS0XS7ltPW0TB+YL10U5nh7ElijB1ciMu3A SsPCO7n18zi4ezx/bZq347+97CaijI9Omk5eY9fQusrcnRpDQ3EFnp5LTkiODFdd YvG0SLNFRNbbMdT7QuqtQcjNKKfgQZgZFl1iLp4ofMuFXempxsA5V22hzD+agSzc RiaU22LveRAYF91pADH3gQmhkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE7aCmpb 9XZ6QwK8kAJiv8dbvua4MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhT4mxHO8DtCxwVYOY3E5w8bYuYTc8XK5tyXVyE0B/AQMpCYmIR4qr7IAWrEL MhMPkHgM+URWVwUucktdtFJ/oFp8iALI99MaBGja3IisrE4pd1+PGuk2svXOvs3P hcMo8v3cKddpWxbocwIE052rK41AUlTUBe8Jl5aMdjiTeSLC745CpdaoSeicFm6l 2U5tB793zUMIMCF4ErXFX7cusBunNC4O6A7jC2gaM75A472nuGotTqxrxsJ1dgsk d2l3C3D2pQ31yIPBLKLM3D+NgnTQ7zRYerAiqyvYdAhkYZRD8e3ztVp0y5+NB6I1 Gf5Yri4EaiGhfjhxSOfKHIFKHA== -----END CERTIFICATE-----Generated at Sun May 3 21:53:51 2026 by rpki-client