$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 9d+biJMgXkVru0wczfgfsDNqBWj55O+D6Hh0nom+JNA= Subject key identifier: 0D:14:5B:66:55:A7:BA:DB:83:12:59:BE:E0:36:81:F9:8D:08:CB:AE Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 185A Signing time: Thu 16 Apr 2026 16:46:09 +0000 Manifest this update: Thu 16 Apr 2026 16:46:08 +0000 Manifest next update: Thu 23 Apr 2026 16:46:08 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: pypw4pGVnqu1qSC9R7BvKiiERU7BldbJcNYtdGd8Bok=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 5: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 6: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 8: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6815 (0x1a9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 16 16:46:08 2026 GMT Not After : Apr 23 16:46:08 2026 GMT Subject: CN=69e11251-4271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c6:8e:e9:ac:42:73:72:7b:89:19:c4:68:2b: 91:d6:df:bd:d8:68:6f:ff:d4:37:f3:90:b8:06:19: 8d:a0:01:f3:e3:65:23:e9:ac:a1:97:9b:26:a6:33: 67:c6:53:c2:3b:0a:43:22:fd:04:49:a6:fb:1e:0d: b8:0b:d5:fd:10:b7:f5:0f:b5:ce:42:6f:fe:ae:ef: 04:e6:7c:c8:67:b9:f7:fe:ce:34:70:50:c3:9c:d0: f0:31:ca:84:16:db:20:8d:ec:1f:c0:80:23:69:68: 35:45:42:51:ad:d9:48:d5:9c:4c:87:42:4d:ab:55: 59:c2:0c:f9:53:45:e0:af:a8:7d:d6:95:b5:89:a6: e2:76:df:8a:80:49:e9:29:57:d7:b5:00:78:3e:c4: 97:94:09:95:fd:0a:c0:b6:ef:75:8b:c6:04:69:2c: 5a:35:f8:bc:da:57:55:86:89:ea:df:d4:b9:e1:c2: 3c:37:74:05:3c:dc:c4:27:aa:74:59:5a:fe:22:ce: b5:c6:8d:f9:71:c3:5e:97:e7:ff:dd:3e:7d:35:a2: 58:f2:c3:24:ba:17:a4:ab:02:22:cb:30:27:f9:2a: 15:1e:de:68:4e:e7:34:61:98:73:af:80:92:b2:bf: e5:16:10:9a:b8:b2:3f:23:2f:d5:d3:8d:19:64:ba: 65:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:14:5B:66:55:A7:BA:DB:83:12:59:BE:E0:36:81:F9:8D:08:CB:AE X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:3d:a8:54:ba:eb:47:aa:78:29:bd:19:cf:a9:e7:66:fc:e9: 3f:f3:a7:2a:51:19:ae:d7:7f:43:dc:59:50:87:32:46:de:9d: 1f:23:2c:45:80:a6:c0:be:93:0c:0d:07:b3:e7:d2:6b:9e:64: c3:75:5a:bb:db:1e:7c:b1:b4:1e:b0:a1:7c:eb:db:cf:ae:ec: d9:7e:1f:f1:2a:7c:df:93:40:27:9c:2b:91:7e:a3:cd:60:14: 44:68:9e:7c:e5:b0:9f:48:29:f1:5c:4b:1a:d2:63:39:a2:42: fc:bf:8c:91:cb:a4:c7:80:64:58:26:d3:9e:50:87:06:25:70: 80:bd:62:84:9d:12:b7:3b:83:58:8d:4f:6b:b4:d9:ab:c4:28: 9f:a0:ca:f1:46:a5:07:39:af:90:21:a4:16:d7:08:92:f5:8f: 9d:86:e3:7d:08:23:df:38:ac:60:3a:28:a7:95:6e:9c:d9:9c: 82:59:ba:5e:e8:ca:98:81:f1:fd:0b:55:68:b3:41:a1:54:69: b0:a5:86:04:41:8d:90:3e:f6:07:2e:bc:6e:a8:8f:f8:2f:43: 88:96:f4:e0:8d:10:1b:c0:a1:30:af:c5:ed:10:35:7c:9f:de: 6f:37:70:e2:f4:bf:ac:47:1c:26:33:63:92:34:43:0d:3e:fb: a4:2d:63:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDE2MTY0NjA4WhcNMjYwNDIzMTY0NjA4WjAYMRYwFAYD VQQDEw02OWUxMTI1MS00MjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcaO6axCc3J7iRnEaCuR1t+92Ghv/9Q385C4BhmNoAHz42Uj6ayhl5smpjNn xlPCOwpDIv0ESab7Hg24C9X9ELf1D7XOQm/+ru8E5nzIZ7n3/s40cFDDnNDwMcqE FtsgjewfwIAjaWg1RUJRrdlI1ZxMh0JNq1VZwgz5U0Xgr6h91pW1iabidt+KgEnp KVfXtQB4PsSXlAmV/QrAtu91i8YEaSxaNfi82ldVhonq39S54cI8N3QFPNzEJ6p0 WVr+Is61xo35ccNel+f/3T59NaJY8sMkuhekqwIiyzAn+SoVHt5oTuc0YZhzr4CS sr/lFhCauLI/Iy/V040ZZLplIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA0UW2ZV p7rbgxJZvuA2gfmNCMuuMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYT2oVLrrR6p4Kb0Zz6nnZvzpP/OnKlEZrtd/Q9xZUIcyRt6dHyMsRYCmwL6T DA0Hs+fSa55kw3Vau9sefLG0HrChfOvbz67s2X4f8Sp835NAJ5wrkX6jzWAURGie fOWwn0gp8VxLGtJjOaJC/L+Mkcukx4BkWCbTnlCHBiVwgL1ihJ0StzuDWI1Pa7TZ q8Qon6DK8UalBzmvkCGkFtcIkvWPnYbjfQgj3zisYDoop5VunNmcglm6XujKmIHx /QtVaLNBoVRpsKWGBEGNkD72By68bqiP+C9DiJb04I0QG8ChMK/F7RA1fJ/ebzdw 4vS/rEccJjNjkjRDDT77pC1jDg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:00:08 2026 by rpki-client