$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 15fSuQ8dVcHHUpLIW3rhYPyvCt1lPAQL/bnsEPLZIT4= Subject key identifier: D9:78:D6:79:03:7B:FD:9B:C8:15:A2:73:A0:C8:02:4E:00:A6:5D:67 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 188D Signing time: Sat 20 Jun 2026 16:44:56 +0000 Manifest this update: Sat 20 Jun 2026 16:44:56 +0000 Manifest next update: Sat 27 Jun 2026 16:44:56 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: UwMP7a5Et93xU2vNZO4KV1N72+tjmNuKLa839rOC2Xo=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 5: D00F9A8643A511F1B04E115C93833773.roa (hash: QPdt4fsCL2XWpqN3V1Gtq0d4gMm1PZ100Z5/4Fr7hyA=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 8: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 16:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6882 (0x1ae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 20 16:44:56 2026 GMT Not After : Jun 27 16:44:56 2026 GMT Subject: CN=6a36c388-7a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:c3:8c:43:47:13:e5:19:25:68:47:58:8e: 01:d4:fb:52:38:a3:46:ab:34:de:ff:2b:b8:78:e9: 46:94:f8:bf:18:75:1d:4a:29:fd:ce:7c:0b:a1:1f: 34:ca:22:3d:7f:24:f4:ec:95:0c:a2:2b:e9:c2:ab: e9:99:9d:4e:df:4d:0b:bf:d2:19:ed:3e:91:c8:e4: 9e:1f:0b:51:12:74:e8:03:dd:3b:c6:d7:69:f4:2a: 37:f2:ed:70:eb:8f:35:a6:e2:91:37:34:3c:82:12: 7d:c3:0e:fc:d7:27:a2:98:23:38:2b:cf:d0:ff:a1: 83:37:08:87:99:7f:e0:c5:7b:cc:c1:de:66:41:06: c5:00:e6:80:f6:49:56:ad:ca:c9:1b:f1:77:9d:26: f1:4f:32:a0:c0:d4:90:e3:b3:0c:91:28:8b:00:0d: 0c:5a:9e:b4:20:f1:bc:12:d8:8b:27:71:c0:70:b3: e5:b5:d0:b3:ed:f4:c4:7d:9d:2c:7b:74:94:71:31: 73:b0:b4:f9:5b:94:28:0f:93:a6:85:aa:99:ba:13: 41:2b:41:52:50:11:61:3a:f0:45:80:2e:53:ff:7c: 82:af:83:7d:cc:8b:2c:a6:22:26:89:8c:22:6d:93: b5:b9:02:3d:47:34:b8:2f:db:47:26:dc:c9:e2:5f: 08:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:78:D6:79:03:7B:FD:9B:C8:15:A2:73:A0:C8:02:4E:00:A6:5D:67 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:b8:4b:de:57:1f:0b:9e:c2:23:76:ad:39:c1:be:50:6f:9a: 85:a7:d1:a5:f9:b4:0f:4c:50:01:48:12:39:b8:bb:9d:f2:be: c5:94:7f:6b:62:0c:d2:80:bb:2a:c4:cf:4c:75:90:a9:dd:1e: 27:7b:43:87:c4:44:eb:3f:bf:b8:a8:ee:77:47:5f:ef:e5:00: 9c:39:b2:1a:a7:51:1f:f9:ab:1a:f7:5e:60:58:09:9c:11:4c: 28:a6:f8:7a:08:3a:30:2d:90:b3:ec:1c:95:f0:70:1a:e4:4c: 12:de:73:c2:cb:c4:d2:24:c7:3b:78:2e:ee:de:0d:3b:49:39: 74:10:a2:c1:90:3e:62:d5:f2:17:ad:61:fc:59:9a:1c:e7:99: 30:72:81:48:c7:a1:e6:c6:3e:43:c6:19:60:5a:75:15:a1:a6: f0:69:96:9f:4f:10:ee:a6:3e:8d:60:de:31:61:14:e2:6b:c0: ae:3d:84:33:24:a5:8f:03:6c:2c:e7:a0:b7:44:71:0e:f5:86: 11:3c:26:b2:99:4a:4c:c4:2c:54:1b:8b:d8:8c:28:ee:54:86: b7:2b:1f:ad:ca:94:f5:6f:22:95:39:fd:b7:34:b9:43:df:c6: da:8e:13:b5:22:0c:00:cd:c8:50:91:d8:ef:23:ef:38:6c:80: 00:b9:bb:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNjIwMTY0NDU2WhcNMjYwNjI3MTY0NDU2WjAYMRYwFAYD VQQDEw02YTM2YzM4OC03YThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmPDjENHE+UZJWhHWI4B1PtSOKNGqzTe/yu4eOlGlPi/GHUdSin9znwLoR80 yiI9fyT07JUMoivpwqvpmZ1O300Lv9IZ7T6RyOSeHwtREnToA907xtdp9Co38u1w 6481puKRNzQ8ghJ9ww781yeimCM4K8/Q/6GDNwiHmX/gxXvMwd5mQQbFAOaA9klW rcrJG/F3nSbxTzKgwNSQ47MMkSiLAA0MWp60IPG8EtiLJ3HAcLPltdCz7fTEfZ0s e3SUcTFzsLT5W5QoD5OmhaqZuhNBK0FSUBFhOvBFgC5T/3yCr4N9zIsspiImiYwi bZO1uQI9RzS4L9tHJtzJ4l8IVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNl41nkD e/2byBWic6DIAk4Apl1nMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATrhL3lcfC57CI3atOcG+UG+ahafRpfm0D0xQAUgSObi7nfK+xZR/a2IM0oC7 KsTPTHWQqd0eJ3tDh8RE6z+/uKjud0df7+UAnDmyGqdRH/mrGvdeYFgJnBFMKKb4 egg6MC2Qs+wclfBwGuRMEt5zwsvE0iTHO3gu7t4NO0k5dBCiwZA+YtXyF61h/Fma HOeZMHKBSMeh5sY+Q8YZYFp1FaGm8GmWn08Q7qY+jWDeMWEU4mvArj2EMySljwNs LOegt0RxDvWGETwmsplKTMQsVBuL2Iwo7lSGtysfrcqU9W8ilTn9tzS5Q9/G2o4T tSIMAM3IUJHY7yPvOGyAALm7gQ== -----END CERTIFICATE-----Generated at Mon Jun 22 14:48:48 2026 by rpki-client