$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: fV9+hOxitEpLuQOFTMLzc8fzemCTdYlzi5yUUEhEOmM= Subject key identifier: 5B:7C:92:8F:74:09:45:6F:A6:91:6E:F3:85:B8:17:21:B7:D0:6B:55 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 183E Signing time: Mon 02 Mar 2026 16:51:35 +0000 Manifest this update: Mon 02 Mar 2026 16:51:35 +0000 Manifest next update: Mon 09 Mar 2026 16:51:35 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: JHyoSrpgW3INIY+EgnuE2EfTCliMtkf0kR9o+DeBwuk=) 2: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) 6: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 7: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6785 (0x1a81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 2 16:51:35 2026 GMT Not After : Mar 9 16:51:35 2026 GMT Subject: CN=69a5c017-0ee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ca:7b:3d:ed:ee:c1:df:60:48:13:17:c6:76: 08:b9:5d:1e:e6:46:3e:69:41:92:70:b4:b7:5c:43: fe:20:9f:74:60:69:d7:53:d7:dc:6f:f9:d2:29:57: 5e:e9:3f:ca:dc:af:fa:04:e6:fb:03:7a:c3:2f:f7: d9:ed:8e:72:cc:0a:bd:03:4d:48:26:f1:28:a6:c1: b4:18:87:62:b7:2d:77:78:ec:6b:e0:1e:f9:0e:57: 8b:13:0f:54:2e:f1:fc:ca:6e:9a:4d:85:29:2c:01: d5:00:2c:f9:71:d8:e4:94:c6:ae:68:ba:8f:ac:e5: ea:db:69:d4:63:53:c8:2a:03:a8:38:93:f8:87:f5: cb:e1:78:dd:85:6e:b5:9e:a6:9e:63:96:b9:21:12: a4:19:b8:4d:47:8e:6f:3e:2a:24:ba:7c:11:22:4d: 55:9f:1a:b1:77:47:34:e1:c8:cb:5b:8f:96:24:a0: c8:0a:e7:b4:a5:0e:7f:4d:10:8d:d6:70:3e:0f:fb: b4:34:de:2e:77:d8:61:67:57:a6:43:50:fc:75:b5: 0b:b0:03:2a:bd:32:7e:eb:83:c8:62:10:aa:5a:69: cb:f8:8c:1c:e2:b6:7d:62:db:8a:cc:05:47:b2:28: 21:f6:3e:52:ef:49:a0:0b:48:9f:bd:73:69:21:8d: ab:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7C:92:8F:74:09:45:6F:A6:91:6E:F3:85:B8:17:21:B7:D0:6B:55 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:f8:83:2d:12:e1:a5:20:10:dd:0f:83:ad:ef:74:e5:73:e8: a5:11:cb:f1:ae:8d:ce:00:86:3b:21:17:46:aa:8d:92:c4:31: 4c:fe:fd:7f:c1:5b:07:44:27:d5:9a:eb:4a:66:c0:3f:f6:fa: 62:a3:78:84:69:b6:43:a9:2e:d3:7b:2f:2f:b3:04:6f:da:fc: 29:06:de:c3:86:ce:3b:02:88:30:c6:86:3a:93:aa:63:5f:27: d2:b9:a8:37:7e:3f:ff:21:cd:96:3f:38:ce:6e:1b:4d:7b:ce: 00:c4:d8:c1:1b:ea:29:0f:ba:f6:b0:07:5f:0a:34:b7:7c:92: 5e:7f:3c:0a:2e:52:71:fd:79:1f:05:38:b4:82:b6:64:5d:75: 24:7f:98:c3:6a:29:6b:8c:be:df:30:b8:3a:61:40:a0:b6:d6: 8e:74:2f:dc:18:8b:bf:f6:8c:81:32:d4:8f:0b:d7:f7:a9:48: c5:46:15:a7:7d:fb:cc:1c:4f:e2:aa:5b:43:ea:75:45:e4:a6: f2:e1:d7:51:ed:b8:17:38:4f:0a:dd:d9:13:bd:8e:2d:54:d6: bd:86:19:d5:f2:af:8b:dd:ac:13:6a:08:9f:1d:74:a1:19:44: d0:cf:35:23:b1:b0:ec:52:4a:d1:7b:50:7c:b4:46:db:6a:ca: 0e:8a:45:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzAyMTY1MTM1WhcNMjYwMzA5MTY1MTM1WjAYMRYwFAYD VQQDEw02OWE1YzAxNy0wZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssp7Pe3uwd9gSBMXxnYIuV0e5kY+aUGScLS3XEP+IJ90YGnXU9fcb/nSKVde 6T/K3K/6BOb7A3rDL/fZ7Y5yzAq9A01IJvEopsG0GIdity13eOxr4B75DleLEw9U LvH8ym6aTYUpLAHVACz5cdjklMauaLqPrOXq22nUY1PIKgOoOJP4h/XL4XjdhW61 nqaeY5a5IRKkGbhNR45vPiokunwRIk1Vnxqxd0c04cjLW4+WJKDICue0pQ5/TRCN 1nA+D/u0NN4ud9hhZ1emQ1D8dbULsAMqvTJ+64PIYhCqWmnL+Iwc4rZ9YtuKzAVH sigh9j5S70mgC0ifvXNpIY2r7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFt8ko90 CUVvppFu84W4FyG30GtVMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl/iDLRLhpSAQ3Q+Dre905XPopRHL8a6NzgCGOyEXRqqNksQxTP79f8FbB0Qn 1ZrrSmbAP/b6YqN4hGm2Q6ku03svL7MEb9r8KQbew4bOOwKIMMaGOpOqY18n0rmo N34//yHNlj84zm4bTXvOAMTYwRvqKQ+69rAHXwo0t3ySXn88Ci5Scf15HwU4tIK2 ZF11JH+Yw2opa4y+3zC4OmFAoLbWjnQv3BiLv/aMgTLUjwvX96lIxUYVp337zBxP 4qpbQ+p1ReSm8uHXUe24FzhPCt3ZE72OLVTWvYYZ1fKvi92sE2oInx10oRlE0M81 I7Gw7FJK0XtQfLRG22rKDopFhQ== -----END CERTIFICATE-----Generated at Wed Mar 4 13:00:16 2026 by rpki-client