$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: Y93jlh5ZBjix9Fgs7bMZa97beNCIdjoSgYRWuV/En/0= Subject key identifier: D7:3E:1A:47:12:ED:7E:0B:64:62:73:89:C9:D1:BA:6E:6E:50:62:15 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1870 Signing time: Sun 24 May 2026 16:46:58 +0000 Manifest this update: Sun 24 May 2026 16:46:57 +0000 Manifest next update: Sun 31 May 2026 16:46:57 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: Mv2YQIQZaNixbu8hTAyHKmvdI1nVHUVnoHtxo/0WI04=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 May 2026 16:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6838 (0x1ab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 24 16:46:57 2026 GMT Not After : May 31 16:46:57 2026 GMT Subject: CN=6a132b82-b3ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:27:af:e8:dc:53:08:3f:88:e9:a1:7d:38:f7: 3e:66:13:17:49:d7:fe:66:cc:f6:97:d3:0e:34:2e: 1e:2a:c5:d6:12:9a:85:e5:87:29:55:c6:ac:02:60: ca:fb:17:7c:c1:65:09:02:46:55:46:87:52:a0:dc: 47:09:6e:ff:f9:56:79:81:17:56:9e:1e:ee:e6:26: ae:83:4c:6d:8d:77:03:26:ff:9d:57:ba:7f:fa:7c: 93:cc:81:71:d5:44:96:f5:69:14:ac:d8:6d:5d:aa: d4:90:2d:0d:f3:71:c8:c4:93:3b:39:c6:8f:c6:5b: e1:13:a8:54:bb:9e:45:3a:c1:35:8b:b9:ff:89:5b: 22:93:1b:4a:49:c2:eb:43:ae:9d:48:eb:88:8d:3c: 7e:ac:23:44:89:b5:82:eb:8e:0d:35:a9:cb:38:81: 99:6b:5b:b8:a6:d2:7f:c4:45:9c:97:c1:c5:07:0f: 31:df:57:49:40:fe:23:4c:12:08:95:65:8b:f4:0d: 33:04:35:69:dc:22:03:99:41:24:5c:64:75:eb:3e: 14:6c:02:e8:1a:65:16:bb:4b:a9:33:04:1b:f7:e8: a8:22:47:1b:96:71:12:1a:95:75:b9:be:13:46:f4: 3c:97:39:ba:c5:5b:e8:26:9a:f4:98:b5:43:86:d4: 6f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3E:1A:47:12:ED:7E:0B:64:62:73:89:C9:D1:BA:6E:6E:50:62:15 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:df:d2:18:f3:7a:7f:d5:df:84:81:99:db:30:7d:8e:ab:c2: d7:89:10:c3:51:66:d4:99:f0:05:2c:d8:db:6c:3c:f9:d5:b5: 51:17:63:2a:74:1a:a1:40:f4:d5:6c:f5:d2:ec:4f:48:17:56: 55:a3:43:da:8c:6c:5e:58:e9:37:c9:ca:55:b8:b3:d7:d7:c3: b6:14:03:42:f2:ac:58:b1:1f:e7:c1:52:d9:14:9f:42:7a:c9: 2a:63:5f:2f:45:6a:b8:21:3c:71:9f:68:74:01:4c:b0:1f:0c: b7:c6:a4:58:11:df:48:44:70:34:98:f6:5e:98:e6:b1:5c:6a: ec:31:51:fd:a5:bf:98:66:85:75:04:0c:67:fd:96:f6:f7:83: 4b:64:4b:7d:a8:41:f6:1d:fb:dd:f0:0c:7f:cf:ae:81:fa:fd: da:f0:e9:70:2e:66:74:02:97:0f:04:e5:2c:8e:a0:85:c8:5d: b5:a1:1f:d1:15:43:9d:a6:4c:0d:fb:8c:e8:ba:74:d0:d8:84: da:2a:d5:2c:cf:c0:1f:b3:fc:8c:3b:fc:d3:d2:7f:ed:aa:63: 9b:42:d1:96:e9:3a:4a:85:6e:71:f1:66:35:e5:19:16:90:03: 5a:93:3d:86:5f:55:7d:f5:00:dd:a9:01:31:ab:a7:03:de:b6: b2:0d:0c:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNTI0MTY0NjU3WhcNMjYwNTMxMTY0NjU3WjAYMRYwFAYD VQQDEw02YTEzMmI4Mi1iM2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Cev6NxTCD+I6aF9OPc+ZhMXSdf+Zsz2l9MONC4eKsXWEpqF5YcpVcasAmDK +xd8wWUJAkZVRodSoNxHCW7/+VZ5gRdWnh7u5iaug0xtjXcDJv+dV7p/+nyTzIFx 1USW9WkUrNhtXarUkC0N83HIxJM7OcaPxlvhE6hUu55FOsE1i7n/iVsikxtKScLr Q66dSOuIjTx+rCNEibWC644NNanLOIGZa1u4ptJ/xEWcl8HFBw8x31dJQP4jTBII lWWL9A0zBDVp3CIDmUEkXGR16z4UbALoGmUWu0upMwQb9+ioIkcblnESGpV1ub4T RvQ8lzm6xVvoJpr0mLVDhtRvmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNc+GkcS 7X4LZGJzicnRum5uUGIVMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGN/SGPN6f9XfhIGZ2zB9jqvC14kQw1Fm1JnwBSzY22w8+dW1URdjKnQaoUD0 1Wz10uxPSBdWVaND2oxsXljpN8nKVbiz19fDthQDQvKsWLEf58FS2RSfQnrJKmNf L0VquCE8cZ9odAFMsB8Mt8akWBHfSERwNJj2XpjmsVxq7DFR/aW/mGaFdQQMZ/2W 9veDS2RLfahB9h373fAMf8+ugfr92vDpcC5mdAKXDwTlLI6ghchdtaEf0RVDnaZM DfuM6Lp00NiE2irVLM/AH7P8jDv809J/7apjm0LRluk6SoVucfFmNeUZFpADWpM9 hl9VffUA3akBMaunA962sg0MyQ== -----END CERTIFICATE-----Generated at Mon May 25 10:39:59 2026 by rpki-client