$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: pTnDBa8fn1hmlTLiG/1/lr2vbuQ6O52nXDTf/p3XQnA= Subject key identifier: 68:D9:D4:5F:4D:48:E8:BA:AF:78:89:19:43:3A:C5:09:70:17:4E:D7 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1840 Signing time: Fri 06 Mar 2026 16:41:31 +0000 Manifest this update: Fri 06 Mar 2026 16:41:31 +0000 Manifest next update: Fri 13 Mar 2026 16:41:31 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: njVnQQMekrdh8t3YxPTDLAxXyk+2H+c37U7dA2wlETg=) 2: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6787 (0x1a83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 6 16:41:31 2026 GMT Not After : Mar 13 16:41:31 2026 GMT Subject: CN=69ab03bb-1f2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9b:5b:55:5f:3d:0c:e1:df:f4:9e:5b:c6:b0: 0f:13:b8:dc:5c:d4:d0:87:a5:fb:67:bd:cb:14:1d: f3:ae:92:de:12:6f:8f:e5:c1:38:09:72:b0:48:45: e3:37:d8:13:25:c8:9e:09:00:fe:04:3a:dc:99:d4: 2d:67:35:f3:70:2d:8f:c0:74:09:71:ce:7a:3c:19: b4:c6:db:fb:81:c9:8a:07:f5:80:52:8c:82:a6:fa: 59:86:93:ea:eb:84:01:6f:40:c2:1e:fc:44:52:1b: 9d:11:0b:0c:44:4b:86:0f:21:20:62:78:9e:f6:e4: bd:3d:0b:7b:85:24:d2:d9:6a:49:c7:3b:6d:2c:a4: fe:d7:75:50:bb:2c:8d:a6:fe:4a:db:09:74:1f:a3: cb:21:7d:76:81:07:f6:e2:aa:40:e2:fc:e5:01:ae: 82:3f:92:00:78:73:4a:91:ed:f4:b9:89:a2:b5:d7: 7f:93:eb:24:38:b8:ab:a1:cf:ec:b3:92:c8:48:a6: bf:91:64:bc:34:97:91:ce:47:d4:c9:59:13:27:f8: c7:31:26:38:71:d5:47:03:71:46:6b:08:62:bf:d2: e5:7f:00:5b:a3:bf:90:9f:12:aa:45:50:13:15:28: c4:c8:e0:a8:38:eb:72:d6:98:a9:8c:01:7d:93:f1: 34:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D9:D4:5F:4D:48:E8:BA:AF:78:89:19:43:3A:C5:09:70:17:4E:D7 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:34:80:4f:e1:82:69:ee:7b:3a:f1:c2:eb:9a:48:f2:86:80: 5e:74:56:4f:24:be:37:43:80:2b:b4:3d:d1:74:ba:86:b9:05: 30:2e:94:20:a1:8f:ab:86:32:a0:fc:10:08:69:11:c0:43:3e: 31:0b:04:74:cc:e7:ab:43:a7:ae:a8:fc:c6:7b:ae:d1:bf:f4: 2e:d4:4f:fc:42:67:88:8e:f5:c5:b8:d1:0f:ac:8a:ab:89:89: 00:97:6c:83:56:1b:37:49:ff:25:10:c8:84:9d:45:af:9c:97: 4f:4d:f5:95:99:f7:72:63:13:1f:7d:c1:b8:ce:6c:d8:b2:5b: e5:3e:98:91:7e:b2:5e:14:1f:ef:f4:0d:ae:78:fb:95:65:b3: bc:ee:5d:6d:0d:7b:4c:47:97:a7:b0:91:7a:ae:00:3d:72:75: 41:78:10:a5:6b:31:df:ca:e3:87:a5:da:35:e3:76:7f:38:5f: ff:0e:31:98:b4:7b:39:18:d8:d6:36:be:00:1e:f8:62:0e:8d: 74:f1:13:ee:ac:17:6b:7b:a3:2f:fe:cc:06:1d:11:bc:99:06: 1a:7e:9e:d5:9c:83:f1:f8:0c:5d:63:d7:f6:73:af:06:30:03: f6:4f:da:c1:04:a9:17:4a:d0:8a:54:ef:db:73:44:6c:b4:f1: b2:f6:73:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzA2MTY0MTMxWhcNMjYwMzEzMTY0MTMxWjAYMRYwFAYD VQQDEw02OWFiMDNiYi0xZjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZtbVV89DOHf9J5bxrAPE7jcXNTQh6X7Z73LFB3zrpLeEm+P5cE4CXKwSEXj N9gTJcieCQD+BDrcmdQtZzXzcC2PwHQJcc56PBm0xtv7gcmKB/WAUoyCpvpZhpPq 64QBb0DCHvxEUhudEQsMREuGDyEgYnie9uS9PQt7hSTS2WpJxzttLKT+13VQuyyN pv5K2wl0H6PLIX12gQf24qpA4vzlAa6CP5IAeHNKke30uYmitdd/k+skOLiroc/s s5LISKa/kWS8NJeRzkfUyVkTJ/jHMSY4cdVHA3FGawhiv9LlfwBbo7+QnxKqRVAT FSjEyOCoOOty1pipjAF9k/E0QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjZ1F9N SOi6r3iJGUM6xQlwF07XMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxDSAT+GCae57OvHC65pI8oaAXnRWTyS+N0OAK7Q90XS6hrkFMC6UIKGPq4Yy oPwQCGkRwEM+MQsEdMznq0Onrqj8xnuu0b/0LtRP/EJniI71xbjRD6yKq4mJAJds g1YbN0n/JRDIhJ1Fr5yXT031lZn3cmMTH33BuM5s2LJb5T6YkX6yXhQf7/QNrnj7 lWWzvO5dbQ17TEeXp7CReq4APXJ1QXgQpWsx38rjh6XaNeN2fzhf/w4xmLR7ORjY 1ja+AB74Yg6NdPET7qwXa3ujL/7MBh0RvJkGGn6e1ZyD8fgMXWPX9nOvBjAD9k/a wQSpF0rQilTv23NEbLTxsvZzRw== -----END CERTIFICATE-----Generated at Fri Mar 6 21:37:13 2026 by rpki-client