$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: j6z+3LLuhe76rPMh+QJP86eKLAKgcpl7aWHkeyesapU= Subject key identifier: 0D:7C:36:8B:6A:53:E4:50:A4:33:25:E1:D3:58:EF:64:C3:BC:36:E3 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1843 Signing time: Thu 12 Mar 2026 16:42:19 +0000 Manifest this update: Thu 12 Mar 2026 16:42:18 +0000 Manifest next update: Thu 19 Mar 2026 16:42:18 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: JzReq30GgduxYX3i+WXDysng6puc7mB/W7dlvZ9rPf8=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) 8: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6790 (0x1a86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 12 16:42:18 2026 GMT Not After : Mar 19 16:42:18 2026 GMT Subject: CN=69b2eceb-a727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2e:b6:b2:5d:8c:b8:46:6f:61:51:3d:dc:ee: f6:b7:de:f0:1d:7a:4f:86:bb:bf:8c:2e:cf:4a:ee: dd:64:7c:9d:a7:8e:ac:7c:89:0b:08:e9:0a:d1:9e: 36:42:cb:3a:32:9d:54:a1:6f:be:68:ce:cb:96:b8: a8:d1:ee:20:24:c6:5d:85:4c:1f:8d:24:ca:db:89: 23:8e:62:00:b4:8b:e6:d5:57:bf:37:54:f0:8b:a7: e8:4b:7d:41:aa:32:47:ed:1e:ca:b8:41:a3:68:01: ad:94:db:d9:58:c4:92:cd:1c:bd:37:d6:7e:ce:27: a1:bf:e6:97:d4:44:13:62:1c:3d:87:36:e8:c6:48: f1:44:e3:b9:d1:84:fe:c2:51:e6:1e:ee:f8:ba:03: 3e:69:f2:84:ec:aa:d4:e4:68:bc:3f:34:1a:b2:89: 64:21:45:7e:9d:4f:5a:5d:8a:2c:4f:9c:55:10:89: 6d:ab:bd:2f:6b:d8:bc:73:0b:75:27:71:94:43:fd: dd:31:33:c7:79:09:b9:2a:7a:a1:2e:51:e5:47:98: df:e1:0e:d1:f8:4a:fe:69:23:2f:89:70:ae:30:d9: a7:45:29:d7:4b:06:c9:87:89:6e:8a:69:db:48:d9: f5:81:99:37:0c:64:7a:9c:37:54:23:41:be:79:dc: 17:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7C:36:8B:6A:53:E4:50:A4:33:25:E1:D3:58:EF:64:C3:BC:36:E3 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:64:7f:58:cb:e0:17:38:02:5f:60:6b:d9:8c:d1:be:ce:99: 3c:49:d9:44:c5:e3:5a:c6:44:98:e1:05:28:72:55:bd:88:98: e6:24:b0:ca:43:24:0a:5f:2e:a5:9e:88:32:ba:e6:90:c2:ff: 74:60:80:9b:e1:f0:3d:ca:84:59:d2:39:17:35:8f:d9:66:4e: 68:69:5b:81:f6:d1:65:ae:c6:99:00:92:b5:f3:49:08:0e:0c: 44:c9:4d:fe:be:c1:85:43:a9:78:ad:a1:13:0e:56:d3:37:77: ec:d8:2b:44:31:96:a6:af:79:9e:0b:9e:0b:4c:f4:a2:f6:4a: e6:6b:64:10:e2:5f:42:c9:d5:1d:60:a8:e6:22:bd:f7:96:0d: 7c:fe:97:96:bf:fc:1b:b9:5e:7d:8d:aa:8d:45:11:86:93:8a: aa:77:aa:3f:7e:f6:86:19:c9:68:52:76:71:04:08:c0:1f:3d: f6:10:10:ef:11:06:61:34:99:eb:28:82:1b:c3:cc:20:24:9f: 08:4f:73:93:1c:18:4e:f9:77:a8:59:9c:ef:64:04:da:af:cc: b0:0f:8c:b3:77:83:57:a7:d8:a6:59:b6:02:a5:35:39:f1:05: 44:55:6f:dd:1b:05:92:a5:71:01:25:cd:e5:49:9b:44:8d:3f: a0:4d:c1:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzEyMTY0MjE4WhcNMjYwMzE5MTY0MjE4WjAYMRYwFAYD VQQDEw02OWIyZWNlYi1hNzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC62sl2MuEZvYVE93O72t97wHXpPhru/jC7PSu7dZHydp46sfIkLCOkK0Z42 Qss6Mp1UoW++aM7Llrio0e4gJMZdhUwfjSTK24kjjmIAtIvm1Ve/N1Twi6foS31B qjJH7R7KuEGjaAGtlNvZWMSSzRy9N9Z+ziehv+aX1EQTYhw9hzboxkjxROO50YT+ wlHmHu74ugM+afKE7KrU5Gi8PzQasolkIUV+nU9aXYosT5xVEIltq70va9i8cwt1 J3GUQ/3dMTPHeQm5KnqhLlHlR5jf4Q7R+Er+aSMviXCuMNmnRSnXSwbJh4luimnb SNn1gZk3DGR6nDdUI0G+edwXHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA18Notq U+RQpDMl4dNY72TDvDbjMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxmR/WMvgFzgCX2Br2YzRvs6ZPEnZRMXjWsZEmOEFKHJVvYiY5iSwykMkCl8u pZ6IMrrmkML/dGCAm+HwPcqEWdI5FzWP2WZOaGlbgfbRZa7GmQCStfNJCA4MRMlN /r7BhUOpeK2hEw5W0zd37NgrRDGWpq95ngueC0z0ovZK5mtkEOJfQsnVHWCo5iK9 95YNfP6Xlr/8G7lefY2qjUURhpOKqneqP372hhnJaFJ2cQQIwB899hAQ7xEGYTSZ 6yiCG8PMICSfCE9zkxwYTvl3qFmc72QE2q/MsA+Ms3eDV6fYplm2AqU1OfEFRFVv 3RsFkqVxASXN5UmbRI0/oE3B1g== -----END CERTIFICATE-----Generated at Fri Mar 13 22:31:36 2026 by rpki-client