$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: RBtiB8QD7J6Lm0p51t1ZB0rhVZzBQh5Q7SPbUJLL5wM= Subject key identifier: BE:0D:64:83:E5:86:DD:45:9C:E0:C4:06:29:35:9C:F1:F7:82:DB:7C Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 185D Signing time: Wed 22 Apr 2026 16:47:22 +0000 Manifest this update: Wed 22 Apr 2026 16:47:21 +0000 Manifest next update: Wed 29 Apr 2026 16:47:21 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: YZSkqPVghq62o+uYPVCaBXT3RtixMotVsMPxW8a3Hi8=) 2: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 8: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Apr 2026 16:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6818 (0x1aa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 22 16:47:21 2026 GMT Not After : Apr 29 16:47:21 2026 GMT Subject: CN=69e8fb9a-bd3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:7b:90:9c:72:2a:d3:5e:78:0e:37:44:a1: 1a:3a:ce:98:60:2a:dc:cb:45:e2:b5:c9:fc:be:ab: 62:d3:26:a7:1c:30:fd:5d:7f:12:f4:f5:6b:fa:5a: 48:19:ad:78:95:a1:11:00:32:9c:81:09:fb:c6:10: fd:ba:83:24:82:79:59:eb:2b:b9:5a:82:b7:3a:b8: 32:09:6f:89:af:7a:46:33:ad:63:b8:2c:1a:94:e7: 8a:e5:f9:a7:f0:8d:5c:3d:26:60:34:32:de:9b:82: 78:c4:cb:4c:81:05:31:f1:8d:55:78:cd:82:50:c5: 28:f1:a5:60:ad:38:29:e6:c4:d1:75:f1:01:a6:1a: 18:fb:05:2a:86:50:79:f7:9d:d7:f3:b3:35:78:a9: 53:8b:cc:10:e9:61:03:3d:7d:33:92:3c:62:5f:ad: 8c:1f:95:c5:ee:99:30:5c:b5:5e:2b:03:1d:45:51: f6:6a:02:3f:5d:52:7b:cb:d7:d4:47:98:80:e0:c3: f3:76:67:34:07:55:64:91:96:22:f7:3e:f3:f8:02: 39:8d:3a:5f:3d:4a:b1:02:f6:90:d8:4b:f9:42:5f: 0a:1d:6f:32:5f:f8:92:da:3f:33:d4:23:53:01:a7: 8c:41:59:81:a9:d6:20:ce:0f:71:df:86:70:5d:19: 64:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0D:64:83:E5:86:DD:45:9C:E0:C4:06:29:35:9C:F1:F7:82:DB:7C X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:0d:46:5b:bb:31:11:be:1c:29:b4:62:4d:28:74:31:bd:03: 6c:46:f8:cc:1b:0d:00:6d:58:ac:a4:df:8f:f8:5e:33:72:3c: 1f:4b:0b:84:cf:02:c2:b8:c4:bd:70:54:ea:40:7a:fd:6f:46: a2:6e:ca:2c:fb:85:35:21:7a:91:11:cd:7c:68:83:4a:3a:59: dd:e6:48:b0:65:b2:8a:43:db:57:fc:9b:f9:fd:74:45:74:5c: a2:9f:5e:3c:2f:62:b8:f6:7d:6c:00:6f:f3:37:2a:c1:ef:9d: 67:28:2d:30:77:e6:3a:3d:c6:1b:4f:bf:d4:63:f5:2a:7e:20: 0b:0c:36:6d:1a:68:d1:ee:31:84:b9:e7:49:76:4a:6e:1d:3f: 03:7e:39:e3:ca:20:9b:f1:f8:32:af:61:40:c6:40:85:40:0d: e1:3d:98:a8:4e:f3:f8:ae:02:f3:a3:ee:5e:90:1d:91:88:7e: 71:e6:57:5c:8f:1f:9b:e2:eb:48:2c:5a:85:f2:c8:04:5f:80: 29:29:13:16:fd:3f:d8:b3:c3:72:4b:f8:18:91:35:8e:af:0b: d0:08:d1:a2:1c:fe:89:da:f1:7d:8c:70:93:38:b1:36:b8:bd: af:ab:7a:0b:27:c3:ac:e2:99:17:94:1e:3a:65:23:3d:8d:a3: 24:37:54:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDIyMTY0NzIxWhcNMjYwNDI5MTY0NzIxWjAYMRYwFAYD VQQDEw02OWU4ZmI5YS1iZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2N7kJxyKtNeeA43RKEaOs6YYCrcy0Xitcn8vqti0yanHDD9XX8S9PVr+lpI Ga14laERADKcgQn7xhD9uoMkgnlZ6yu5WoK3OrgyCW+Jr3pGM61juCwalOeK5fmn 8I1cPSZgNDLem4J4xMtMgQUx8Y1VeM2CUMUo8aVgrTgp5sTRdfEBphoY+wUqhlB5 953X87M1eKlTi8wQ6WEDPX0zkjxiX62MH5XF7pkwXLVeKwMdRVH2agI/XVJ7y9fU R5iA4MPzdmc0B1VkkZYi9z7z+AI5jTpfPUqxAvaQ2Ev5Ql8KHW8yX/iS2j8z1CNT AaeMQVmBqdYgzg9x34ZwXRlkiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL4NZIPl ht1FnODEBik1nPH3gtt8MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2Q1GW7sxEb4cKbRiTSh0Mb0DbEb4zBsNAG1YrKTfj/heM3I8H0sLhM8CwrjE vXBU6kB6/W9Gom7KLPuFNSF6kRHNfGiDSjpZ3eZIsGWyikPbV/yb+f10RXRcop9e PC9iuPZ9bABv8zcqwe+dZygtMHfmOj3GG0+/1GP1Kn4gCww2bRpo0e4xhLnnSXZK bh0/A34548ogm/H4Mq9hQMZAhUAN4T2YqE7z+K4C86PuXpAdkYh+ceZXXI8fm+Lr SCxahfLIBF+AKSkTFv0/2LPDckv4GJE1jq8L0AjRohz+idrxfYxwkzixNri9r6t6 CyfDrOKZF5QeOmUjPY2jJDdU5A== -----END CERTIFICATE-----Generated at Wed Apr 22 22:16:54 2026 by rpki-client