$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: kOhyQFpEWho88R42wQuuzLKqU1iF55YA+SwqbPY5/3E= Subject key identifier: CD:C8:D6:9A:3C:BE:EE:E0:FD:D5:08:0C:3C:3B:06:8F:88:75:83:30 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 188B Signing time: Tue 16 Jun 2026 16:49:01 +0000 Manifest this update: Tue 16 Jun 2026 16:49:00 +0000 Manifest next update: Tue 23 Jun 2026 16:49:00 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: h3vkl8YkhCFhV/zB2143O4B4F6aN79VPWTB6hFqANBA=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: D00F9A8643A511F1B04E115C93833773.roa (hash: QPdt4fsCL2XWpqN3V1Gtq0d4gMm1PZ100Z5/4Fr7hyA=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 8: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6880 (0x1ae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 16 16:49:00 2026 GMT Not After : Jun 23 16:49:00 2026 GMT Subject: CN=6a317e7c-ecae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:19:c0:1a:da:93:cd:ff:c0:01:79:d9:51:c7: 2a:d2:77:fa:1b:9b:7b:ec:f9:bc:49:a4:be:bd:1b: 42:83:2f:fb:f0:6f:4f:87:80:c4:f5:e1:ce:be:09: 30:20:ac:a7:cb:65:97:c6:12:ca:c9:f9:e5:65:40: 20:ea:a5:74:ab:16:e3:93:c7:2c:dd:a3:9f:6c:a7: fe:c8:4b:d5:4f:45:8a:fd:98:cd:ff:f4:47:96:1a: dc:6e:41:af:cb:91:57:12:0e:5d:cf:6b:ee:68:d2: 88:5d:c4:87:95:38:53:72:f6:75:ef:45:b5:6c:b1: e9:b4:b3:9e:ae:e0:ad:6f:54:a8:72:46:db:6e:4c: 36:28:a6:bd:88:1c:68:df:b6:b6:33:9a:df:31:24: dc:40:8e:c6:59:41:3a:c2:9b:41:db:60:82:d5:d4: 35:34:9f:9f:ff:76:5c:f7:6f:5c:e9:1c:0b:b5:e6: 88:d3:c7:7d:71:a7:5b:a0:e4:07:6b:45:c0:10:34: e2:0d:7e:37:52:71:b1:24:06:19:e5:67:98:12:ed: de:34:bb:d4:f6:22:06:68:6c:61:9b:e1:53:4c:7b: 92:99:2b:87:a6:13:3c:aa:a6:dd:23:80:f4:f6:61: 01:9b:5b:1b:71:fc:c3:96:b9:56:b1:41:87:ad:57: 62:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C8:D6:9A:3C:BE:EE:E0:FD:D5:08:0C:3C:3B:06:8F:88:75:83:30 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:19:3a:a6:e9:a0:d3:cc:16:57:fc:f3:48:04:22:f4:84:50: fb:0d:97:a3:20:e8:cf:b2:43:5c:f1:52:5d:18:3b:3c:c2:98: 6a:f1:7c:e3:4a:11:d4:27:fa:74:9e:ef:57:74:76:8a:b9:ee: 34:90:e6:a8:4c:66:1b:4c:52:e4:dd:09:a2:8d:37:98:10:f7: 04:e0:84:73:4a:f5:fb:8f:04:f3:66:7c:da:d3:d9:f1:a9:06: 9d:3e:ca:5c:53:5b:b2:b4:51:2c:be:bb:1e:20:f7:d6:e9:5d: a0:b3:49:a2:73:75:6d:e7:41:27:e0:12:88:8d:af:36:d3:cd: d6:29:2d:74:bd:13:8a:5a:44:95:07:16:3b:a6:c9:9d:73:3e: 4d:c8:9c:ef:71:58:5d:a1:10:69:1f:83:d8:ee:69:be:58:24: 7b:ba:bc:96:91:7a:ff:d6:94:9d:c2:cf:c0:a4:ff:c0:b7:7d: 8c:46:ea:f9:ed:78:7e:6b:c9:09:49:3f:c0:c7:c5:81:a5:4a: 89:de:0b:61:fe:19:6c:34:83:de:0f:c5:38:e8:d8:7c:7f:ea: 27:1f:ce:2d:19:85:01:6a:e9:1c:70:83:7a:21:3b:21:6e:da: 43:1d:45:62:9a:eb:32:e1:93:b8:35:c7:e3:cf:5a:d5:c3:1a: ee:03:b7:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNjE2MTY0OTAwWhcNMjYwNjIzMTY0OTAwWjAYMRYwFAYD VQQDEw02YTMxN2U3Yy1lY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiRnAGtqTzf/AAXnZUccq0nf6G5t77Pm8SaS+vRtCgy/78G9Ph4DE9eHOvgkw IKyny2WXxhLKyfnlZUAg6qV0qxbjk8cs3aOfbKf+yEvVT0WK/ZjN//RHlhrcbkGv y5FXEg5dz2vuaNKIXcSHlThTcvZ170W1bLHptLOeruCtb1Sockbbbkw2KKa9iBxo 37a2M5rfMSTcQI7GWUE6wptB22CC1dQ1NJ+f/3Zc929c6RwLteaI08d9cadboOQH a0XAEDTiDX43UnGxJAYZ5WeYEu3eNLvU9iIGaGxhm+FTTHuSmSuHphM8qqbdI4D0 9mEBm1sbcfzDlrlWsUGHrVdijwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3I1po8 vu7g/dUIDDw7Bo+IdYMwMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARRk6pumg08wWV/zzSAQi9IRQ+w2XoyDoz7JDXPFSXRg7PMKYavF840oR1Cf6 dJ7vV3R2irnuNJDmqExmG0xS5N0Joo03mBD3BOCEc0r1+48E82Z82tPZ8akGnT7K XFNbsrRRLL67HiD31uldoLNJonN1bedBJ+ASiI2vNtPN1iktdL0TilpElQcWO6bJ nXM+Tcic73FYXaEQaR+D2O5pvlgke7q8lpF6/9aUncLPwKT/wLd9jEbq+e14fmvJ CUk/wMfFgaVKid4LYf4ZbDSD3g/FOOjYfH/qJx/OLRmFAWrpHHCDeiE7IW7aQx1F YprrMuGTuDXH489a1cMa7gO3mA== -----END CERTIFICATE-----Generated at Wed Jun 17 05:48:19 2026 by rpki-client