$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: fRQwd/IgWIJ/RFRBUNKyjRmzoar9EKaFrbphRTeWmTs= Subject key identifier: BD:59:C5:E8:6D:21:39:11:B8:03:33:4C:46:AA:5E:76:FE:FE:3E:6E Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1850 Signing time: Mon 30 Mar 2026 16:49:59 +0000 Manifest this update: Mon 30 Mar 2026 16:49:58 +0000 Manifest next update: Mon 06 Apr 2026 16:49:58 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: in3TqtDqAHgZdsAwngRr2L5GsE3bN5zY7R3OqW26YfY=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 8: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: GLdltmEd57fyynplgd0oUG1PEP5bNYkQQgxEwtWyqrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6804 (0x1a94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 30 16:49:58 2026 GMT Not After : Apr 6 16:49:58 2026 GMT Subject: CN=69caa9b7-b9fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:79:7d:cd:33:e8:2d:4b:59:86:76:6d:21:62: f7:a0:7f:e3:e7:58:3a:26:fb:d7:da:9c:f4:e9:8f: 6b:bc:a0:56:75:aa:a4:21:79:23:ed:5f:f9:43:d4: b2:84:51:7c:3f:c1:45:23:8a:be:d3:79:c4:43:bc: 42:64:77:2c:bd:15:b7:48:88:97:91:2a:51:39:92: 00:73:09:96:fb:b9:05:dc:1f:44:ee:14:55:d4:1b: a6:f5:5d:f5:46:4e:f8:41:e2:33:93:f7:74:1f:3a: df:3a:33:65:ca:bf:d7:27:a5:25:bb:48:48:fc:69: 17:37:51:8b:df:05:c6:0a:ae:11:9e:9c:47:dc:d9: ed:8c:5c:71:ce:a6:e0:76:25:30:ff:0b:7e:17:77: 65:aa:8d:57:d5:4a:e8:9e:78:b8:12:27:56:4f:11: 79:5b:5e:37:2f:48:90:3a:e3:c3:64:55:82:2a:47: 53:64:54:e6:a0:71:da:90:6f:61:c1:2e:fd:a6:dd: fe:5a:40:23:1b:b8:1f:a0:3a:1e:58:9f:a3:4f:f4: ff:c3:ba:5c:f1:63:20:2c:4b:de:e4:93:46:96:1b: ac:97:d6:05:27:7b:80:fc:88:a4:1a:8b:6e:51:8d: 40:19:a9:a9:36:df:fd:21:4c:47:1e:9e:74:84:04: e5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:59:C5:E8:6D:21:39:11:B8:03:33:4C:46:AA:5E:76:FE:FE:3E:6E X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b5:61:72:dd:14:4b:08:59:45:dc:40:04:28:29:da:de:e4: 96:59:41:03:03:0b:89:9b:58:ad:e2:bc:94:da:cb:46:97:5a: 39:77:05:07:7d:ab:76:ba:9a:a1:e3:0d:f0:96:f5:2b:96:34: 06:4a:d5:05:ba:a8:3b:74:c3:9e:68:38:70:11:55:e5:8f:b2: 54:2a:2a:66:fb:df:0e:8d:29:54:9a:2e:a0:9c:66:09:3e:c4: 2b:ff:dd:67:03:fe:d8:67:a2:8c:d7:ef:74:84:b0:ff:55:fc: e8:2b:7d:63:b3:79:23:2a:8e:4c:b8:ef:02:8c:76:7c:f3:93: 06:17:f5:e9:1b:b6:b0:6f:ba:32:e2:7f:a7:68:da:9d:c0:de: bc:fd:5b:aa:b3:3f:d6:fc:e1:3b:0e:ab:22:c6:0b:ab:dc:23: d4:72:de:0e:49:41:87:b1:56:87:3b:f8:c9:b4:6a:2e:aa:0e: a1:ce:cc:64:8b:9b:1e:f3:79:67:1e:52:7d:cb:72:ac:26:22: 15:df:9b:15:fb:cc:bf:85:14:1c:cb:70:58:de:3d:57:9c:91: 37:ce:bb:b8:b4:59:ac:e9:24:3c:3a:87:2d:e2:79:19:99:bc: f6:1b:21:14:24:60:3e:e0:ec:fa:38:5c:c7:6d:81:78:0f:c9: ae:b8:7d:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzMwMTY0OTU4WhcNMjYwNDA2MTY0OTU4WjAYMRYwFAYD VQQDEw02OWNhYTliNy1iOWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHl9zTPoLUtZhnZtIWL3oH/j51g6JvvX2pz06Y9rvKBWdaqkIXkj7V/5Q9Sy hFF8P8FFI4q+03nEQ7xCZHcsvRW3SIiXkSpROZIAcwmW+7kF3B9E7hRV1Bum9V31 Rk74QeIzk/d0HzrfOjNlyr/XJ6Ulu0hI/GkXN1GL3wXGCq4RnpxH3NntjFxxzqbg diUw/wt+F3dlqo1X1Uronni4EidWTxF5W143L0iQOuPDZFWCKkdTZFTmoHHakG9h wS79pt3+WkAjG7gfoDoeWJ+jT/T/w7pc8WMgLEve5JNGlhusl9YFJ3uA/IikGotu UY1AGampNt/9IUxHHp50hATlBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL1Zxeht ITkRuAMzTEaqXnb+/j5uMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoLVhct0USwhZRdxABCgp2t7klllBAwMLiZtYreK8lNrLRpdaOXcFB32rdrqa oeMN8Jb1K5Y0BkrVBbqoO3TDnmg4cBFV5Y+yVCoqZvvfDo0pVJouoJxmCT7EK//d ZwP+2GeijNfvdISw/1X86Ct9Y7N5IyqOTLjvAox2fPOTBhf16Ru2sG+6MuJ/p2ja ncDevP1bqrM/1vzhOw6rIsYLq9wj1HLeDklBh7FWhzv4ybRqLqoOoc7MZIubHvN5 Zx5SfctyrCYiFd+bFfvMv4UUHMtwWN49V5yRN867uLRZrOkkPDqHLeJ5GZm89hsh FCRgPuDs+jhcx22BeA/Jrrh93g== -----END CERTIFICATE-----Generated at Tue Mar 31 11:01:44 2026 by rpki-client