$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 0/hYJe9jDvhSy8O7jBtXdQl4lfZt2Wq6DrdOtA1yDeE= Subject key identifier: 6A:54:B4:47:B3:66:36:85:44:DC:11:8A:AC:E9:84:29:BB:05:EF:51 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1857 Signing time: Fri 10 Apr 2026 16:49:55 +0000 Manifest this update: Fri 10 Apr 2026 16:49:55 +0000 Manifest next update: Fri 17 Apr 2026 16:49:55 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: rJo3ohMs+DN68WgcveFNrJ9AQ8oFprCT32us+StoEJs=) 2: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 5: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 6: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 16:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6812 (0x1a9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 10 16:49:55 2026 GMT Not After : Apr 17 16:49:55 2026 GMT Subject: CN=69d92a33-034c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ad:b0:76:bd:e8:b9:74:ba:40:0d:ce:61:9e: 11:c8:41:e9:e6:f1:3c:01:f9:b2:1f:2a:e6:f8:54: e6:f0:b2:e9:71:50:d7:b2:3a:e2:64:a2:78:72:e3: 84:21:05:28:86:7c:3c:15:bb:8c:8d:c1:c3:2a:30: e2:b6:72:ef:42:14:39:fd:b9:3c:15:1f:4f:cf:89: b8:11:62:4c:0b:f6:b3:40:c4:b4:6f:d2:94:f8:05: fa:80:98:56:94:a0:f4:bd:b5:ba:04:f4:9b:86:e7: 25:e3:8f:20:9e:be:f2:cc:cf:03:1c:df:69:2c:21: a1:86:d4:d5:42:4a:2f:19:67:f1:ec:83:fe:19:39: cf:c3:b5:24:c1:21:3a:34:af:e9:64:c1:d9:c1:3d: 35:5b:9a:5e:c7:00:54:ec:8c:cf:ed:57:69:56:09: b8:98:20:00:95:aa:b1:22:ec:70:42:9a:d8:82:8b: c5:b7:59:bd:61:2b:32:e2:95:5e:8e:7e:b8:4a:46: cf:1f:c9:bd:7f:e3:0c:14:ec:74:11:38:2a:fb:49: 66:20:05:62:8b:a4:3d:4d:77:3e:e9:d0:2f:74:41: 00:6e:dd:66:6d:ff:01:e8:2f:96:45:80:1e:42:2c: c4:a3:c0:44:5c:4e:49:93:7e:3f:4e:f6:d8:17:12: 65:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:54:B4:47:B3:66:36:85:44:DC:11:8A:AC:E9:84:29:BB:05:EF:51 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:2f:6f:34:4f:2e:3b:40:ee:2b:d1:c2:a7:d5:14:b5:cd:3b: 62:59:2b:52:0d:dc:75:2d:83:18:e7:96:d1:7e:fc:8b:3c:fe: aa:d1:9f:60:54:a3:6e:8a:8e:74:50:79:61:f7:67:92:8c:9c: f1:5b:1c:55:f6:5f:5d:bf:d2:e0:aa:c5:80:d5:51:51:fa:dc: f6:45:3c:26:4e:51:4f:1b:46:e2:b5:13:fe:98:76:19:72:53: 40:8c:a0:6d:28:4b:e5:5a:87:ef:7c:d8:c2:1b:79:60:47:07: e7:4f:5f:69:03:64:7b:0b:85:69:fd:5b:fd:24:48:88:58:5b: 4a:b4:4d:98:b0:3c:c9:9a:2f:d3:40:08:f2:b7:9d:15:53:bf: d1:65:40:e1:11:85:7e:dd:79:e2:c2:28:4e:54:f9:af:29:16: 4f:18:ac:22:33:69:a2:92:27:36:5f:1c:04:29:5e:b7:a8:76: 1c:31:4e:43:a9:16:65:5e:df:e7:15:bf:3e:e9:66:c4:69:2a: 49:90:2e:d2:1e:6f:21:43:fc:fa:45:8a:f9:3b:db:aa:e9:ad: 54:37:c2:ab:5d:d4:ed:b1:18:18:7d:83:b4:75:01:13:30:85: fc:b2:57:0d:45:13:08:18:ba:78:32:00:f3:9b:b4:5e:6f:74: 53:70:e9:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDEwMTY0OTU1WhcNMjYwNDE3MTY0OTU1WjAYMRYwFAYD VQQDEw02OWQ5MmEzMy0wMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq2wdr3ouXS6QA3OYZ4RyEHp5vE8AfmyHyrm+FTm8LLpcVDXsjriZKJ4cuOE IQUohnw8FbuMjcHDKjDitnLvQhQ5/bk8FR9Pz4m4EWJMC/azQMS0b9KU+AX6gJhW lKD0vbW6BPSbhucl448gnr7yzM8DHN9pLCGhhtTVQkovGWfx7IP+GTnPw7UkwSE6 NK/pZMHZwT01W5pexwBU7IzP7VdpVgm4mCAAlaqxIuxwQprYgovFt1m9YSsy4pVe jn64SkbPH8m9f+MMFOx0ETgq+0lmIAVii6Q9TXc+6dAvdEEAbt1mbf8B6C+WRYAe QizEo8BEXE5Jk34/TvbYFxJl3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGpUtEez ZjaFRNwRiqzphCm7Be9RMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvi9vNE8uO0DuK9HCp9UUtc07YlkrUg3cdS2DGOeW0X78izz+qtGfYFSjboqO dFB5Yfdnkoyc8VscVfZfXb/S4KrFgNVRUfrc9kU8Jk5RTxtG4rUT/ph2GXJTQIyg bShL5VqH73zYwht5YEcH509faQNkewuFaf1b/SRIiFhbSrRNmLA8yZov00AI8red FVO/0WVA4RGFft154sIoTlT5rykWTxisIjNpopInNl8cBClet6h2HDFOQ6kWZV7f 5xW/PulmxGkqSZAu0h5vIUP8+kWK+TvbqumtVDfCq13U7bEYGH2DtHUBEzCF/LJX DUUTCBi6eDIA85u0Xm90U3DpLA== -----END CERTIFICATE-----Generated at Sat Apr 11 00:06:20 2026 by rpki-client