$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: slOA3h1lggDsCS9FAzGnNMuPMh4HqQyV7WItlb/Ee2U= Subject key identifier: 49:30:16:20:D1:08:28:EF:4F:EF:D5:7E:AD:F1:29:4F:65:6F:64:B2 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1847 Signing time: Fri 20 Mar 2026 16:41:18 +0000 Manifest this update: Fri 20 Mar 2026 16:41:18 +0000 Manifest next update: Fri 27 Mar 2026 16:41:18 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: ku2U1l8Jc86VsI3RJJeD+rTigJtdAEUxScevPyjWLx8=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 4: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) 5: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 8: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 16:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6794 (0x1a8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 20 16:41:18 2026 GMT Not After : Mar 27 16:41:18 2026 GMT Subject: CN=69bd78ae-8828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:70:b3:37:bb:86:fe:97:d9:27:a4:e6:2c:4c: 86:87:76:17:1e:e0:94:bc:f1:41:2a:0f:dc:40:2a: 06:dd:35:6d:2d:09:1e:b1:1f:9f:37:3c:54:69:88: e3:9e:06:7a:f9:f7:52:4e:79:98:c1:6a:48:fa:88: 40:60:7c:cc:91:4e:dc:71:d6:c5:22:2d:25:86:31: 8f:52:5e:b5:5f:62:15:23:31:45:b3:e3:ce:74:fc: 97:c1:21:c4:9f:9b:7c:a2:48:3d:4f:bf:73:a0:7d: a6:fd:6a:74:3f:bf:d3:7e:0b:63:99:af:e2:e6:ac: 5c:5e:b9:fd:e8:32:36:2b:ab:d5:d1:f7:82:b3:b8: 7c:80:ab:9c:d8:83:8a:14:8c:66:8d:66:06:48:12: ad:ae:06:fe:45:f9:8e:f4:39:fa:ca:aa:93:14:61: c1:55:3c:2c:11:82:c8:a9:db:b9:d9:1d:bb:d4:6a: 58:c1:62:a1:61:0f:3e:c3:ea:d4:c5:7d:6b:94:1a: d5:5d:69:31:f8:97:12:0d:b1:00:1c:9e:81:0f:e4: 76:24:d8:6b:f5:1d:49:7d:c0:e6:12:fc:f2:00:29: 15:9c:fd:c2:42:b2:95:b4:e1:70:69:cb:c2:9f:c9: b4:b8:93:e1:23:1d:08:3a:92:d7:85:8f:f9:19:83: 1a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:30:16:20:D1:08:28:EF:4F:EF:D5:7E:AD:F1:29:4F:65:6F:64:B2 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e9:80:22:f9:d8:55:1a:5c:a1:03:cc:fb:e4:bf:84:4a:0f: af:85:fc:07:16:6f:c0:04:9d:87:7d:86:7b:7c:31:88:43:fb: d0:e6:fe:31:f6:ea:0c:f6:4d:34:68:ea:48:f9:3b:b9:70:29: 13:30:da:23:89:3b:df:2e:4b:6c:28:90:22:00:e4:36:28:9b: 97:71:a4:6c:8b:39:e4:d8:d9:8a:88:01:72:d6:70:5b:a5:e4: d7:61:7c:34:31:20:4a:18:5d:a4:60:34:42:0f:cd:17:45:35: fe:fe:ce:9f:6c:d7:80:e0:04:10:79:f7:59:42:bc:6d:c2:16: b3:42:51:6b:92:49:a7:93:9c:e5:17:f3:82:4d:90:41:c0:ec: e3:1d:5b:0c:c5:1d:6b:52:a9:0a:a7:b4:c4:4d:a5:a7:b2:ec: 8d:73:38:c3:6d:55:1c:e2:f6:d3:e7:b3:37:16:4d:ff:24:2e: a7:08:e4:1a:e9:34:7e:e7:f9:07:6b:7a:fa:b2:ba:8c:cb:0d: da:e7:0f:e1:2b:15:80:79:70:03:7b:7b:63:a5:1a:2e:46:6e: d7:57:7c:19:49:9f:6b:5f:3a:55:1a:3b:6c:fd:3f:79:b5:a5: 69:7b:56:53:97:42:67:e6:62:e8:94:d3:ea:df:6d:4a:0a:52: 68:7f:5f:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzIwMTY0MTE4WhcNMjYwMzI3MTY0MTE4WjAYMRYwFAYD VQQDEw02OWJkNzhhZS04ODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHCzN7uG/pfZJ6TmLEyGh3YXHuCUvPFBKg/cQCoG3TVtLQkesR+fNzxUaYjj ngZ6+fdSTnmYwWpI+ohAYHzMkU7ccdbFIi0lhjGPUl61X2IVIzFFs+POdPyXwSHE n5t8okg9T79zoH2m/Wp0P7/Tfgtjma/i5qxcXrn96DI2K6vV0feCs7h8gKuc2IOK FIxmjWYGSBKtrgb+RfmO9Dn6yqqTFGHBVTwsEYLIqdu52R271GpYwWKhYQ8+w+rU xX1rlBrVXWkx+JcSDbEAHJ6BD+R2JNhr9R1JfcDmEvzyACkVnP3CQrKVtOFwacvC n8m0uJPhIx0IOpLXhY/5GYMaTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEkwFiDR CCjvT+/Vfq3xKU9lb2SyMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjOmAIvnYVRpcoQPM++S/hEoPr4X8BxZvwASdh32Ge3wxiEP70Ob+MfbqDPZN NGjqSPk7uXApEzDaI4k73y5LbCiQIgDkNiibl3GkbIs55NjZiogBctZwW6Xk12F8 NDEgShhdpGA0Qg/NF0U1/v7On2zXgOAEEHn3WUK8bcIWs0JRa5JJp5Oc5Rfzgk2Q QcDs4x1bDMUda1KpCqe0xE2lp7LsjXM4w21VHOL20+ezNxZN/yQupwjkGuk0fuf5 B2t6+rK6jMsN2ucP4SsVgHlwA3t7Y6UaLkZu11d8GUmfa186VRo7bP0/ebWlaXtW U5dCZ+Zi6JTT6t9tSgpSaH9f1w== -----END CERTIFICATE-----Generated at Sat Mar 21 10:02:20 2026 by rpki-client