$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: iyEct43KZYIMnAdYf0mEYmN1Q3hUw0IbaWrwyVNTwno= Subject key identifier: 00:EB:81:A6:58:4D:F3:1B:15:87:42:EF:61:DD:7A:70:A7:43:44:AF Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 186C Signing time: Sat 16 May 2026 16:47:14 +0000 Manifest this update: Sat 16 May 2026 16:47:14 +0000 Manifest next update: Sat 23 May 2026 16:47:14 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: zGymPm/MGeW5KHVRjlwjliE6smksZAnv7+ajKd1KciQ=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 4: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 6: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 8: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 16:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6834 (0x1ab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 16 16:47:14 2026 GMT Not After : May 23 16:47:14 2026 GMT Subject: CN=6a089f92-b79c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:23:3d:a6:1f:d7:2d:d5:65:4a:93:be:59:25: db:b3:00:67:0d:26:28:29:08:48:d9:9e:80:c2:64: 9a:24:1f:9e:12:8b:4d:d9:96:6b:f7:aa:74:0a:1d: 3f:ce:b3:df:87:ff:88:b8:3d:dc:cf:83:cf:3a:17: 1e:fb:a8:ec:43:fa:26:e0:41:cd:de:26:f9:95:9b: 0e:41:e7:b4:5d:57:2c:5e:81:bb:73:e8:c0:3a:58: 5f:45:a9:83:38:67:77:10:b1:1e:b3:7a:41:82:1d: c9:3a:ec:d0:9e:8c:25:eb:1a:99:16:78:7b:ec:4f: 22:50:bc:0f:74:11:30:6b:10:18:ff:6f:58:c7:f6: 97:e7:9a:35:b9:a3:1e:0d:4d:7f:8b:5a:ff:c3:5a: d1:89:ed:18:c0:8d:af:4d:1c:61:00:20:de:30:05: 09:aa:71:a6:a5:d3:f2:35:0e:5f:00:2a:f0:05:81: d1:f8:04:05:2e:d8:f7:80:66:3e:d2:d3:c2:a2:bf: fa:29:93:f3:9e:24:e0:04:60:d3:30:0c:6c:5c:12: 7a:19:06:87:fc:f0:6f:f1:13:23:74:61:86:78:9f: 3e:d8:0c:7a:08:96:7f:c9:9b:d4:09:25:b0:17:b7: 0d:ae:00:9c:67:47:20:2d:4e:b4:af:60:2e:9f:3d: 22:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:EB:81:A6:58:4D:F3:1B:15:87:42:EF:61:DD:7A:70:A7:43:44:AF X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:5a:44:ba:33:66:36:c5:4e:69:d2:63:71:56:e3:1b:b0:8d: 38:fd:68:33:02:b2:6c:93:8f:98:ee:46:54:13:2f:ba:53:2a: ed:b0:86:c3:de:31:ea:1a:54:c5:d2:fa:56:65:83:78:5f:84: 9c:1a:01:5f:2f:2f:c5:c3:42:c2:48:5e:4a:1c:9d:76:b8:60: c2:d3:e0:0d:b4:a4:83:3f:0e:2a:83:68:ae:5f:44:06:fb:8b: f2:fb:87:90:f6:83:aa:72:97:5a:f3:f4:7b:f2:ef:a4:61:25: 9e:1d:cc:1d:5c:7d:de:5c:ac:4c:53:4d:a8:57:44:56:22:ec: 57:24:56:4e:22:3b:3c:b0:d9:7d:71:01:1f:28:ab:4d:50:b7: a1:e6:84:be:05:a2:40:5b:e3:ad:2c:62:2c:a9:c2:39:8b:5d: 69:ad:aa:a9:17:7c:ae:80:f7:f3:08:57:07:41:99:04:b6:3a: bd:41:d5:56:28:81:a8:bf:58:0c:cb:cc:5d:50:57:3f:54:20: d4:9d:c8:3a:67:6e:71:3f:80:85:be:9c:46:13:a9:20:1b:ed: 8d:60:5c:7c:96:07:23:22:04:57:b6:c6:c4:93:17:ac:84:53: e2:d3:e8:0d:ea:39:fe:78:eb:11:83:82:5e:a8:be:62:07:20: 5a:f6:00:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNTE2MTY0NzE0WhcNMjYwNTIzMTY0NzE0WjAYMRYwFAYD VQQDEw02YTA4OWY5Mi1iNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iM9ph/XLdVlSpO+WSXbswBnDSYoKQhI2Z6AwmSaJB+eEotN2ZZr96p0Ch0/ zrPfh/+IuD3cz4PPOhce+6jsQ/om4EHN3ib5lZsOQee0XVcsXoG7c+jAOlhfRamD OGd3ELEes3pBgh3JOuzQnowl6xqZFnh77E8iULwPdBEwaxAY/29Yx/aX55o1uaMe DU1/i1r/w1rRie0YwI2vTRxhACDeMAUJqnGmpdPyNQ5fACrwBYHR+AQFLtj3gGY+ 0tPCor/6KZPzniTgBGDTMAxsXBJ6GQaH/PBv8RMjdGGGeJ8+2Ax6CJZ/yZvUCSWw F7cNrgCcZ0cgLU60r2Aunz0iLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFADrgaZY TfMbFYdC72HdenCnQ0SvMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe1pEujNmNsVOadJjcVbjG7CNOP1oMwKybJOPmO5GVBMvulMq7bCGw94x6hpU xdL6VmWDeF+EnBoBXy8vxcNCwkheShyddrhgwtPgDbSkgz8OKoNorl9EBvuL8vuH kPaDqnKXWvP0e/LvpGElnh3MHVx93lysTFNNqFdEViLsVyRWTiI7PLDZfXEBHyir TVC3oeaEvgWiQFvjrSxiLKnCOYtdaa2qqRd8roD38whXB0GZBLY6vUHVViiBqL9Y DMvMXVBXP1Qg1J3IOmducT+Ahb6cRhOpIBvtjWBcfJYHIyIEV7bGxJMXrIRT4tPo Deo5/njrEYOCXqi+YgcgWvYAsQ== -----END CERTIFICATE-----Generated at Mon May 18 09:16:58 2026 by rpki-client