$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: lm2ixXMGPyBwfOYWgHsD7uGKnWA8fGBipIaMfj7PwEo= Subject key identifier: 68:B8:63:23:9F:CD:E7:DC:F9:C4:19:AE:E2:AB:72:F8:4E:B1:53:AE Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1ABA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1874 Signing time: Sun 31 May 2026 17:00:23 +0000 Manifest this update: Sun 31 May 2026 17:00:22 +0000 Manifest next update: Sun 07 Jun 2026 17:00:22 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: Wb00+4WfKuNiZ9qTr1N24kqJ3W6gu3+d9Lip4UoXaGI=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) 5: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 8: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 17:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6842 (0x1aba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 31 17:00:22 2026 GMT Not After : Jun 7 17:00:22 2026 GMT Subject: CN=6a1c6926-ae70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:46:26:45:2b:f0:9a:5a:8c:c2:0f:69:f5:10: 37:57:2b:38:1e:f2:d6:57:83:41:da:2e:38:4a:93: b7:74:c1:a2:b5:07:2e:6c:4b:a0:c5:e5:84:2d:18: 11:81:08:35:19:3b:94:2d:f9:42:2e:a9:21:90:bc: 9f:86:cd:8b:2b:01:38:b0:0a:be:96:c7:05:8c:21: b3:aa:f0:71:dc:41:b9:06:df:fa:c3:87:53:2f:db: 90:9f:a6:40:21:4e:9e:d4:2f:1a:08:e6:e4:93:93: fa:c8:a0:d5:ee:d3:44:03:2c:88:28:48:a4:70:17: a6:1c:8a:32:14:c2:e0:03:43:91:12:1f:bf:4b:79: c0:7e:da:1b:45:ce:d5:e4:ee:65:d0:77:0a:75:82: 77:28:30:71:14:d0:db:8f:83:2a:be:24:68:3a:d1: 14:4b:92:35:97:c1:ee:84:b6:4b:38:8d:77:d9:fb: fd:1f:e6:e8:94:f6:6e:5f:b3:47:27:7f:f5:28:4e: 42:94:04:f6:64:b4:8d:c7:b0:6a:74:1c:e7:1c:3a: 0a:45:99:39:8a:85:e3:8e:ec:31:f4:ec:f6:61:cf: c0:34:4c:fe:81:be:51:8c:62:49:1f:48:a7:a4:88: 08:dd:a2:03:96:0d:47:0f:e8:3f:00:f6:ba:9a:6a: a0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B8:63:23:9F:CD:E7:DC:F9:C4:19:AE:E2:AB:72:F8:4E:B1:53:AE X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f4:5e:9f:a6:51:e3:5e:c3:86:f7:39:38:76:9b:63:ae:31: a1:89:eb:57:ac:9b:d0:0b:ae:67:67:27:b3:9a:13:c0:23:71: 59:53:c3:88:55:b4:6d:1f:d0:43:8e:95:66:d7:a0:2a:21:f8: 18:1c:97:78:c9:0c:72:86:24:65:03:4f:4b:17:e9:60:7d:39: cc:c9:b8:d7:79:48:01:bc:81:ab:ac:8c:f9:bc:a0:95:e5:1f: c9:a0:ce:28:21:a0:7f:e4:80:a7:c2:11:e0:07:67:09:cd:3b: a6:9e:2d:7c:7d:c4:29:ca:13:ae:55:a8:56:e5:a7:f1:3e:1b: 85:97:63:a3:00:43:4c:d2:44:09:f9:cc:d9:db:7a:f0:1c:b6: ea:4a:e6:b4:fd:7d:b3:50:d9:b5:c2:69:bc:c1:21:16:77:a1: 97:95:f3:d9:a5:c0:83:64:70:87:4a:60:7d:65:ca:d4:54:65: 93:90:3f:a0:66:6e:47:fd:d5:0a:c1:d8:97:12:6d:c4:36:21: 68:1f:b4:d1:75:46:cb:91:55:d0:87:f6:2a:62:81:f0:7a:6d: 6b:6e:a2:84:25:e4:5c:74:fb:be:7d:0c:85:eb:ef:c8:61:2b: 21:b5:5e:3d:52:68:71:31:9e:96:bd:09:68:e2:f6:90:85:19: 24:28:0b:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNTMxMTcwMDIyWhcNMjYwNjA3MTcwMDIyWjAYMRYwFAYD VQQDEw02YTFjNjkyNi1hZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0YmRSvwmlqMwg9p9RA3Vys4HvLWV4NB2i44SpO3dMGitQcubEugxeWELRgR gQg1GTuULflCLqkhkLyfhs2LKwE4sAq+lscFjCGzqvBx3EG5Bt/6w4dTL9uQn6ZA IU6e1C8aCObkk5P6yKDV7tNEAyyIKEikcBemHIoyFMLgA0OREh+/S3nAftobRc7V 5O5l0HcKdYJ3KDBxFNDbj4MqviRoOtEUS5I1l8HuhLZLOI132fv9H+bolPZuX7NH J3/1KE5ClAT2ZLSNx7BqdBznHDoKRZk5ioXjjuwx9Oz2Yc/ANEz+gb5RjGJJH0in pIgI3aIDlg1HD+g/APa6mmqgQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGi4YyOf zefc+cQZruKrcvhOsVOuMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjfRen6ZR417Dhvc5OHabY64xoYnrV6yb0AuuZ2cns5oTwCNxWVPDiFW0bR/Q Q46VZtegKiH4GByXeMkMcoYkZQNPSxfpYH05zMm413lIAbyBq6yM+bygleUfyaDO KCGgf+SAp8IR4AdnCc07pp4tfH3EKcoTrlWoVuWn8T4bhZdjowBDTNJECfnM2dt6 8By26krmtP19s1DZtcJpvMEhFnehl5Xz2aXAg2Rwh0pgfWXK1FRlk5A/oGZuR/3V CsHYlxJtxDYhaB+00XVGy5FV0If2KmKB8Hpta26ihCXkXHT7vn0MhevvyGErIbVe PVJocTGelr0JaOL2kIUZJCgLMg== -----END CERTIFICATE-----Generated at Mon Jun 1 10:02:36 2026 by rpki-client