$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: T3dW4ImRdRj/XiG+FSacknhTFSqN2eeoTffczk6Keuw= Subject key identifier: 14:53:7A:BD:49:64:B3:4E:E5:2D:AC:B4:85:DE:1F:1B:E3:1A:94:25 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 185F Signing time: Sun 26 Apr 2026 16:44:32 +0000 Manifest this update: Sun 26 Apr 2026 16:44:31 +0000 Manifest next update: Sun 03 May 2026 16:44:31 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: 626p64Mv2P+dlnYXvUG/15/S2ay/WYatGIvPRbJ+ZfE=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 6: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 7: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 8: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6820 (0x1aa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 26 16:44:31 2026 GMT Not After : May 3 16:44:31 2026 GMT Subject: CN=69ee40f0-0de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:c5:35:ab:3b:77:e0:04:63:21:f4:a5:ac:e4: 94:37:15:dd:2f:f9:71:d8:7c:58:ae:ed:0d:0d:d5: ea:9e:ee:d8:11:92:dd:40:ce:d9:ec:78:65:07:3f: 17:a6:51:1c:30:ea:ff:0d:a5:be:4e:1c:0a:5f:67: d0:68:8d:40:98:56:1a:c1:f0:d5:2f:68:92:0c:4c: 65:bc:09:96:b8:53:d8:15:bf:34:70:6f:21:1f:2e: 06:22:38:6f:a5:ac:4e:6d:da:fd:c8:db:12:d8:7b: 06:31:39:1b:4e:86:98:8e:3f:be:fb:63:77:25:ee: 8c:8d:96:48:78:60:55:ef:33:44:79:1e:6e:e9:ec: 79:b9:4a:e3:d8:23:4b:d6:08:8c:95:15:af:1b:d7: a1:05:67:41:3f:b9:9c:17:f5:70:ea:ae:b6:cd:79: ce:ce:4b:df:30:85:3a:6c:40:4c:ef:9b:21:41:ff: b9:44:69:12:83:dc:9c:2f:c8:6f:53:aa:10:10:89: 3d:a9:75:62:8f:a0:17:13:ed:b6:4b:3e:0c:3f:b6: 45:20:54:b4:87:69:62:d8:2d:c4:4e:d7:69:44:79: 54:c2:6b:95:25:e5:c4:e9:dd:94:3d:86:5f:13:b9: 7e:ed:1e:c9:c5:06:7f:c7:89:11:52:c8:7b:53:4a: 3b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:53:7A:BD:49:64:B3:4E:E5:2D:AC:B4:85:DE:1F:1B:E3:1A:94:25 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:20:6a:18:2d:ce:7b:91:fa:56:f0:c4:37:37:9e:8a:d4:9e: 14:2b:80:22:6e:e2:25:59:49:06:7d:ad:68:b6:b5:5e:99:60: e6:4c:7f:99:6f:4b:ab:2e:c7:8b:3a:32:c2:e8:6c:73:90:87: 38:95:bf:b4:e9:a7:f2:bc:20:ed:59:fe:3a:16:af:f8:ed:f3: 0c:a1:c3:55:b2:f0:87:e1:4d:e4:bb:2f:f8:c4:7a:23:90:06: a1:67:be:26:6c:e0:b0:f8:34:35:1b:f5:d0:62:10:18:4a:1c: b8:62:ab:bb:64:da:8f:6a:29:07:57:f7:7d:76:8c:80:d2:c5: e6:80:00:1f:94:6b:2a:87:99:64:ac:bd:35:03:2c:a3:6d:4b: fd:7d:e9:05:a9:32:1b:50:51:5b:48:a6:fc:d5:85:c4:76:ac: 01:26:bb:34:ed:48:68:e0:7c:25:7d:cc:4d:ca:e0:ab:56:b6: 1f:0c:25:0c:6f:07:5d:00:8f:05:49:fa:39:f0:d1:31:c1:c4: b7:c4:32:71:a6:88:5e:9c:32:67:fe:91:12:20:fb:d8:9c:55: 5b:89:90:d8:c2:67:e8:72:3e:2e:e0:bf:0a:5d:29:26:02:84: e3:a5:8f:32:1d:14:b6:17:59:8d:70:2e:69:99:4a:a5:f8:64: d4:a7:d6:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDI2MTY0NDMxWhcNMjYwNTAzMTY0NDMxWjAYMRYwFAYD VQQDEw02OWVlNDBmMC0wZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi8U1qzt34ARjIfSlrOSUNxXdL/lx2HxYru0NDdXqnu7YEZLdQM7Z7HhlBz8X plEcMOr/DaW+ThwKX2fQaI1AmFYawfDVL2iSDExlvAmWuFPYFb80cG8hHy4GIjhv paxObdr9yNsS2HsGMTkbToaYjj+++2N3Je6MjZZIeGBV7zNEeR5u6ex5uUrj2CNL 1giMlRWvG9ehBWdBP7mcF/Vw6q62zXnOzkvfMIU6bEBM75shQf+5RGkSg9ycL8hv U6oQEIk9qXVij6AXE+22Sz4MP7ZFIFS0h2li2C3ETtdpRHlUwmuVJeXE6d2UPYZf E7l+7R7JxQZ/x4kRUsh7U0o7ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBRTer1J ZLNO5S2stIXeHxvjGpQlMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuiBqGC3Oe5H6VvDENzeeitSeFCuAIm7iJVlJBn2taLa1Xplg5kx/mW9Lqy7H izoywuhsc5CHOJW/tOmn8rwg7Vn+Ohav+O3zDKHDVbLwh+FN5Lsv+MR6I5AGoWe+ JmzgsPg0NRv10GIQGEocuGKru2Taj2opB1f3fXaMgNLF5oAAH5RrKoeZZKy9NQMs o21L/X3pBakyG1BRW0im/NWFxHasASa7NO1IaOB8JX3MTcrgq1a2HwwlDG8HXQCP BUn6OfDRMcHEt8QycaaIXpwyZ/6REiD72JxVW4mQ2MJn6HI+LuC/Cl0pJgKE46WP Mh0UthdZjXAuaZlKpfhk1KfWBA== -----END CERTIFICATE-----Generated at Sun Apr 26 20:12:55 2026 by rpki-client