$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: Tpy7lL0rEdgRpmWzirm5DZapmWflW5FW15rez6YM+5A= Subject key identifier: AE:6E:ED:B7:00:98:A7:36:6A:49:85:06:2D:66:75:77:D2:B5:B2:92 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1863 Signing time: Thu 30 Apr 2026 16:51:11 +0000 Manifest this update: Thu 30 Apr 2026 16:51:10 +0000 Manifest next update: Thu 07 May 2026 16:51:10 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: o2lgI/0UpTpEkdsUFuL/WvuT1T3PexdhKmwyV4RmmUg=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 5: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 8: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 16:51:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6825 (0x1aa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 30 16:51:10 2026 GMT Not After : May 7 16:51:10 2026 GMT Subject: CN=69f3887f-a047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:b0:fb:57:c1:da:4b:cf:27:98:29:e6:73: 72:13:62:ec:3a:62:71:ed:d5:c1:cc:98:e1:ca:bf: ca:6a:fa:d1:0f:fd:8b:37:b2:ed:a5:bf:e6:d0:f4: 96:c8:fc:20:09:af:af:ce:3b:14:c4:7f:a1:33:ad: 71:2e:b8:b4:e2:9e:ad:5c:fa:53:00:32:fb:0f:21: 71:e0:63:2e:5c:ff:57:5f:17:c6:ba:a0:89:cd:c6: 8c:ab:e1:5c:46:83:f8:54:65:33:55:4e:3f:0e:3c: bc:8f:2d:02:fa:58:db:6a:94:e1:e4:7b:7d:aa:9b: ab:36:cd:cc:bd:eb:c3:28:12:45:42:da:ac:70:33: cb:81:30:76:f8:09:bc:88:10:09:0d:40:6d:62:88: de:55:3a:f8:84:46:a9:88:27:b5:6f:31:da:59:b9: df:15:25:b8:d7:e8:02:ef:4d:6c:aa:3d:1e:96:58: d4:44:bc:3d:92:72:ff:06:3f:fd:82:c5:15:56:07: 90:fa:8b:06:ee:5d:6b:7b:9d:f4:95:32:0b:c6:e4: 12:ab:d0:75:e6:30:2b:0f:b1:94:59:84:95:44:ed: 3d:06:cd:6d:d6:29:5e:15:0e:32:ab:05:7d:ab:77: 8c:ba:58:ff:6e:1b:f3:3d:35:a5:fb:d6:1d:ac:17: 19:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6E:ED:B7:00:98:A7:36:6A:49:85:06:2D:66:75:77:D2:B5:B2:92 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:5f:e7:a9:f6:5f:9b:69:95:71:8f:97:ca:e1:2d:77:54:01: 64:7b:3d:1a:2b:7c:47:d9:2a:dc:34:ef:cb:8a:3c:af:a6:7d: a7:67:e2:b9:27:0c:bd:54:e6:6f:ad:80:fa:3b:35:7e:0e:0f: bf:e2:1f:76:41:19:d4:c3:e7:e8:4a:d2:a6:c4:a2:5e:c2:13: 21:c1:98:5b:90:7f:22:fe:38:a2:59:bb:91:c7:7e:fb:83:a2: 0d:08:7f:49:8d:5d:ef:3e:9e:20:d3:8a:f8:63:df:4b:82:da: 40:29:00:6e:cd:10:9f:15:53:63:29:da:c2:09:4f:7c:9e:84: 1d:a6:ab:c0:9b:ec:07:41:b2:81:90:5d:80:ff:94:5c:c9:65: da:97:76:ae:63:48:1c:e8:69:3f:e4:0c:06:9a:91:7c:6a:09: c1:08:03:56:e1:8a:28:5f:19:28:2c:66:0a:80:d3:8e:8d:40: fd:76:29:8d:77:46:a9:e4:cd:ee:1c:d6:0f:02:ac:d4:b8:96: 38:b1:67:08:59:73:b7:8f:18:26:d0:15:a5:f6:3c:a6:07:ad: 97:5d:56:9f:91:26:1d:73:8b:a3:89:da:33:7a:86:5c:f0:72: 20:e3:90:72:d9:4a:b2:54:50:64:c7:e2:8a:59:f7:b9:a7:59: 5a:04:eb:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDMwMTY1MTEwWhcNMjYwNTA3MTY1MTEwWjAYMRYwFAYD VQQDEw02OWYzODg3Zi1hMDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhKw+1fB2kvPJ5gp5nNyE2LsOmJx7dXBzJjhyr/KavrRD/2LN7Ltpb/m0PSW yPwgCa+vzjsUxH+hM61xLri04p6tXPpTADL7DyFx4GMuXP9XXxfGuqCJzcaMq+Fc RoP4VGUzVU4/Djy8jy0C+ljbapTh5Ht9qpurNs3MvevDKBJFQtqscDPLgTB2+Am8 iBAJDUBtYojeVTr4hEapiCe1bzHaWbnfFSW41+gC701sqj0elljURLw9knL/Bj/9 gsUVVgeQ+osG7l1re530lTILxuQSq9B15jArD7GUWYSVRO09Bs1t1ileFQ4yqwV9 q3eMulj/bhvzPTWl+9YdrBcZ2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK5u7bcA mKc2akmFBi1mdXfStbKSMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKF/nqfZfm2mVcY+XyuEtd1QBZHs9Git8R9kq3DTvy4o8r6Z9p2fiuScMvVTm b62A+js1fg4Pv+IfdkEZ1MPn6ErSpsSiXsITIcGYW5B/Iv44olm7kcd++4OiDQh/ SY1d7z6eINOK+GPfS4LaQCkAbs0QnxVTYynawglPfJ6EHaarwJvsB0GygZBdgP+U XMll2pd2rmNIHOhpP+QMBpqRfGoJwQgDVuGKKF8ZKCxmCoDTjo1A/XYpjXdGqeTN 7hzWDwKs1LiWOLFnCFlzt48YJtAVpfY8pgetl11Wn5EmHXOLo4naM3qGXPByIOOQ ctlKslRQZMfiiln3uadZWgTrvg== -----END CERTIFICATE-----Generated at Fri May 1 00:58:45 2026 by rpki-client