$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 3Qz0n3on4MEl86JGJ7R6vkRNRzaS0z4MEttaw5CHE68= Subject key identifier: E0:E8:2F:05:C1:50:09:25:6D:4C:A0:4A:83:D7:43:AE:6C:38:30:61 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1853 Signing time: Sat 04 Apr 2026 16:44:01 +0000 Manifest this update: Sat 04 Apr 2026 16:44:01 +0000 Manifest next update: Sat 11 Apr 2026 16:44:01 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: E4Y8Hl2e3br2PeM47cB6I1LHIlaegmJQNJyut9ZXSAo=) 2: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 3: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: GLdltmEd57fyynplgd0oUG1PEP5bNYkQQgxEwtWyqrk=) 8: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6807 (0x1a97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 4 16:44:01 2026 GMT Not After : Apr 11 16:44:01 2026 GMT Subject: CN=69d13fd1-110d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:60:16:09:48:ce:f7:ac:5e:7d:25:b9:00:5c: b2:c2:fe:ed:a9:56:6b:4e:41:45:7d:5e:58:92:5c: 8c:6f:32:9d:c0:af:86:84:e9:e3:06:0f:fa:00:fa: 45:7d:cb:3c:ed:c2:85:7a:78:82:08:e7:82:c5:19: ff:59:a8:ea:d4:8d:e0:fb:3c:12:4e:91:fe:63:1c: 64:3b:f0:6d:5f:8a:3a:ea:f9:fa:61:3c:69:c8:9c: 79:14:8f:83:45:7f:cc:f4:9b:fa:66:29:e8:3a:82: cd:b8:3b:f3:16:09:2e:e1:0d:0d:e0:22:5d:f3:72: 5d:35:1d:75:f8:ee:fd:ab:02:7a:3b:2f:8d:19:25: 41:41:37:55:56:88:bd:35:52:e4:77:8d:ca:6f:69: f8:e3:26:fc:36:23:04:0f:dd:3c:a3:f8:fd:e8:be: 95:62:ce:7b:be:76:3d:06:76:19:47:93:c4:19:bd: f4:07:dd:11:68:b5:97:11:e5:49:8a:48:04:0e:20: 57:63:a3:3b:73:59:a2:ef:01:20:ad:13:6b:90:5f: 96:74:df:2a:c3:57:ff:b4:87:d9:e8:b3:b9:19:47: 7f:34:aa:9f:80:38:48:cb:f5:94:fe:4e:fe:88:ef: f8:c8:e6:73:62:0b:d8:1c:04:1a:ec:29:24:da:26: 72:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E8:2F:05:C1:50:09:25:6D:4C:A0:4A:83:D7:43:AE:6C:38:30:61 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:2a:de:fd:2d:ab:b1:22:2b:9b:20:19:e6:d2:a4:76:7a:e1: 16:c2:04:e7:41:f3:d7:77:22:92:22:a7:99:84:10:4a:68:4b: cf:83:ff:3c:06:80:6b:9a:5c:4d:3c:b1:11:98:5d:51:84:15: 26:f9:cb:98:f6:94:cd:ed:5e:ca:8a:7c:77:a9:51:a1:4e:e2: f4:11:fe:56:55:72:c6:26:67:8e:c9:2d:53:5c:d9:8d:3d:61: 5f:d1:f1:97:4e:e7:02:29:d7:89:58:71:83:14:5f:14:1b:3b: b8:e5:4f:0d:7c:f9:5e:c0:03:96:17:42:ea:b2:f8:91:8f:c7: 8b:7f:cc:f3:24:bb:48:2e:d8:b2:ea:82:bb:9c:30:1e:23:4e: 09:fd:06:d1:c2:05:7c:66:c0:82:eb:85:29:1e:14:75:11:d8: f8:a9:68:05:6e:55:2d:4a:8b:6b:cc:85:a6:97:95:a6:c3:8b: ce:8e:1c:9f:8d:2c:cc:5b:e4:34:d3:5b:fc:ce:c1:15:69:3e: 18:a8:66:fa:3e:a4:6b:13:89:a7:0b:e0:20:c7:ab:64:40:a8: 82:02:5d:f5:bd:00:1d:f3:d6:27:d5:f6:aa:80:14:91:17:91: a1:fd:b8:26:7c:01:f1:f4:d8:72:42:cf:ea:19:b5:07:4d:0d: 51:f4:98:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDA0MTY0NDAxWhcNMjYwNDExMTY0NDAxWjAYMRYwFAYD VQQDEw02OWQxM2ZkMS0xMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmAWCUjO96xefSW5AFyywv7tqVZrTkFFfV5YklyMbzKdwK+GhOnjBg/6APpF fcs87cKFeniCCOeCxRn/Wajq1I3g+zwSTpH+YxxkO/BtX4o66vn6YTxpyJx5FI+D RX/M9Jv6ZinoOoLNuDvzFgku4Q0N4CJd83JdNR11+O79qwJ6Oy+NGSVBQTdVVoi9 NVLkd43Kb2n44yb8NiMED908o/j96L6VYs57vnY9BnYZR5PEGb30B90RaLWXEeVJ ikgEDiBXY6M7c1mi7wEgrRNrkF+WdN8qw1f/tIfZ6LO5GUd/NKqfgDhIy/WU/k7+ iO/4yOZzYgvYHAQa7Ckk2iZyjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODoLwXB UAklbUygSoPXQ65sODBhMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHyre/S2rsSIrmyAZ5tKkdnrhFsIE50Hz13cikiKnmYQQSmhLz4P/PAaAa5pc TTyxEZhdUYQVJvnLmPaUze1eyop8d6lRoU7i9BH+VlVyxiZnjsktU1zZjT1hX9Hx l07nAinXiVhxgxRfFBs7uOVPDXz5XsADlhdC6rL4kY/Hi3/M8yS7SC7YsuqCu5ww HiNOCf0G0cIFfGbAguuFKR4UdRHY+KloBW5VLUqLa8yFppeVpsOLzo4cn40szFvk NNNb/M7BFWk+GKhm+j6kaxOJpwvgIMerZECoggJd9b0AHfPWJ9X2qoAUkReRof24 JnwB8fTYckLP6hm1B00NUfSY1g== -----END CERTIFICATE-----Generated at Sat Apr 4 23:03:29 2026 by rpki-client