$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 9mLGNVERbX2UJiAnYF8301M3TWhheypk9xPQcO4KiZ4= Subject key identifier: 47:E1:30:72:20:80:F5:FC:6B:D2:83:81:20:BA:3C:83:48:12:0C:5B Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1891 Signing time: Sun 28 Jun 2026 16:51:45 +0000 Manifest this update: Sun 28 Jun 2026 16:51:44 +0000 Manifest next update: Sun 05 Jul 2026 16:51:44 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: FCnm1frKBco1+Y41gOhjSh1e+gpI448jDyM90uWuxcY=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 3: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: D00F9A8643A511F1B04E115C93833773.roa (hash: QPdt4fsCL2XWpqN3V1Gtq0d4gMm1PZ100Z5/4Fr7hyA=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Jul 2026 16:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6886 (0x1ae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 28 16:51:44 2026 GMT Not After : Jul 5 16:51:44 2026 GMT Subject: CN=6a415121-bb16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:27:2f:c9:49:4d:84:c6:9a:14:9e:7d:8b:eb: 22:77:e7:e3:fe:72:d8:8e:c1:0f:bd:48:5b:54:c6: eb:13:d8:d6:b5:bc:f6:ce:7e:72:4b:2f:d9:51:2e: f4:29:0f:4d:a2:11:77:89:dd:29:46:5d:60:21:b4: a3:d4:05:58:92:23:3b:3f:2d:d5:95:a5:1b:0c:47: 79:21:dc:bb:b8:00:29:e4:ed:4d:b6:c3:3b:f1:e1: ec:b9:24:82:b4:05:e5:6e:ea:5a:9b:52:c3:6b:f9: 91:6f:0b:16:30:d2:a0:b8:60:79:af:3e:b3:3b:23: bb:40:fc:57:1c:fc:50:ca:f7:45:ea:04:bd:40:85: 69:03:f7:06:77:7e:dd:d3:8b:00:9e:74:9f:9f:40: 10:d4:e0:73:93:79:e2:b8:dc:e6:57:18:10:9e:3b: 9b:5d:fb:52:61:a9:38:dc:db:dc:93:d4:e9:39:40: d4:d5:e3:49:e2:58:f3:d1:b9:2a:5a:3a:cd:a5:48: c0:98:e8:af:5f:ce:84:c1:67:71:2f:97:d3:23:ae: 31:19:74:de:63:d4:82:06:dd:50:d8:f0:a5:53:89: 46:84:35:6c:ac:68:3a:59:b4:ac:12:02:98:d3:42: 54:49:e5:2e:98:49:a2:17:42:ea:fa:19:41:6d:6b: 6e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E1:30:72:20:80:F5:FC:6B:D2:83:81:20:BA:3C:83:48:12:0C:5B X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ce:2c:6c:cb:32:ae:e6:a0:08:45:b9:6d:f5:dc:96:d9:12: 15:f0:0a:d1:b7:7e:d6:8b:b9:b4:c7:91:80:bd:11:e0:fe:be: a7:54:29:66:53:e5:22:02:47:b1:15:01:a3:76:bd:c4:19:fc: 3d:62:5f:cb:fb:b2:87:c6:9d:50:5c:63:ab:f6:64:6a:1c:02: 6a:c5:81:46:4a:f5:8d:f3:0d:2d:91:f8:e6:34:86:34:7b:e3: 57:20:06:da:e3:e9:6e:29:66:51:e4:eb:bb:a9:40:bb:d6:77: a7:d9:b3:01:ce:ff:bd:de:dc:60:98:3d:7d:80:b3:d8:6c:ec: 50:9e:03:a0:e5:77:0a:a7:ee:ef:dc:e3:ec:55:e0:82:c3:09: 72:49:4a:24:ec:5f:66:06:67:de:dd:f1:99:a9:5a:4b:fb:1f: fc:be:1d:a1:5e:e7:9b:fb:e1:dd:21:9c:f6:06:ac:17:f9:9d: 34:d3:dd:79:a8:33:85:02:77:a6:06:70:a0:b8:25:50:e9:9b: e1:1c:b0:c6:c7:d1:3c:f3:47:32:c3:e1:b8:e0:f2:ca:53:b6: df:e9:26:3c:dc:ff:a1:ea:3f:9a:9b:44:39:a7:6f:c5:1c:08: a4:88:60:a6:5b:59:f7:d2:fd:13:5b:f4:50:f8:ff:12:93:6a: 36:43:b0:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNjI4MTY1MTQ0WhcNMjYwNzA1MTY1MTQ0WjAYMRYwFAYD VQQDEw02YTQxNTEyMS1iYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCcvyUlNhMaaFJ59i+sid+fj/nLYjsEPvUhbVMbrE9jWtbz2zn5ySy/ZUS70 KQ9NohF3id0pRl1gIbSj1AVYkiM7Py3VlaUbDEd5Idy7uAAp5O1NtsM78eHsuSSC tAXlbupam1LDa/mRbwsWMNKguGB5rz6zOyO7QPxXHPxQyvdF6gS9QIVpA/cGd37d 04sAnnSfn0AQ1OBzk3niuNzmVxgQnjubXftSYak43Nvck9TpOUDU1eNJ4ljz0bkq WjrNpUjAmOivX86EwWdxL5fTI64xGXTeY9SCBt1Q2PClU4lGhDVsrGg6WbSsEgKY 00JUSeUumEmiF0Lq+hlBbWtuhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfhMHIg gPX8a9KDgSC6PINIEgxbMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAds4sbMsyruagCEW5bfXcltkSFfAK0bd+1ou5tMeRgL0R4P6+p1QpZlPlIgJH sRUBo3a9xBn8PWJfy/uyh8adUFxjq/ZkahwCasWBRkr1jfMNLZH45jSGNHvjVyAG 2uPpbilmUeTru6lAu9Z3p9mzAc7/vd7cYJg9fYCz2GzsUJ4DoOV3Cqfu79zj7FXg gsMJcklKJOxfZgZn3t3xmalaS/sf/L4doV7nm/vh3SGc9gasF/mdNNPdeagzhQJ3 pgZwoLglUOmb4RywxsfRPPNHMsPhuODyylO23+kmPNz/oeo/mptEOadvxRwIpIhg pltZ99L9E1v0UPj/EpNqNkOwcg== -----END CERTIFICATE-----Generated at Mon Jun 29 15:27:21 2026 by rpki-client