$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: h6vwyTNxvw+kZbYATY/saWO9neutmTAomllDfqYz1N4= Subject key identifier: 12:B2:0C:61:82:8C:0A:B0:94:AF:6B:33:59:72:4F:98:A3:33:90:73 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1AA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 185B Signing time: Sat 18 Apr 2026 16:44:43 +0000 Manifest this update: Sat 18 Apr 2026 16:44:42 +0000 Manifest next update: Sat 25 Apr 2026 16:44:42 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: U4NeyASd8a62qIQ7lBuzZY8RV+4ym10N4kyo7X/dFns=) 2: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 5: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 6: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 7: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 8: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 16:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6816 (0x1aa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 18 16:44:42 2026 GMT Not After : Apr 25 16:44:42 2026 GMT Subject: CN=69e3b4fb-13b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:48:ae:32:e3:e4:5f:4c:b7:10:2f:98:02:87: 23:aa:60:96:31:fa:6f:08:9d:9d:ac:96:4c:04:4b: c4:ae:b6:e9:c7:a3:71:5c:08:42:33:83:c7:77:10: 03:6c:28:bf:1a:bd:b2:9d:06:f2:8d:b8:a6:f7:a6: 45:5f:ec:21:f0:82:4c:bb:9f:37:55:ea:b0:b9:55: 72:1c:9a:af:c3:83:03:e5:df:f0:0f:7b:d2:88:ab: 92:22:1f:4b:8c:da:bf:a0:e3:e6:58:da:62:24:41: 6f:16:bb:6f:39:01:0d:a6:c2:9c:5e:2d:b3:cb:0d: 12:dc:f9:17:be:fe:62:b2:d3:2a:4b:2d:2e:9f:58: 52:97:4a:47:d9:9e:9e:53:2d:ad:87:2a:9f:5a:11: 71:be:e2:c1:1d:93:4d:a9:07:c4:ca:0e:17:d7:ff: 51:82:98:d2:72:f9:8d:a5:f0:31:bc:9d:7d:af:44: de:e1:9c:bd:00:05:a0:8b:70:53:f9:23:6b:17:04: 9c:31:9b:70:b8:fc:42:d2:83:a7:4f:f2:47:aa:e5: 54:45:09:e0:de:65:d7:da:83:31:e5:d0:32:f7:00: 7d:b8:a5:16:12:08:c3:58:05:b0:b9:1c:c5:c0:b6: 82:3c:ce:cd:f8:02:87:7f:dc:d9:c9:a1:8e:49:d0: 76:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B2:0C:61:82:8C:0A:B0:94:AF:6B:33:59:72:4F:98:A3:33:90:73 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:66:62:4b:05:61:f4:0c:15:65:ca:40:21:48:49:9d:de:14: 73:49:c4:76:ce:f3:27:7d:e8:b2:72:45:bd:12:29:bd:08:4e: 2f:b2:6f:17:b3:75:a9:06:38:2d:3b:5f:57:8f:24:42:69:b2: 92:19:fc:58:b1:8b:c7:8f:37:2d:11:29:29:14:be:6a:44:d8: 1d:c9:af:ea:4c:70:fe:d6:f7:de:ee:4d:35:98:83:f8:ee:cc: 2a:0b:07:9d:13:c9:e8:4f:2b:dd:88:61:9c:96:89:78:dc:a3: ba:ec:5d:38:9d:c3:d3:58:78:f2:0e:4d:3a:b1:19:d8:48:c9: f0:e6:3a:02:0e:9d:8c:a4:48:35:b4:21:03:65:b1:1e:f0:23: d3:4d:05:23:84:dc:96:c5:1b:74:a4:23:57:07:32:6c:06:6f: 88:64:fb:f3:ab:f6:d0:cd:6c:00:00:1f:e0:2a:b9:62:59:58: 77:1d:b8:94:b5:5f:2c:54:96:6d:03:53:cb:3a:51:8b:fb:24: b7:99:33:fa:67:b1:76:f7:6d:2c:4f:5a:3d:20:6f:2b:0d:2b: 8f:6c:d9:b5:31:15:54:52:ba:11:5e:7e:68:d7:28:b4:c7:8f: c6:6f:c9:c6:34:88:cc:74:7c:df:9a:5b:6e:e9:fc:6f:21:19: bc:52:aa:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDE4MTY0NDQyWhcNMjYwNDI1MTY0NDQyWjAYMRYwFAYD VQQDEw02OWUzYjRmYi0xM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkiuMuPkX0y3EC+YAocjqmCWMfpvCJ2drJZMBEvErrbpx6NxXAhCM4PHdxAD bCi/Gr2ynQbyjbim96ZFX+wh8IJMu583VeqwuVVyHJqvw4MD5d/wD3vSiKuSIh9L jNq/oOPmWNpiJEFvFrtvOQENpsKcXi2zyw0S3PkXvv5istMqSy0un1hSl0pH2Z6e Uy2thyqfWhFxvuLBHZNNqQfEyg4X1/9RgpjScvmNpfAxvJ19r0Te4Zy9AAWgi3BT +SNrFwScMZtwuPxC0oOnT/JHquVURQng3mXX2oMx5dAy9wB9uKUWEgjDWAWwuRzF wLaCPM7N+AKHf9zZyaGOSdB2CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBKyDGGC jAqwlK9rM1lyT5ijM5BzMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3GZiSwVh9AwVZcpAIUhJnd4Uc0nEds7zJ33osnJFvRIpvQhOL7JvF7N1qQY4 LTtfV48kQmmykhn8WLGLx483LREpKRS+akTYHcmv6kxw/tb33u5NNZiD+O7MKgsH nRPJ6E8r3YhhnJaJeNyjuuxdOJ3D01h48g5NOrEZ2EjJ8OY6Ag6djKRINbQhA2Wx HvAj000FI4TclsUbdKQjVwcybAZviGT786v20M1sAAAf4Cq5YllYdx24lLVfLFSW bQNTyzpRi/skt5kz+mexdvdtLE9aPSBvKw0rj2zZtTEVVFK6EV5+aNcotMePxm/J xjSIzHR835pbbun8byEZvFKqNQ== -----END CERTIFICATE-----Generated at Mon Apr 20 03:48:38 2026 by rpki-client