$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: xoUplrW0Yu9Sef3R6AVAPtCnGDDiMUz8gdaHzre8kOo= Subject key identifier: D5:00:11:51:CA:D0:E6:40:08:E7:C8:D8:F1:23:EE:E2:85:9A:B2:DB Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1ABE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1878 Signing time: Mon 08 Jun 2026 16:48:45 +0000 Manifest this update: Mon 08 Jun 2026 16:48:45 +0000 Manifest next update: Mon 15 Jun 2026 16:48:45 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: 8CfbavOW/Ymjb4amGozrR6FlObDKD9eDFaX2Y3spog4=) 2: D00F9A8643A511F1B04E115C93833773.roa (hash: rionXwpXZ+/YYBbbDrBSeSCU1qvo6PxZ4O4oo+eeuvE=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 6: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 7: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 8: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Jun 2026 16:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6846 (0x1abe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 8 16:48:45 2026 GMT Not After : Jun 15 16:48:45 2026 GMT Subject: CN=6a26f26d-7143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:16:f9:7a:be:21:f0:f0:cb:44:af:19:a3:c1: 62:65:08:ea:f8:4b:d9:95:23:c1:bf:28:f4:16:b3: d3:ff:dd:8c:42:b1:c0:84:7b:27:30:87:7b:92:5a: 79:fd:14:c9:c5:b2:ec:43:9a:a4:c6:42:7f:e8:c2: 61:7e:a6:2e:96:cf:bd:f0:e0:de:f6:31:6c:23:56: 86:7f:8e:b4:52:30:a6:a8:6d:9f:30:3d:48:ab:4a: 91:b9:95:15:6c:fc:23:74:35:94:dc:bb:e8:48:47: 22:b8:33:f2:c0:6a:e2:67:d6:3d:4e:bf:59:c1:60: fe:af:1c:01:33:7b:e9:36:5b:f8:48:5e:1a:ec:34: 44:95:29:7a:db:98:e7:c3:2f:2d:6b:af:53:86:3c: 72:22:1c:8d:fc:fa:46:84:ae:4d:b1:0a:d3:70:fa: 77:1a:ac:e0:e0:f3:3b:b1:0f:ae:64:81:3b:c1:f0: 2f:b7:92:fd:5d:cb:08:fb:35:b8:a1:c0:32:64:30: 7b:03:7f:e5:ca:32:68:89:1f:bc:ec:d5:dd:25:35: 98:8d:46:84:c6:3e:13:40:a5:17:6a:ca:cc:98:88: 7b:3a:ff:92:99:f7:c6:9d:01:f6:2d:e3:02:f1:63: 4a:4c:74:3a:5a:60:44:6a:b4:15:50:b6:37:a4:e9: 9c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:11:51:CA:D0:E6:40:08:E7:C8:D8:F1:23:EE:E2:85:9A:B2:DB X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:5d:9f:12:e5:83:a1:75:0a:1e:ca:0f:c2:d9:ed:aa:8a:65: f4:04:ea:ff:da:c3:b0:3e:d3:46:60:5a:35:8b:b9:62:12:d9: d2:f2:74:4a:7a:30:e5:63:3d:e3:e2:a2:39:1c:30:4c:2f:ca: 61:ab:f5:a9:f2:23:21:f3:a8:ff:27:39:65:0a:cd:10:5e:44: e6:95:33:68:cb:14:c9:d0:e9:b6:dd:a3:db:a2:e9:7a:e6:d0: 3f:10:89:b7:3c:f9:b9:ff:77:db:af:b2:de:e2:4e:64:9d:a6: 8b:9d:b7:0f:1f:a5:ec:9f:8a:88:59:52:4f:05:5d:69:31:76: 4c:94:1d:eb:e6:57:39:ed:e6:0c:a5:07:27:75:32:06:85:3b: 8f:71:d1:6a:bf:f0:6f:f2:34:f6:90:c6:ab:a4:72:4a:cd:a5: b0:cd:eb:54:c7:84:f2:cc:18:76:5e:19:3c:a7:76:c7:1f:e1: 6d:67:d8:bb:46:5b:c5:b3:c2:1c:96:9d:08:46:ff:45:25:99: be:eb:a2:79:08:ea:04:fb:d3:46:bd:85:92:22:0a:fa:1c:c1: 49:8b:5f:f1:2c:6d:f7:1a:ca:bb:8f:aa:5d:a2:42:15:ea:25: 38:bf:7e:cb:48:62:12:cf:8a:02:1a:fa:0d:ea:cc:06:82:3d: 89:16:1d:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNjA4MTY0ODQ1WhcNMjYwNjE1MTY0ODQ1WjAYMRYwFAYD VQQDEw02YTI2ZjI2ZC03MTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hb5er4h8PDLRK8Zo8FiZQjq+EvZlSPBvyj0FrPT/92MQrHAhHsnMId7klp5 /RTJxbLsQ5qkxkJ/6MJhfqYuls+98ODe9jFsI1aGf460UjCmqG2fMD1Iq0qRuZUV bPwjdDWU3LvoSEciuDPywGriZ9Y9Tr9ZwWD+rxwBM3vpNlv4SF4a7DRElSl625jn wy8ta69ThjxyIhyN/PpGhK5NsQrTcPp3Gqzg4PM7sQ+uZIE7wfAvt5L9XcsI+zW4 ocAyZDB7A3/lyjJoiR+87NXdJTWYjUaExj4TQKUXasrMmIh7Ov+SmffGnQH2LeMC 8WNKTHQ6WmBEarQVULY3pOmcxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNUAEVHK 0OZACOfI2PEj7uKFmrLbMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMV2fEuWDoXUKHsoPwtntqopl9ATq/9rDsD7TRmBaNYu5YhLZ0vJ0Snow5WM9 4+KiORwwTC/KYav1qfIjIfOo/yc5ZQrNEF5E5pUzaMsUydDptt2j26LpeubQPxCJ tzz5uf9326+y3uJOZJ2mi523Dx+l7J+KiFlSTwVdaTF2TJQd6+ZXOe3mDKUHJ3Uy BoU7j3HRar/wb/I09pDGq6RySs2lsM3rVMeE8swYdl4ZPKd2xx/hbWfYu0ZbxbPC HJadCEb/RSWZvuuieQjqBPvTRr2FkiIK+hzBSYtf8Sxt9xrKu4+qXaJCFeolOL9+ y0hiEs+KAhr6DerMBoI9iRYdtw== -----END CERTIFICATE-----Generated at Wed Jun 10 04:46:05 2026 by rpki-client