$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 2xrYtsWaWV8IRdLK0qudaEGQCx/gr53jGC87FOX7mwY= Subject key identifier: DE:15:84:AB:74:DC:A0:CD:97:88:C5:69:E4:B5:04:6E:33:53:EA:3B Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1844 Signing time: Sat 14 Mar 2026 16:38:55 +0000 Manifest this update: Sat 14 Mar 2026 16:38:54 +0000 Manifest next update: Sat 21 Mar 2026 16:38:54 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: c0ZRxkcex9u1JrKquq8bScjZX3uZFMMxit3RfwQc/WM=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 7: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 8: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: p9ksmtHHVSYaljBwVhsvsYUa9PkpSJENVH2dxyWdYsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6791 (0x1a87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 14 16:38:54 2026 GMT Not After : Mar 21 16:38:54 2026 GMT Subject: CN=69b58f1e-aed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b0:ac:73:69:c0:02:6e:82:47:ff:e0:3f:a6: 4c:71:bb:ee:f6:42:6e:bb:2b:c1:0c:44:77:9c:eb: 87:7b:ce:7b:28:67:66:17:75:02:aa:d3:6f:10:6e: 6c:a3:a7:b8:35:5d:fd:c5:eb:e4:2c:fa:7b:02:43: 83:49:01:77:d5:ac:bb:eb:b9:67:a0:e5:c6:f6:84: e9:eb:17:90:b2:2b:4b:39:cf:5f:61:a2:5c:de:34: f5:0a:9c:f0:33:15:08:e2:8f:c6:76:4f:e5:fe:bb: d0:96:90:0d:6f:8b:ee:c4:69:55:e4:91:4f:1b:fe: f3:e0:78:30:47:6a:5d:c6:9b:22:b3:63:08:03:c9: 4d:52:8b:77:56:ec:4c:2d:1a:24:6c:e9:fd:a0:61: 16:9c:eb:60:1d:4a:84:f4:f1:61:43:c7:9e:65:4e: aa:3f:41:81:d1:eb:ff:f7:29:29:41:60:76:c3:a8: 4b:8d:48:06:25:31:b0:f9:cd:62:09:ad:1e:5c:37: aa:5f:ab:9a:ee:df:41:0d:33:f5:d9:ee:fa:86:71: 31:f3:60:51:c4:83:88:f8:ed:81:55:16:3a:ec:93: 59:39:e9:74:65:bf:4a:39:fb:1e:e0:d0:7b:bf:97: fd:97:51:fc:af:a4:fe:5e:f4:a2:9b:6a:ed:6b:55: 18:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:15:84:AB:74:DC:A0:CD:97:88:C5:69:E4:B5:04:6E:33:53:EA:3B X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:cd:37:51:61:5c:8c:c1:e2:72:1f:d7:b2:75:23:2d:94:bf: c6:63:ca:69:18:b4:24:d4:4f:e9:b0:32:37:36:bb:6e:66:53: 81:1e:e4:85:5f:c2:a9:12:8a:c7:15:ac:4d:e4:1c:85:b2:e4: 5f:9d:5a:3e:12:6e:9d:ba:0c:02:a0:0c:e8:18:74:51:67:c5: e6:cf:50:86:42:c9:73:0a:82:7e:b3:c2:36:f9:4f:be:99:af: 7c:db:e1:e9:07:33:d1:58:72:de:ac:2d:c4:f2:b9:33:93:79: 14:f7:25:c0:d6:9d:39:15:5a:2b:f1:6f:af:cf:1e:d5:4e:4f: 9e:6a:2c:40:da:e2:e8:1a:91:6f:4b:34:36:ce:3f:7b:72:9c: 46:e0:64:7f:5f:ff:43:c8:0f:ff:08:7e:69:13:46:ba:35:d0: 21:51:60:2c:85:07:4f:d9:d7:3e:91:73:e9:73:25:b9:bd:8d: a2:b2:3a:bb:a6:91:1b:2c:72:3f:53:dd:6f:14:75:ac:84:62: 2b:1e:2c:ce:78:b9:cf:fe:be:27:a5:41:0f:f9:f9:d3:16:81: 71:9a:a9:55:c6:ef:78:da:de:a7:cf:be:11:65:d5:66:2e:d9: 72:18:5d:a6:aa:2e:12:f4:f4:83:25:d4:30:89:c0:a5:ac:27: 9c:9e:84:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzE0MTYzODU0WhcNMjYwMzIxMTYzODU0WjAYMRYwFAYD VQQDEw02OWI1OGYxZS1hZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rCsc2nAAm6CR//gP6ZMcbvu9kJuuyvBDER3nOuHe857KGdmF3UCqtNvEG5s o6e4NV39xevkLPp7AkODSQF31ay767lnoOXG9oTp6xeQsitLOc9fYaJc3jT1Cpzw MxUI4o/Gdk/l/rvQlpANb4vuxGlV5JFPG/7z4HgwR2pdxpsis2MIA8lNUot3VuxM LRokbOn9oGEWnOtgHUqE9PFhQ8eeZU6qP0GB0ev/9ykpQWB2w6hLjUgGJTGw+c1i Ca0eXDeqX6ua7t9BDTP12e76hnEx82BRxIOI+O2BVRY67JNZOel0Zb9KOfse4NB7 v5f9l1H8r6T+XvSim2rta1UY7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN4VhKt0 3KDNl4jFaeS1BG4zU+o7MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJM03UWFcjMHich/XsnUjLZS/xmPKaRi0JNRP6bAyNza7bmZTgR7khV/CqRKK xxWsTeQchbLkX51aPhJunboMAqAM6Bh0UWfF5s9QhkLJcwqCfrPCNvlPvpmvfNvh 6Qcz0Vhy3qwtxPK5M5N5FPclwNadORVaK/Fvr88e1U5PnmosQNri6BqRb0s0Ns4/ e3KcRuBkf1//Q8gP/wh+aRNGujXQIVFgLIUHT9nXPpFz6XMlub2NorI6u6aRGyxy P1PdbxR1rIRiKx4szni5z/6+J6VBD/n50xaBcZqpVcbveNrep8++EWXVZi7Zchhd pqouEvT0gyXUMInApawnnJ6Ecg== -----END CERTIFICATE-----Generated at Sat Mar 14 19:39:48 2026 by rpki-client