$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: D/8YiO0jG/JqWjwPbw8YUorNMd8N0Fl1Xi00EZraRbk= Subject key identifier: 88:01:EA:0C:3B:0E:53:3D:A9:53:54:48:89:74:94:B6:34:3C:B5:50 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1856 Signing time: Wed 08 Apr 2026 16:46:04 +0000 Manifest this update: Wed 08 Apr 2026 16:46:04 +0000 Manifest next update: Wed 15 Apr 2026 16:46:04 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: pjHtzEbiaqSKrGFRgYmXCeZHenIQuG6HQfGLadXCrqQ=) 2: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 3: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 5: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 6: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 7: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 8: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 16:46:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6811 (0x1a9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 8 16:46:04 2026 GMT Not After : Apr 15 16:46:04 2026 GMT Subject: CN=69d6864c-a892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ab:00:cf:bc:ce:3e:2a:5f:31:ee:d0:91:eb: c9:b6:e6:24:b8:f2:a2:54:82:aa:00:f4:0f:f0:9c: 33:70:2c:7b:17:bb:2c:5f:35:8a:49:24:f5:99:7b: 93:83:7a:92:44:71:f0:a4:ab:41:c7:53:39:d6:91: 9e:e0:c9:eb:de:d3:84:a5:3c:2e:d1:52:05:f3:45: 81:1a:cd:e0:f2:34:55:5d:fc:11:04:ae:c5:02:86: f9:50:92:75:c3:9a:13:1c:f1:6c:30:ed:d9:68:5a: 7b:cd:8c:11:9c:d7:9f:75:d2:ab:9a:d7:fa:66:cb: 16:48:c4:d0:fc:ef:14:e7:f8:6a:d8:d6:30:26:af: 0f:83:83:b7:61:f7:ec:6e:f1:d8:8c:d6:72:79:eb: 74:c7:65:a3:d9:d1:15:b4:d4:6b:25:ac:00:1c:c3: 39:b9:5c:38:ce:b7:85:bd:f4:9a:1e:6d:2b:be:5d: aa:e4:f5:bc:65:63:73:2b:d4:3d:1d:43:68:28:47: b3:69:78:b8:2f:d4:24:7e:b5:2f:fd:c7:97:ea:a0: 65:91:2b:fb:92:f8:05:4a:37:b2:8c:d9:0a:7a:3c: 4b:01:92:80:43:63:cd:74:ed:6c:fb:7e:2f:5c:f7: 55:74:11:7c:2b:ce:15:a9:91:12:96:d1:c6:40:05: 0c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:01:EA:0C:3B:0E:53:3D:A9:53:54:48:89:74:94:B6:34:3C:B5:50 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:18:6a:97:b7:ee:fa:1d:f4:39:d8:a7:da:88:fd:ba:c4:bf: dd:8a:55:c0:4e:2e:2d:b2:4f:24:99:d3:b0:b3:81:d8:fe:9f: 64:ee:de:2e:31:8c:b7:84:5d:bd:43:47:64:80:e0:ef:3b:f5: 4b:49:bd:26:22:24:c5:21:11:9e:00:52:ae:0b:cd:b2:ee:dd: 15:60:b7:f8:ed:02:7f:58:1e:08:e0:98:a9:e1:42:25:dc:82: 6c:6d:21:7d:8e:f6:e8:a4:e6:9a:ed:8a:b8:c4:3c:c2:49:23: 06:94:13:22:0e:ca:68:94:8d:e0:a0:aa:96:e7:6a:90:cd:16: ae:c0:72:52:c8:81:e5:77:3e:f9:38:3e:b3:01:e5:2c:db:7d: 75:0b:c3:17:56:19:87:05:14:df:88:46:f0:94:72:a7:37:bb: 5b:82:b6:ed:41:fa:7b:36:df:03:e8:67:e8:fc:84:4a:c5:3b: 72:d4:1d:31:d0:15:66:e4:6e:82:79:a4:ad:79:30:d7:7d:3b: 7a:cb:69:b8:b2:9d:a0:cd:70:e4:61:f6:e5:00:f4:a1:f6:0c: ff:2b:c6:9a:15:0e:19:b4:36:26:b5:30:a1:f0:3b:ad:f8:74: 0a:d9:4d:6c:63:b0:0a:5a:9e:ed:de:f1:27:ed:fa:cc:15:f9: c1:24:34:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDA4MTY0NjA0WhcNMjYwNDE1MTY0NjA0WjAYMRYwFAYD VQQDEw02OWQ2ODY0Yy1hODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqsAz7zOPipfMe7QkevJtuYkuPKiVIKqAPQP8JwzcCx7F7ssXzWKSST1mXuT g3qSRHHwpKtBx1M51pGe4Mnr3tOEpTwu0VIF80WBGs3g8jRVXfwRBK7FAob5UJJ1 w5oTHPFsMO3ZaFp7zYwRnNefddKrmtf6ZssWSMTQ/O8U5/hq2NYwJq8Pg4O3Yffs bvHYjNZyeet0x2Wj2dEVtNRrJawAHMM5uVw4zreFvfSaHm0rvl2q5PW8ZWNzK9Q9 HUNoKEezaXi4L9QkfrUv/ceX6qBlkSv7kvgFSjeyjNkKejxLAZKAQ2PNdO1s+34v XPdVdBF8K84VqZESltHGQAUMOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIgB6gw7 DlM9qVNUSIl0lLY0PLVQMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACRhql7fu+h30Odin2oj9usS/3YpVwE4uLbJPJJnTsLOB2P6fZO7eLjGMt4Rd vUNHZIDg7zv1S0m9JiIkxSERngBSrgvNsu7dFWC3+O0Cf1geCOCYqeFCJdyCbG0h fY726KTmmu2KuMQ8wkkjBpQTIg7KaJSN4KCqludqkM0WrsByUsiB5Xc++Tg+swHl LNt9dQvDF1YZhwUU34hG8JRypze7W4K27UH6ezbfA+hn6PyESsU7ctQdMdAVZuRu gnmkrXkw1307estpuLKdoM1w5GH25QD0ofYM/yvGmhUOGbQ2JrUwofA7rfh0CtlN bGOwClqe7d7xJ+36zBX5wSQ0Gg== -----END CERTIFICATE-----Generated at Fri Apr 10 12:33:12 2026 by rpki-client