$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: /+0wAIzbyl85W5YqLSqn53qfaxIajB3orhn1BItHugU= Subject key identifier: 74:4D:27:2C:3B:BB:B3:B2:D6:68:59:2C:32:1E:F8:EE:42:50:17:CA Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1855 Signing time: Tue 07 Apr 2026 04:07:29 +0000 Manifest this update: Tue 07 Apr 2026 04:07:29 +0000 Manifest next update: Tue 14 Apr 2026 04:07:29 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: M2VsjebjuqJldVRcqooIKvoQBQ9Y20EA3CZHlgosQfg=) 2: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 4: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 5: 485D8AB4323711F1BA854B07A9833773.roa (hash: 7u8rKwYBSaBinqEvw2UyOyS4LlozXlM9TnKrdflXKXI=) 6: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 7: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6810 (0x1a9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 7 04:07:29 2026 GMT Not After : Apr 14 04:07:29 2026 GMT Subject: CN=69d48301-d22d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ea:d4:67:aa:60:08:6c:8e:07:3a:f0:33:07: 37:66:7a:66:9c:5e:7d:b8:51:39:9c:6f:bb:35:aa: 4f:ac:9f:45:6f:5c:f9:02:57:01:11:88:9a:3a:9c: f1:c9:ca:61:fe:32:10:9c:61:96:51:38:18:32:c6: 97:96:0b:c5:0d:1a:92:0c:19:d4:f4:22:e5:15:05: 18:f9:a2:41:5e:aa:ee:18:71:11:c2:59:45:e2:b5: ec:95:d6:84:d9:fb:06:ee:23:43:30:4f:5b:15:18: 05:a3:71:e1:3f:78:dc:f8:54:4d:4c:c4:64:80:5a: 26:65:5b:39:62:7a:b3:8b:af:ce:68:0b:8d:08:be: 57:41:15:c8:8c:25:90:95:7d:92:be:9e:78:fe:53: 74:d2:e4:23:86:53:6e:11:8a:25:30:ed:ef:84:d8: b6:51:e2:04:68:75:b4:d4:56:7f:99:01:df:5f:d7: 1f:f2:59:ed:6f:a6:d2:e5:35:22:c6:5c:36:5f:09: 26:b8:2c:33:c4:11:09:2b:a1:f0:d7:60:fa:15:e8: 82:5e:97:f0:e7:26:ce:89:88:4a:34:ff:f4:0c:9e: 71:7d:89:54:37:87:98:0f:fc:2b:40:0b:1b:dd:06: c8:43:7d:e3:94:3a:45:55:da:bd:e3:ac:e3:b8:72: d8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:4D:27:2C:3B:BB:B3:B2:D6:68:59:2C:32:1E:F8:EE:42:50:17:CA X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:ad:56:bf:59:79:d2:e5:09:3a:74:29:1e:4b:f5:92:5e:72: 02:f7:51:ff:68:40:f0:b8:1a:8f:4f:c3:bb:da:ef:60:91:b6: b1:63:f7:1f:af:5f:5a:0d:04:2d:fe:0d:36:e6:25:a0:57:bd: 27:77:cd:1e:60:43:90:7c:7b:1e:19:fe:f1:ef:ff:bb:a1:7b: 6e:49:32:45:36:80:73:84:e4:3d:ce:c8:e5:ca:34:b3:42:d8: d5:fa:ac:3a:84:3d:d1:6a:f5:8b:6e:9e:4c:8e:d6:b5:aa:5b: 8a:e5:2c:42:cf:c5:dd:da:be:ae:76:4c:05:9b:36:32:ea:79: 4d:b2:12:81:25:70:26:09:5c:0d:20:f1:b4:1e:9c:b7:3e:ca: 4b:88:7b:d9:b9:42:38:7e:9e:20:2f:37:ed:18:f2:ce:5a:70: 35:ab:09:05:30:1c:0a:a5:4d:4e:07:29:31:a7:ce:9f:de:62: c1:f9:76:36:78:ec:d3:13:7a:49:5f:3b:cf:44:f3:74:aa:9b: d6:8d:68:92:76:b7:27:35:f5:ec:63:1d:93:0e:ac:f3:db:1a: cc:88:42:8d:08:ee:2b:c2:26:a3:9c:08:a6:54:fc:80:e5:b4: a0:de:b2:38:64:f3:84:44:50:80:37:02:9e:d6:ff:02:7a:41: 02:3b:0f:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDA3MDQwNzI5WhcNMjYwNDE0MDQwNzI5WjAYMRYwFAYD VQQDEw02OWQ0ODMwMS1kMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OrUZ6pgCGyOBzrwMwc3ZnpmnF59uFE5nG+7NapPrJ9Fb1z5AlcBEYiaOpzx ycph/jIQnGGWUTgYMsaXlgvFDRqSDBnU9CLlFQUY+aJBXqruGHERwllF4rXsldaE 2fsG7iNDME9bFRgFo3HhP3jc+FRNTMRkgFomZVs5Ynqzi6/OaAuNCL5XQRXIjCWQ lX2Svp54/lN00uQjhlNuEYolMO3vhNi2UeIEaHW01FZ/mQHfX9cf8lntb6bS5TUi xlw2XwkmuCwzxBEJK6Hw12D6FeiCXpfw5ybOiYhKNP/0DJ5xfYlUN4eYD/wrQAsb 3QbIQ33jlDpFVdq946zjuHLYPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHRNJyw7 u7Oy1mhZLDIe+O5CUBfKMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcq1Wv1l50uUJOnQpHkv1kl5yAvdR/2hA8Lgaj0/Du9rvYJG2sWP3H69fWg0E Lf4NNuYloFe9J3fNHmBDkHx7Hhn+8e//u6F7bkkyRTaAc4TkPc7I5co0s0LY1fqs OoQ90Wr1i26eTI7WtapbiuUsQs/F3dq+rnZMBZs2Mup5TbISgSVwJglcDSDxtB6c tz7KS4h72blCOH6eIC837RjyzlpwNasJBTAcCqVNTgcpMafOn95iwfl2Nnjs0xN6 SV87z0TzdKqb1o1okna3JzX17GMdkw6s89sazIhCjQjuK8Imo5wIplT8gOW0oN6y OGTzhERQgDcCntb/AnpBAjsPzA== -----END CERTIFICATE-----Generated at Tue Apr 7 11:08:12 2026 by rpki-client