$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 2Fl9q0cMgyR6V0qBCBs/e5V3qSd2pEVPNYfOmo1Qi5M= Subject key identifier: 59:F9:F6:EA:83:A0:ED:80:4D:83:2B:7D:9D:FA:65:B5:72:64:43:83 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1852 Signing time: Thu 02 Apr 2026 16:49:22 +0000 Manifest this update: Thu 02 Apr 2026 16:49:22 +0000 Manifest next update: Thu 09 Apr 2026 16:49:22 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: nle3njYpudOv8nj+x2uRnUEvWiUKP5c7nBwT6AVbflM=) 2: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 3: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 4: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 7: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: GLdltmEd57fyynplgd0oUG1PEP5bNYkQQgxEwtWyqrk=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 Apr 2026 16:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6806 (0x1a96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Apr 2 16:49:22 2026 GMT Not After : Apr 9 16:49:22 2026 GMT Subject: CN=69ce9e12-8224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:67:d3:1b:70:d4:e9:1c:af:0d:58:8c:98:16: cb:f3:cb:db:da:4b:dd:37:4c:dc:b5:05:66:a0:4b: ef:f4:38:49:bd:a9:23:08:7f:22:31:92:35:ed:66: dc:b2:d0:0f:2b:fe:c3:f5:f4:92:b8:0b:81:ce:b3: 2b:19:a3:9d:94:7a:64:34:ad:a4:e2:02:e7:31:5d: 4a:8f:63:27:8e:5c:fb:34:88:46:d0:47:25:e6:47: cf:62:5d:0a:45:b6:2b:73:b8:ee:48:5c:1b:7b:29: 9b:4c:8b:72:b3:dc:b1:cc:7d:15:41:62:72:4e:75: dd:52:da:96:31:73:99:54:28:bf:c6:19:3e:a2:fa: 25:19:5c:32:e3:be:ac:9a:55:10:14:03:1b:4e:fc: 38:35:52:58:70:55:a6:fd:04:e8:da:f9:35:4e:7e: b7:94:8b:4d:bd:71:75:63:0f:a3:fe:25:44:a2:23: d6:7e:c1:9c:f2:08:19:2a:4d:d1:33:b9:26:a0:4f: f2:b4:5e:8e:5f:e8:60:35:0f:20:ba:40:ff:e8:12: b0:2c:95:d6:07:8a:20:ef:d1:a7:21:91:ca:42:da: d9:5f:67:81:b7:47:b7:5a:a5:7c:2b:1c:ee:da:3b: a0:f1:0a:57:4f:bd:8d:aa:2c:99:8f:ea:d0:ed:8e: fa:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F9:F6:EA:83:A0:ED:80:4D:83:2B:7D:9D:FA:65:B5:72:64:43:83 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3e:aa:a6:d7:9e:07:3b:f3:8c:8b:cd:a7:e3:d8:f8:cf:0a: 68:20:ac:45:84:bc:2a:5b:22:37:99:68:60:54:29:1a:53:4b: 86:8c:a8:5b:0c:cd:96:bb:28:25:7e:e2:5c:3e:a0:7f:4c:ca: 1c:54:de:16:cd:25:4f:37:e2:07:5e:87:ab:cf:0e:61:34:25: 3c:07:31:31:40:9b:af:b4:90:51:c6:d2:9b:a7:23:97:f5:f2: c8:3d:b0:a7:30:1f:e0:11:17:5b:6d:81:9c:1f:9d:03:9e:1b: f6:97:25:ff:0b:0d:b0:82:37:e2:3b:d5:fc:ca:c9:86:3c:dd: 57:98:83:88:3a:dc:ae:fd:16:d2:c7:da:b9:35:dc:cd:c5:6c: cf:03:e8:76:5a:49:d8:9d:10:14:1b:98:b8:9f:1d:2c:da:f2: 59:8d:00:45:b3:36:fc:bc:23:83:bc:71:16:3e:ab:e5:f0:bf: d8:55:9e:31:ec:ad:b3:7f:25:f2:d2:70:f9:f4:07:55:c5:d2: f5:e9:7c:b9:d4:dd:f9:48:43:46:3c:5f:5b:cf:1b:bc:94:64: ea:a9:fd:41:70:7f:cc:e9:0f:f7:d1:a9:5c:24:93:7a:6c:c8: 98:09:46:ab:64:47:20:43:2f:26:dc:a6:fe:a8:cf:7b:4b:b1: 71:b6:24:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwNDAyMTY0OTIyWhcNMjYwNDA5MTY0OTIyWjAYMRYwFAYD VQQDEw02OWNlOWUxMi04MjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWfTG3DU6RyvDViMmBbL88vb2kvdN0zctQVmoEvv9DhJvakjCH8iMZI17Wbc stAPK/7D9fSSuAuBzrMrGaOdlHpkNK2k4gLnMV1Kj2Mnjlz7NIhG0Ecl5kfPYl0K RbYrc7juSFwbeymbTItys9yxzH0VQWJyTnXdUtqWMXOZVCi/xhk+ovolGVwy476s mlUQFAMbTvw4NVJYcFWm/QTo2vk1Tn63lItNvXF1Yw+j/iVEoiPWfsGc8ggZKk3R M7kmoE/ytF6OX+hgNQ8gukD/6BKwLJXWB4og79GnIZHKQtrZX2eBt0e3WqV8Kxzu 2jug8QpXT72NqiyZj+rQ7Y76OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFn59uqD oO2ATYMrfZ36ZbVyZEODMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALj6qpteeBzvzjIvNp+PY+M8KaCCsRYS8KlsiN5loYFQpGlNLhoyoWwzNlrso JX7iXD6gf0zKHFTeFs0lTzfiB16Hq88OYTQlPAcxMUCbr7SQUcbSm6cjl/XyyD2w pzAf4BEXW22BnB+dA54b9pcl/wsNsII34jvV/MrJhjzdV5iDiDrcrv0W0sfauTXc zcVszwPodlpJ2J0QFBuYuJ8dLNryWY0ARbM2/Lwjg7xxFj6r5fC/2FWeMeyts38l 8tJw+fQHVcXS9el8udTd+UhDRjxfW88bvJRk6qn9QXB/zOkP99GpXCSTemzImAlG q2RHIEMvJtym/qjPe0uxcbYkEQ== -----END CERTIFICATE-----Generated at Sat Apr 4 05:06:57 2026 by rpki-client