$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: et9Y1YqYvbIW5ebl9gSWqiFmo6iLizv4/xT4ZwxObvU= Subject key identifier: 00:9F:9D:DD:17:72:7B:36:5A:8F:4A:7D:5F:8F:FF:89:6A:F4:4E:3B Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 184F Signing time: Mon 30 Mar 2026 04:21:11 +0000 Manifest this update: Mon 30 Mar 2026 04:21:10 +0000 Manifest next update: Mon 06 Apr 2026 04:21:10 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: qPY8uqPkxMaOR4QxemVOMez8Nf8RBSpny2JodQBRYhM=) 2: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=) 3: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=) 5: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=) 6: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=) 7: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=) 8: 11E8BC20FFE611F0A90394AA756F56BC.roa (hash: GLdltmEd57fyynplgd0oUG1PEP5bNYkQQgxEwtWyqrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6803 (0x1a93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Mar 30 04:21:10 2026 GMT Not After : Apr 6 04:21:10 2026 GMT Subject: CN=69c9fa37-b6dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:89:7b:18:78:bd:91:61:53:b8:0d:8d:7b:6b: 1e:61:93:ef:cc:8b:2d:36:8f:79:d6:b1:90:53:4d: 7a:ab:49:19:5c:37:0e:d5:ad:9e:90:ea:41:2e:c9: f7:fe:3e:9f:9d:2d:3a:57:e1:17:27:34:b2:3a:78: 28:e0:46:ad:82:9f:78:fc:b9:5f:ec:d7:5a:54:60: e3:90:2c:e9:02:1e:8f:d3:af:95:ae:a1:63:50:f1: 20:05:79:aa:27:65:7c:f0:47:2a:8a:84:d8:fd:24: 94:30:ea:1e:1c:fa:6d:d4:1a:3b:6c:ef:92:06:67: 26:be:ae:73:5e:4c:80:77:73:91:45:82:a8:0b:ef: 66:95:01:45:c5:ae:ee:43:d6:ae:7b:0d:e1:12:e8: 91:d6:63:23:e1:af:22:b7:c4:71:e7:92:b0:47:8d: f1:9d:45:31:ac:13:82:02:82:ea:ba:39:df:c8:da: 1b:08:1b:96:c5:15:5f:62:b6:a9:1b:c7:2e:f7:e5: c1:58:55:18:29:66:ea:25:b6:30:ef:77:7f:c6:e7: 40:a3:2a:7e:fb:4a:11:c5:59:f5:8f:78:53:4d:fb: d9:80:03:9c:43:cd:7f:a0:81:40:4d:61:fe:4e:39: 8f:0c:bc:c9:e6:db:bc:6e:5d:07:7c:cb:db:e3:81: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:9F:9D:DD:17:72:7B:36:5A:8F:4A:7D:5F:8F:FF:89:6A:F4:4E:3B X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:13:11:46:ab:ec:8a:9f:c9:2f:7a:7f:aa:33:3f:0e:49:8b: 48:9f:6e:03:80:c4:12:2b:17:0c:74:f1:c1:a6:50:75:ab:b3: d3:eb:6f:5e:0f:87:48:7f:8a:e4:9c:4b:43:a6:d4:26:cc:ea: 4d:9b:1e:a6:53:83:f0:48:af:b8:05:9d:67:46:79:16:a4:bd: 33:00:c6:22:91:73:bf:65:5f:79:94:72:e3:45:f7:37:2e:1a: d2:99:45:6c:ff:4d:e8:82:f2:60:31:67:8d:8f:08:a3:37:c0: 12:7e:a7:9e:7d:3f:04:74:21:94:0c:1d:90:31:98:9b:89:cd: 0d:a2:71:30:01:ca:b3:2c:25:a3:7f:8b:d1:51:9c:61:4a:e5: f2:2d:06:ba:b1:da:aa:a4:09:d9:a3:5d:6b:6c:a2:2a:88:69: ba:aa:66:6b:c8:97:af:43:1b:cc:e8:2f:a5:59:2d:5c:e4:72: d9:12:a4:22:49:b8:90:94:61:43:28:81:b4:23:20:6f:d4:0d: d7:41:18:40:c8:11:11:b7:a3:c8:23:9e:b1:f0:2b:99:fe:a5: f1:df:c6:b9:04:60:5e:d5:4b:77:5c:9e:26:fd:33:ce:25:77: e3:84:9c:90:70:79:64:8d:de:39:fa:bd:78:ef:c8:f1:8c:40: 38:a6:cb:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjYwMzMwMDQyMTEwWhcNMjYwNDA2MDQyMTEwWjAYMRYwFAYD VQQDEw02OWM5ZmEzNy1iNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqol7GHi9kWFTuA2Ne2seYZPvzIstNo951rGQU016q0kZXDcO1a2ekOpBLsn3 /j6fnS06V+EXJzSyOngo4Eatgp94/Llf7NdaVGDjkCzpAh6P06+VrqFjUPEgBXmq J2V88EcqioTY/SSUMOoeHPpt1Bo7bO+SBmcmvq5zXkyAd3ORRYKoC+9mlQFFxa7u Q9auew3hEuiR1mMj4a8it8Rx55KwR43xnUUxrBOCAoLqujnfyNobCBuWxRVfYrap G8cu9+XBWFUYKWbqJbYw73d/xudAoyp++0oRxVn1j3hTTfvZgAOcQ81/oIFATWH+ TjmPDLzJ5tu8bl0HfMvb44GmlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFACfnd0X cns2Wo9KfV+P/4lq9E47MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVBMRRqvsip/JL3p/qjM/DkmLSJ9uA4DEEisXDHTxwaZQdauz0+tvXg+HSH+K 5JxLQ6bUJszqTZseplOD8EivuAWdZ0Z5FqS9MwDGIpFzv2VfeZRy40X3Ny4a0plF bP9N6ILyYDFnjY8IozfAEn6nnn0/BHQhlAwdkDGYm4nNDaJxMAHKsywlo3+L0VGc YUrl8i0GurHaqqQJ2aNda2yiKohpuqpma8iXr0MbzOgvpVktXORy2RKkIkm4kJRh QyiBtCMgb9QN10EYQMgREbejyCOesfArmf6l8d/GuQRgXtVLd1yeJv0zziV344Sc kHB5ZI3eOfq9eO/I8YxAOKbLeA== -----END CERTIFICATE-----Generated at Mon Mar 30 06:40:25 2026 by rpki-client