$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: DdvWe5SeKFxOY6XVUOzEEUFs2b3cVrd2Ei4hjt0z+Sc= Subject key identifier: EB:E6:AA:0B:B2:E2:D6:9B:28:09:F1:51:C7:8E:F3:7F:02:E5:96:6E Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3604 Signing time: Thu 16 Apr 2026 14:29:18 +0000 Manifest this update: Thu 16 Apr 2026 14:29:17 +0000 Manifest next update: Thu 23 Apr 2026 14:29:17 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: lSd7UAulXKYv4nbKMxx2vo5qCzuhY85RdPU8tHvDV1g=) 2: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: 2Lzx/G2fSpGrGjExrZZ3r9OFOxUEm3cHovV2rhteE/0=) 3: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: E8tgGZnAJ0DYVToULPFkfN33B2nidUXrmWqnz+uCtOk=) 4: 0C51883C12E711F183ACC54E0D3D8C67.roa (hash: 3LThCkSD3CixkviqNHz0V+phveOJEdStCjidpGP40/s=) 5: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: IQ74hXKfS9sBj5pIuOgIRXKGZQu6lWL3dFvrJ3NA2Fw=) 6: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: mwJTu9ubLJ5CecmwYFCQ6y7GrlQ3uGcRqvbvaSw7Luw=) 7: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: RV3R+8uCKWnB9ll+ltJkxV+x3kpjR9QPpPUyngdFPaM=) 8: 0FCEE1C4F76411F08B4529B5436F56BC.roa (hash: YJpZIEy71VmJgEyYXAc8PneApk2Fcyu1z7/EBcc0Dg8=) 9: EB56BC4E332311F1AE890F3EB7833773.roa (hash: KqYOqvSsGfe9/YuOAMOQ7xZCaedOl3C9H94v5PQH6VA=) 10: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: YKihQA85OZGMIoxiktXscM0JZAAS7N+DfWFx0LMvOUU=) 11: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: 9irr6mRRCa6Oo6K8I9PdRq3pgeAMalaJw+pxtHcISBU=) 12: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: zxbZTAwiDX/b2GO6W1+ev4fZzno5bblpI3qcle69OTA=) 13: 4DC27210558111EF880A8679C4F9AE02.roa (hash: CxrN5BIIQrkUc76Mjxuam5mtgMFBui6ZyXEwqKxcF3s=) 14: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: j7NSyaGCsiCQNnmyTpDrtH8dk6MerGuTvymGLl12qTI=) 15: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: yyOi/VAw5sRVCQX5TpgvFtNkRFTz06wlp/omi2nfwPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14103 (0x3717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Apr 16 14:29:17 2026 GMT Not After : Apr 23 14:29:17 2026 GMT Subject: CN=69e0f23e-9eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:66:34:b3:23:5b:12:20:1b:3e:92:6e:5f:86: cd:4b:47:c5:c9:07:b7:45:50:61:da:32:5a:26:fd: 5f:75:b6:70:35:11:36:ce:54:df:f1:13:45:15:af: 5f:b8:c9:f4:cb:1b:9f:57:82:cf:4d:62:56:14:1a: 82:9b:33:8c:b0:12:c7:26:6e:33:96:85:13:2d:5b: 5c:f9:cb:e1:9d:f2:21:82:05:c4:40:de:69:b7:0f: 84:04:99:a6:5e:d7:23:ca:4e:48:c8:8d:78:42:5a: c2:fe:48:5e:79:01:92:c8:1f:f7:b2:09:13:ac:89: 7b:eb:f3:17:32:6d:0e:a8:6a:87:94:51:91:e8:cb: 69:5e:99:7b:9a:d9:ec:13:37:58:b4:de:08:09:76: 6c:b3:ab:e9:60:fc:71:a0:63:f9:f4:b8:31:9f:dd: 4a:d0:64:d5:b6:74:4a:af:62:07:3b:d6:bf:ad:db: 62:a8:e2:0d:ff:24:6a:af:f6:b5:eb:ac:cf:92:9c: 32:2e:7b:49:9b:52:ef:58:cf:a2:1c:dd:fb:5b:24: 79:50:e5:37:18:cb:c4:9a:17:bf:da:c1:b3:ac:fe: 5b:9c:71:05:1b:a5:2b:45:d8:1a:5f:80:7f:f2:9d: e8:70:57:94:c7:62:f4:53:a5:c4:6f:2b:7e:09:11: fe:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E6:AA:0B:B2:E2:D6:9B:28:09:F1:51:C7:8E:F3:7F:02:E5:96:6E X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ff:36:4e:c5:65:28:ee:6d:d2:8d:84:2a:60:dd:e5:42:fa: bd:27:dd:8b:d7:9e:81:91:75:30:34:19:8f:bd:98:73:3a:f2: 1d:d6:89:d8:01:b0:33:66:82:8f:00:df:4f:94:42:86:42:4d: 4b:55:d9:15:6a:53:a2:36:87:c2:af:e2:bf:28:43:bb:04:ab: c9:21:3d:d8:c5:8a:c1:4f:b7:6d:5f:18:9c:65:db:e2:d0:f2: e9:5e:57:b5:d2:7d:94:59:ed:e8:26:09:55:d2:6a:63:c6:a1: d8:9d:5b:94:86:af:2f:d5:63:b2:59:75:c2:3e:d5:40:6d:a6: 6c:f9:e2:83:0c:8b:e3:71:86:36:fa:f4:e6:b3:6f:e7:99:12: 64:02:01:8a:ac:2a:40:ab:db:3e:1f:5f:39:75:2b:5a:27:32: 00:6f:20:18:d5:f6:a3:1e:fc:3e:5f:9f:3b:ae:6c:1f:68:70: 3c:d6:6e:b2:f9:61:b3:5e:3b:dd:18:a9:7e:80:c4:81:ae:14: ea:a8:75:be:ca:c4:41:95:a1:72:66:7f:2d:5d:4a:1a:b5:8e: 90:a0:8e:d1:9e:99:c0:7b:b2:ee:56:40:56:ee:5b:6f:30:d4: 0d:c5:c1:d6:5a:c3:8c:c6:3f:23:3e:0c:a9:e2:74:5a:43:16: 90:53:eb:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjYwNDE2MTQyOTE3WhcNMjYwNDIzMTQyOTE3WjAYMRYwFAYD VQQDEw02OWUwZjIzZS05ZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWY0syNbEiAbPpJuX4bNS0fFyQe3RVBh2jJaJv1fdbZwNRE2zlTf8RNFFa9f uMn0yxufV4LPTWJWFBqCmzOMsBLHJm4zloUTLVtc+cvhnfIhggXEQN5ptw+EBJmm Xtcjyk5IyI14QlrC/kheeQGSyB/3sgkTrIl76/MXMm0OqGqHlFGR6MtpXpl7mtns EzdYtN4ICXZss6vpYPxxoGP59Lgxn91K0GTVtnRKr2IHO9a/rdtiqOIN/yRqr/a1 66zPkpwyLntJm1LvWM+iHN37WyR5UOU3GMvEmhe/2sGzrP5bnHEFG6UrRdgaX4B/ 8p3ocFeUx2L0U6XEbyt+CRH+SQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvmqguy 4tabKAnxUceO838C5ZZuMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS/82TsVlKO5t0o2EKmDd5UL6vSfdi9eegZF1MDQZj72YczryHdaJ2AGwM2aC jwDfT5RChkJNS1XZFWpTojaHwq/ivyhDuwSrySE92MWKwU+3bV8YnGXb4tDy6V5X tdJ9lFnt6CYJVdJqY8ah2J1blIavL9Vjsll1wj7VQG2mbPnigwyL43GGNvr05rNv 55kSZAIBiqwqQKvbPh9fOXUrWicyAG8gGNX2ox78Pl+fO65sH2hwPNZusvlhs147 3RipfoDEga4U6qh1vsrEQZWhcmZ/LV1KGrWOkKCO0Z6ZwHuy7lZAVu5bbzDUDcXB 1lrDjMY/Iz4MqeJ0WkMWkFPr0w== -----END CERTIFICATE-----Generated at Fri Apr 17 15:53:37 2026 by rpki-client