$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: WJ6goPZQuLZ/6vkT8CPwnETW0uMc/Z6f5OxbpUBuHSQ= Subject key identifier: 47:F6:35:56:E7:D8:70:0D:CF:3D:53:AC:7B:73:BD:45:C3:17:34:DF Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: AB Signing time: Wed 13 May 2026 07:20:52 +0000 Manifest this update: Wed 13 May 2026 07:20:51 +0000 Manifest next update: Wed 20 May 2026 07:20:51 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: diJV5i72AebVOTsTw6mWCXvciVr9YbsVPC60LOVT1/I=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: May 13 07:20:51 2026 GMT Not After : May 20 07:20:51 2026 GMT Subject: CN=6a042653-b7ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:2e:64:96:a0:fa:ed:4a:a6:ec:cd:40:cf: e5:23:6c:ef:8f:e0:8e:09:bd:4a:5f:0a:8e:a3:61: f0:36:c7:61:cd:16:bc:8b:78:e4:98:c7:4e:d1:d9: ed:bc:36:27:2c:20:c1:a1:b8:01:e8:47:db:f4:2e: 01:8a:50:4e:6d:b2:24:8f:f9:ad:a3:0e:d2:b0:c6: 04:60:65:5c:72:2b:27:dc:7a:76:22:f6:59:ba:7f: ac:58:e3:ad:66:2c:8f:4d:0d:4e:d9:17:38:54:4c: bb:c9:35:d0:15:92:70:a2:aa:b2:26:15:22:e0:90: 26:80:61:d7:68:29:dd:ad:36:e2:7a:13:7d:98:7f: 1c:60:15:94:a9:69:16:ca:cb:b1:08:eb:60:5a:e6: 49:55:51:e2:b3:18:8a:60:b7:25:69:94:21:c5:32: 50:1c:92:2d:f5:19:a5:46:aa:1c:3b:70:2a:1e:db: 19:db:b7:ae:b3:f7:ed:ed:57:bd:e3:d1:11:f3:74: 92:42:66:d5:ff:0c:92:e3:c5:26:c5:33:3a:97:84: 8a:a7:92:49:3a:a6:4e:06:4e:b8:6a:60:77:53:a6: 36:8c:42:fd:6a:2b:a9:39:d0:a1:64:fe:e9:aa:8b: 6c:39:68:c7:61:fd:bb:b4:ea:90:88:55:ea:a7:90: 7a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F6:35:56:E7:D8:70:0D:CF:3D:53:AC:7B:73:BD:45:C3:17:34:DF X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:00:b2:5b:b1:94:0c:21:40:b3:20:6c:fc:4e:e7:fc:0a:dd: 8d:b7:5a:f5:54:06:d3:52:ca:88:96:56:96:35:79:d4:d2:15: 24:67:5b:34:9b:4c:6e:39:c2:78:a3:f3:ec:e5:ac:60:28:72: 80:8a:be:94:70:b5:9a:16:90:ab:e3:26:70:03:d9:ab:03:e4: 56:7d:8d:be:5a:c8:98:df:a8:e7:19:01:e8:7d:5a:28:77:30: 43:0c:a6:eb:69:4b:a7:ce:7f:aa:64:39:3f:98:1a:07:7b:c9: cd:37:7a:9c:9d:f5:9d:10:b4:50:9e:99:83:42:0c:da:4b:3b: b1:ee:43:d2:ce:84:b9:b5:dd:a1:cf:12:cd:35:2b:cd:f2:f7: 7e:8c:1e:dc:9c:f5:5a:8c:26:32:2a:01:1f:eb:f7:54:f9:7a: 95:e3:57:8d:50:c5:da:12:00:f3:f1:87:85:14:f9:e9:54:42: 15:49:d4:aa:5a:9f:c1:f4:e0:4a:36:d6:cb:5c:0e:39:b0:9b: 48:de:e0:ab:c0:c4:ce:fc:91:34:bf:e6:e9:6a:e8:6b:ed:49: d6:63:c3:99:29:d3:10:c9:95:b5:25:20:ed:c1:0c:81:dd:59: 09:2a:2a:14:da:4b:a7:ab:c8:b4:db:8d:91:fe:81:b8:86:c3: 03:24:e4:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwNTEzMDcyMDUxWhcNMjYwNTIwMDcyMDUxWjAYMRYwFAYD VQQDEw02YTA0MjY1My1iN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQwuZJag+u1KpuzNQM/lI2zvj+COCb1KXwqOo2HwNsdhzRa8i3jkmMdO0dnt vDYnLCDBobgB6Efb9C4BilBObbIkj/mtow7SsMYEYGVccisn3Hp2IvZZun+sWOOt ZiyPTQ1O2Rc4VEy7yTXQFZJwoqqyJhUi4JAmgGHXaCndrTbiehN9mH8cYBWUqWkW ysuxCOtgWuZJVVHisxiKYLclaZQhxTJQHJIt9RmlRqocO3AqHtsZ27eus/ft7Ve9 49ER83SSQmbV/wyS48UmxTM6l4SKp5JJOqZOBk64amB3U6Y2jEL9aiupOdChZP7p qotsOWjHYf27tOqQiFXqp5B6xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEf2NVbn 2HANzz1TrHtzvUXDFzTfMB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMwCyW7GUDCFAsyBs/E7n/Ardjbda9VQG01LKiJZWljV51NIVJGdbNJtMbjnC eKPz7OWsYChygIq+lHC1mhaQq+MmcAPZqwPkVn2NvlrImN+o5xkB6H1aKHcwQwym 62lLp85/qmQ5P5gaB3vJzTd6nJ31nRC0UJ6Zg0IM2ks7se5D0s6EubXdoc8SzTUr zfL3fowe3Jz1WowmMioBH+v3VPl6leNXjVDF2hIA8/GHhRT56VRCFUnUqlqfwfTg SjbWy1wOObCbSN7gq8DEzvyRNL/m6Wroa+1J1mPDmSnTEMmVtSUg7cEMgd1ZCSoq FNpLp6vItNuNkf6BuIbDAyTkRA== -----END CERTIFICATE-----Generated at Wed May 13 14:41:40 2026 by rpki-client