$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: 6usXRBYK06CjVKytZDed9981lC+i8dX3Bi8L0QXIKWU= Subject key identifier: AF:F5:02:76:5F:DD:96:C4:9D:5B:6C:60:46:8B:CD:36:11:21:6B:07 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 92 Signing time: Wed 25 Mar 2026 06:44:04 +0000 Manifest this update: Wed 25 Mar 2026 06:44:03 +0000 Manifest next update: Wed 01 Apr 2026 06:44:03 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: J57tq4P5eukyYyFRn6DKucvXM8qHDgBuYQMaPz5DwQk=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Mar 25 06:44:03 2026 GMT Not After : Apr 1 06:44:03 2026 GMT Subject: CN=69c38434-66a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4b:a7:a3:e7:d4:ad:61:ec:5c:60:a3:89:8a: 70:99:f1:fc:3d:bd:15:7f:31:d6:dc:c1:74:50:80: 70:0b:ad:f6:16:1f:f9:fd:0e:46:dc:1a:b6:d7:c1: 6c:98:98:55:00:5b:ee:f2:bc:cc:74:bb:69:d8:5f: f5:92:c8:85:da:ff:30:d4:da:8a:d0:a9:b3:a5:7d: 7a:56:23:c8:f8:4c:56:5b:1e:48:e2:b1:b2:7d:2e: 59:65:75:2d:44:a2:6a:49:e7:e6:6a:73:c0:5b:98: a9:64:09:e1:3c:bc:f5:27:06:4d:a6:e0:96:44:4c: e4:6f:43:d7:92:ee:4c:e5:1f:9a:d7:c2:87:52:e1: f5:6b:54:0e:94:ea:24:92:bf:df:48:fd:d9:4d:5f: dd:6c:a9:f7:57:1f:4e:0a:24:18:30:d5:be:dd:9e: 98:7f:90:7c:8b:ff:f6:8d:23:cb:3f:9d:15:82:10: 9f:0b:93:af:d8:44:a4:86:f7:db:3f:08:cb:a3:5c: 05:76:78:08:f4:da:8b:78:e6:6c:1f:af:e0:d6:71: bc:06:2b:ec:e0:a2:d8:98:e6:b2:d0:2d:8c:28:67: 5b:8b:cb:9d:b8:0b:57:3e:17:2e:6e:b3:89:9c:d1: 54:2d:ac:79:fa:6c:37:da:ee:05:e9:3c:20:49:da: 66:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F5:02:76:5F:DD:96:C4:9D:5B:6C:60:46:8B:CD:36:11:21:6B:07 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:bc:0f:a3:5b:c8:4a:16:5a:bc:73:89:a4:c6:b2:36:a5:f2: c2:c8:65:8d:3a:07:33:6d:9c:62:7d:53:0f:d1:a7:15:a0:10: 0f:f6:4c:4c:0f:c8:b7:f1:8c:71:d5:b7:69:51:9b:b6:b1:ce: 0d:7c:c1:05:fd:eb:8f:7b:f1:92:72:b4:40:e7:d5:38:4f:14: 73:d2:1e:86:fc:87:e5:4b:45:3d:d4:7a:d3:c9:2b:05:be:15: 16:4a:38:7d:14:15:61:ac:fc:90:6d:d9:14:0b:f2:cd:e4:98: da:8d:4f:08:8e:f5:91:1f:a8:8c:e8:49:1a:eb:74:fc:c1:f4: ac:d7:6c:98:af:19:4b:16:cd:47:cc:5f:26:b5:06:c4:00:1f: b4:43:55:fe:a8:1a:a8:25:fd:6d:6a:dc:89:c2:a2:06:81:64: b6:77:07:5b:2a:df:a9:9d:db:c5:57:b9:c4:26:50:72:6c:26: f6:2a:c2:ad:87:3f:9a:81:a2:a5:db:3f:d9:0e:dd:f6:74:5e: b5:3c:59:9e:50:a0:c6:80:50:8c:bb:30:5d:67:f8:21:8c:6c: 1d:60:c7:f0:36:7c:bf:8e:8d:88:06:0f:13:e6:ab:94:8d:bb: 14:6c:8f:55:5e:87:96:99:01:38:7f:b9:33:9b:fe:e0:26:04: 94:c5:75:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwMzI1MDY0NDAzWhcNMjYwNDAxMDY0NDAzWjAYMRYwFAYD VQQDEw02OWMzODQzNC02NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEuno+fUrWHsXGCjiYpwmfH8Pb0VfzHW3MF0UIBwC632Fh/5/Q5G3Bq218Fs mJhVAFvu8rzMdLtp2F/1ksiF2v8w1NqK0KmzpX16ViPI+ExWWx5I4rGyfS5ZZXUt RKJqSefmanPAW5ipZAnhPLz1JwZNpuCWREzkb0PXku5M5R+a18KHUuH1a1QOlOok kr/fSP3ZTV/dbKn3Vx9OCiQYMNW+3Z6Yf5B8i//2jSPLP50VghCfC5Ov2ESkhvfb PwjLo1wFdngI9NqLeOZsH6/g1nG8Bivs4KLYmOay0C2MKGdbi8uduAtXPhcubrOJ nNFULax5+mw32u4F6TwgSdpmXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/1AnZf 3ZbEnVtsYEaLzTYRIWsHMB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeLwPo1vIShZavHOJpMayNqXywshljToHM22cYn1TD9GnFaAQD/ZMTA/It/GM cdW3aVGbtrHODXzBBf3rj3vxknK0QOfVOE8Uc9IehvyH5UtFPdR608krBb4VFko4 fRQVYaz8kG3ZFAvyzeSY2o1PCI71kR+ojOhJGut0/MH0rNdsmK8ZSxbNR8xfJrUG xAAftENV/qgaqCX9bWrcicKiBoFktncHWyrfqZ3bxVe5xCZQcmwm9irCrYc/moGi pds/2Q7d9nRetTxZnlCgxoBQjLswXWf4IYxsHWDH8DZ8v46NiAYPE+arlI27FGyP VV6HlpkBOH+5M5v+4CYElMV1qQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:48:41 2026 by rpki-client