$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft File: cq-668ns3aLu0tSbE-YEjqPkHmA.mft (raw, json) Hash identifier: 1hw2v8fKdPNYH6EGweiMCQlq6+uOATUiHoJyJjmrQYc= Subject key identifier: CD:9F:B7:5F:97:9F:31:BA:76:09:31:04:6A:00:E6:87:0D:83:28:4E Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft Manifest number: 222A Signing time: Tue 12 May 2026 15:53:48 +0000 Manifest this update: Tue 12 May 2026 15:53:47 +0000 Manifest next update: Tue 19 May 2026 15:53:47 +0000 Files and hashes: 1: cq-668ns3aLu0tSbE-YEjqPkHmA.crl (hash: xOOhYeFJBq0z2D9C0SuTPHPSt6OAYIUklSiIcptd224=) 2: 0F0824DED28311EDB1655152C4F9AE02.roa (hash: YxBTBicabikn08Aqg/dvf+PsgRQVrImZt4AAt8rvHnc=) 3: E9DE96C44C3611EEA9D59630C4F9AE02.roa (hash: v4lm1t03b9gy+zkyAg0MsXuQLEziIg1Uau5peZt74RY=) 4: E50E6E14B63411EDB4416786C4F9AE02.roa (hash: KYaSzwf1L2QkO+jOOMTkJ2kvbpBzCO+jKOwM50VbrBw=) 5: EEFB07CCB8A311ED8F694046C4F9AE02.roa (hash: V2GgiDiVdp7icGNp8uei2QdYQy4qfASwmRrufFn1mxg=) 6: AB9E7432714911EEBF95153CC4F9AE02.roa (hash: Bbmi/J5Lpn7aHAntaVp/ckgJSOlUGXUjQqXrthSWKgU=) 7: 1C628A90671411EEA0040661C4F9AE02.roa (hash: M0M27e7jpHMqjXXvltEuadHWRQl0UpCUB3Q3dSoBa+I=) 8: 0FB07E54D28311EDB1655152C4F9AE02.roa (hash: 3IlwneiT3OIjV7tuhT2g5I0grdOyE91JkHSLmUB2BEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8833 (0x2281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: May 12 15:53:47 2026 GMT Not After : May 19 15:53:47 2026 GMT Subject: CN=6a034d0c-adbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:c3:c1:eb:59:a7:b3:42:f1:71:fa:15:b3: 9f:c3:73:69:ce:20:28:bf:4f:38:15:d5:59:1a:dc: 16:80:8d:9f:e4:e6:60:da:86:b6:f9:b7:e4:e8:60: a8:ed:0e:c0:ea:40:fd:de:fa:d3:d6:b1:11:25:a0: 1d:cf:46:8e:ed:82:f7:c4:71:bb:9f:63:06:10:93: 72:e4:4c:98:80:20:10:9e:a0:da:89:05:c6:d1:c1: 41:69:62:07:55:3e:9a:35:bb:c3:64:b9:c8:ed:2f: 42:c4:ee:8e:b5:05:2a:fd:a1:71:a6:a2:2a:67:c6: 69:da:9e:06:bb:bc:c3:52:2f:c8:dc:30:ec:74:40: 18:2f:d0:ab:d4:13:c3:0d:88:eb:1c:22:1d:9b:77: a7:eb:4c:19:5e:f8:36:5a:99:04:38:de:d6:6e:ca: 46:ea:c8:de:01:6a:31:f2:88:97:fc:e5:23:63:e4: 35:29:52:65:0f:a0:b0:2d:21:df:a4:b9:bd:a9:4b: ff:db:5f:f0:03:1d:a2:ac:79:8c:59:19:af:17:30: 84:15:09:c1:c3:35:85:d8:d2:4b:e1:b0:33:e3:d7: cc:71:70:71:2b:67:1c:b9:67:22:bd:4c:fc:43:6d: 97:33:28:13:b4:fe:b9:93:2a:b9:a6:a2:f5:8e:dd: 43:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9F:B7:5F:97:9F:31:BA:76:09:31:04:6A:00:E6:87:0D:83:28:4E X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:a8:0a:e2:4e:94:7c:86:4b:47:1e:bc:c6:df:89:83:00:3e: f3:c9:e4:45:e0:8a:28:0a:f3:c4:e4:38:c3:7c:5b:98:bd:14: e3:a5:b6:2f:97:c4:85:66:0f:cd:bd:ee:f6:48:ae:b9:e6:0d: 72:94:64:c6:66:ce:f3:60:f4:d0:e0:b6:26:1e:72:b4:d2:30: 07:35:64:e9:0c:d8:64:ba:b7:7d:92:e1:2f:91:9e:bf:f7:2e: c6:b4:2a:35:8d:78:5e:3c:45:3c:63:ad:84:f5:ed:8c:37:59: 51:b1:36:6f:d9:43:86:56:41:88:ed:09:8f:e6:57:d2:1c:b5: 0a:6a:75:01:b4:20:a7:d8:95:df:bb:5f:df:c8:14:29:21:b0: f3:1b:7d:f4:43:8a:15:29:51:a6:1d:8f:97:5f:28:8e:35:b9: 53:6d:08:d2:67:e4:89:78:08:78:98:38:c5:42:68:2d:73:01: a3:84:6e:da:11:18:be:80:8e:0c:f1:31:77:f4:01:c7:d0:6e: 0b:36:b3:80:19:0b:3a:4d:a7:67:98:91:00:1c:72:63:a7:39: b3:d5:43:3d:b9:6a:31:54:42:f7:db:e2:3f:1d:bf:67:7a:14: da:22:24:03:e4:10:2d:b0:8d:c2:96:4e:0f:5a:b2:66:e4:12: f7:01:1e:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwNTEyMTU1MzQ3WhcNMjYwNTE5MTU1MzQ3WjAYMRYwFAYD VQQDEw02YTAzNGQwYy1hZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F7DwetZp7NC8XH6FbOfw3NpziAov084FdVZGtwWgI2f5OZg2oa2+bfk6GCo 7Q7A6kD93vrT1rERJaAdz0aO7YL3xHG7n2MGEJNy5EyYgCAQnqDaiQXG0cFBaWIH VT6aNbvDZLnI7S9CxO6OtQUq/aFxpqIqZ8Zp2p4Gu7zDUi/I3DDsdEAYL9Cr1BPD DYjrHCIdm3en60wZXvg2WpkEON7WbspG6sjeAWox8oiX/OUjY+Q1KVJlD6CwLSHf pLm9qUv/21/wAx2irHmMWRmvFzCEFQnBwzWF2NJL4bAz49fMcXBxK2ccuWcivUz8 Q22XMygTtP65kyq5pqL1jt1DcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM2ft1+X nzG6dgkxBGoA5ocNgyhOMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC9CQUUxMDhDNEVBNjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNh THUwdFNiRS1ZRWpxUGtIbUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyKgK4k6UfIZLRx68xt+JgwA+88nkReCKKArzxOQ4w3xbmL0U46W2L5fEhWYP zb3u9kiuueYNcpRkxmbO82D00OC2Jh5ytNIwBzVk6QzYZLq3fZLhL5Gev/cuxrQq NY14XjxFPGOthPXtjDdZUbE2b9lDhlZBiO0Jj+ZX0hy1Cmp1AbQgp9iV37tf38gU KSGw8xt99EOKFSlRph2Pl18ojjW5U20I0mfkiXgIeJg4xUJoLXMBo4Ru2hEYvoCO DPExd/QBx9BuCzazgBkLOk2nZ5iRABxyY6c5s9VDPblqMVRC99viPx2/Z3oU2iIk A+QQLbCNwpZOD1qyZuQS9wEehw== -----END CERTIFICATE-----Generated at Wed May 13 06:46:28 2026 by rpki-client