$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: Ga9rprqsfORhn0UGq72v3d1OojVrXdYdgq2BTPNPGaQ= Subject key identifier: 01:C6:2C:EC:9F:EA:AE:B2:47:FB:EC:3B:A3:F8:85:74:BC:21:48:FF Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0713 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 070B Signing time: Sat 28 Mar 2026 21:48:09 +0000 Manifest this update: Sat 28 Mar 2026 21:48:09 +0000 Manifest next update: Sat 04 Apr 2026 21:48:09 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: PjBpA2ndW83QzGaKQQQhUhM7UiBLjUt+2Sk5KUykvLQ=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: Rg5f1AR5kausNOtPTErApCWSrgBHSd9016YNBUMj2Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 21:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1811 (0x713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Mar 28 21:48:09 2026 GMT Not After : Apr 4 21:48:09 2026 GMT Subject: CN=69c84c99-42be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6e:c8:f9:88:77:fe:07:9f:4a:68:7a:aa:61: c5:a2:ab:04:07:01:50:d4:53:59:c3:db:b0:7f:c3: 7f:b4:49:5f:0a:df:4d:b9:98:d0:dd:de:47:b1:3b: a5:2f:a3:9a:ba:9f:e7:f0:b9:2c:6b:f7:80:90:15: 34:d5:8b:44:e6:d1:ef:1b:ad:1e:df:aa:57:56:5a: 95:5c:59:93:c8:7d:52:bb:aa:92:ba:63:a9:30:c3: 0f:83:82:5e:82:08:ef:90:db:86:04:d9:3b:18:2e: 5a:95:04:85:b5:e2:2e:fe:54:fe:1b:61:aa:c2:ad: 2f:2a:e2:5c:de:d6:9f:9f:0b:f4:7b:68:94:0e:12: f6:2e:56:77:2d:2d:2d:dc:ec:00:39:25:9e:d6:d5: 62:72:ad:7f:b3:6a:2a:06:16:88:a3:c7:f6:6d:72: fa:61:fd:fc:2c:d5:c2:eb:9f:db:36:a3:56:27:b2: f1:b1:d3:c3:2a:29:bb:b1:87:b6:12:0c:9d:b7:d7: 8b:3f:d1:93:ac:ff:7d:ae:3f:09:ec:e9:27:05:de: 97:94:11:7c:72:24:29:55:af:4e:a2:47:74:c8:50: ab:79:a5:55:1c:99:cc:2a:6f:a9:e6:36:1b:26:4a: 68:cf:00:47:9c:41:45:c3:b3:4b:41:99:02:08:4f: 19:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C6:2C:EC:9F:EA:AE:B2:47:FB:EC:3B:A3:F8:85:74:BC:21:48:FF X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:9f:e7:14:6d:48:31:0d:ff:32:23:0c:91:6b:af:ec:0d:46: d1:36:4d:57:da:96:38:7a:a7:c9:73:8f:6c:ff:9d:c0:e2:6d: e0:b7:42:70:db:bd:69:c0:4c:d4:fe:00:12:55:d3:e4:45:3d: 75:28:88:84:e1:97:94:85:23:8e:95:6b:f7:15:2e:90:66:44: 6b:5c:dd:18:42:b3:43:2e:01:76:75:80:15:00:45:25:b8:f7: b1:2f:3e:57:27:fe:f0:59:ff:68:0f:e4:00:cc:dc:31:f3:68: bb:98:7b:0f:97:64:cd:59:03:e0:09:52:26:62:16:9e:21:25: 44:9a:7e:e8:af:9a:35:ab:49:7e:90:d6:d4:da:17:2b:ef:83: bd:3b:1e:a0:e8:03:2d:eb:ba:e4:78:ec:2f:f0:83:f7:af:a1: 67:1c:89:ed:12:09:b0:03:53:27:34:20:e7:1c:5b:9f:19:d1: 71:f7:c9:20:b5:4a:5f:cb:a7:23:bc:86:88:4e:dc:98:71:2c: 23:a3:76:28:e7:d3:02:03:d9:19:c4:21:7b:27:20:ad:3d:65: ef:f8:a4:0d:53:69:d6:6a:e6:4d:dd:41:31:05:e1:2a:75:33: 3e:86:d2:9d:d4:7c:23:f2:47:39:b6:98:e4:32:28:36:2b:8f: 5f:8c:7f:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjYwMzI4MjE0ODA5WhcNMjYwNDA0MjE0ODA5WjAYMRYwFAYD VQQDEw02OWM4NGM5OS00MmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0m7I+Yh3/gefSmh6qmHFoqsEBwFQ1FNZw9uwf8N/tElfCt9NuZjQ3d5HsTul L6Oaup/n8Lksa/eAkBU01YtE5tHvG60e36pXVlqVXFmTyH1Su6qSumOpMMMPg4Je ggjvkNuGBNk7GC5alQSFteIu/lT+G2Gqwq0vKuJc3tafnwv0e2iUDhL2LlZ3LS0t 3OwAOSWe1tVicq1/s2oqBhaIo8f2bXL6Yf38LNXC65/bNqNWJ7LxsdPDKim7sYe2 Egydt9eLP9GTrP99rj8J7OknBd6XlBF8ciQpVa9Ookd0yFCreaVVHJnMKm+p5jYb JkpozwBHnEFFw7NLQZkCCE8ZIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAHGLOyf 6q6yR/vsO6P4hXS8IUj/MB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuZ/nFG1IMQ3/MiMMkWuv7A1G0TZNV9qWOHqnyXOPbP+dwOJt4LdCcNu9acBM 1P4AElXT5EU9dSiIhOGXlIUjjpVr9xUukGZEa1zdGEKzQy4BdnWAFQBFJbj3sS8+ Vyf+8Fn/aA/kAMzcMfNou5h7D5dkzVkD4AlSJmIWniElRJp+6K+aNatJfpDW1NoX K++DvTseoOgDLeu65HjsL/CD96+hZxyJ7RIJsANTJzQg5xxbnxnRcffJILVKX8un I7yGiE7cmHEsI6N2KOfTAgPZGcQheycgrT1l7/ikDVNp1mrmTd1BMQXhKnUzPobS ndR8I/JHObaY5DIoNiuPX4x/6w== -----END CERTIFICATE-----Generated at Sun Mar 29 23:45:40 2026 by rpki-client