$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: +NlpZtDk6owLJ8xY5vw+X4i56voQLXI00FCs2HliWOM= Subject key identifier: A0:AE:B2:C0:55:CD:93:C3:EB:3E:3D:CA:8A:33:01:A3:99:0D:FA:0E Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0731 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 0728 Signing time: Wed 20 May 2026 21:53:20 +0000 Manifest this update: Wed 20 May 2026 21:53:20 +0000 Manifest next update: Wed 27 May 2026 21:53:20 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: VX3zng1vQhvu6tH3E0IT1vrphLDR9xz+XcBP887Z04g=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: 94CBbsp/sR89TW5T5WAlVSb9xCm0EUDVQO0G5brVTiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1841 (0x731) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: May 20 21:53:20 2026 GMT Not After : May 27 21:53:20 2026 GMT Subject: CN=6a0e2d50-398c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:32:a9:75:fd:4b:06:14:53:fd:f4:db:76:89: 6b:5e:6a:bb:d0:be:51:4f:2f:6a:1e:18:2a:a7:52: f7:71:13:e7:ba:64:92:ed:9f:ed:29:33:40:b3:74: 89:c4:32:6e:9c:87:15:7b:da:a3:1d:7d:b6:c9:38: e1:97:cb:75:09:fb:62:a9:45:c9:e7:c2:07:bb:ed: 27:32:b1:76:db:30:ee:c9:f9:ca:0a:a2:2f:76:1e: cc:0a:a4:a1:88:9e:02:60:78:d6:1b:56:c5:0b:44: c8:42:07:7e:a1:de:1f:dc:cd:e3:7e:7d:2e:ba:27: e6:70:05:b5:9b:4e:04:2f:5a:bf:d7:fb:eb:70:77: 95:7a:26:67:c7:6e:63:f2:eb:87:6d:76:e7:4d:31: dc:7d:2a:61:3e:ae:bf:6a:e6:e4:ca:34:29:e7:3e: 1d:a4:56:3c:41:b3:e3:ff:79:54:b4:d4:ff:bb:fe: a9:00:3b:43:99:5e:a2:88:c1:cb:b3:e3:78:81:49: 2f:d4:8d:25:04:c9:88:72:37:62:7b:3a:22:24:ea: 72:33:8d:9b:10:db:10:9b:cf:30:9a:52:83:40:70: fd:75:3a:b9:78:70:69:25:e9:55:57:e2:41:26:f1: 5e:76:b2:8f:c2:52:d9:54:e5:ae:c3:bd:6f:64:9b: ea:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AE:B2:C0:55:CD:93:C3:EB:3E:3D:CA:8A:33:01:A3:99:0D:FA:0E X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a1:f3:1f:55:f2:d0:bc:ba:9f:b3:d3:10:aa:d3:a5:4d:1d: a2:63:78:95:f2:43:20:6f:fc:7f:8a:02:c8:42:3b:6a:82:6a: 1e:2e:d1:03:19:32:2c:73:d9:28:52:b4:ca:9a:32:cb:97:0a: 9e:d0:34:87:15:54:75:9f:56:f5:88:b6:18:75:71:b9:b5:48: e4:b0:59:bb:db:34:7e:8b:20:c0:e6:16:0d:5b:d8:07:52:68: 60:cd:b1:c8:3a:14:db:b3:22:33:c4:df:12:f9:50:06:38:25: 5f:c6:4b:c3:7b:e5:24:96:b0:19:55:20:35:09:97:b2:94:71: 62:1f:05:6a:44:a5:d9:66:6c:82:9b:c2:0b:34:b7:e0:e8:ff: 91:c5:79:3e:22:6d:6f:28:86:6c:b9:94:b8:4e:7f:4d:31:fd: 99:31:0a:52:93:f5:ef:58:94:f0:6b:5f:a0:34:71:45:01:d2: fb:33:79:85:5a:46:81:39:15:dd:13:2f:b5:08:9a:c4:30:e0: 92:24:2d:d5:e8:f9:33:25:04:7b:33:7b:d0:67:3e:30:05:db: 43:83:b1:4a:da:5d:79:28:7c:a2:43:04:c9:1f:ca:b2:d0:c9: cb:1b:69:c4:0f:fc:81:b5:2a:d7:f6:6d:e3:2d:a6:d1:9c:09: 97:56:7d:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjYwNTIwMjE1MzIwWhcNMjYwNTI3MjE1MzIwWjAYMRYwFAYD VQQDEw02YTBlMmQ1MC0zOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzKpdf1LBhRT/fTbdolrXmq70L5RTy9qHhgqp1L3cRPnumSS7Z/tKTNAs3SJ xDJunIcVe9qjHX22yTjhl8t1CftiqUXJ58IHu+0nMrF22zDuyfnKCqIvdh7MCqSh iJ4CYHjWG1bFC0TIQgd+od4f3M3jfn0uuifmcAW1m04EL1q/1/vrcHeVeiZnx25j 8uuHbXbnTTHcfSphPq6/aubkyjQp5z4dpFY8QbPj/3lUtNT/u/6pADtDmV6iiMHL s+N4gUkv1I0lBMmIcjdiezoiJOpyM42bENsQm88wmlKDQHD9dTq5eHBpJelVV+JB JvFedrKPwlLZVOWuw71vZJvqzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKCussBV zZPD6z49yoozAaOZDfoOMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX6HzH1Xy0Ly6n7PTEKrTpU0domN4lfJDIG/8f4oCyEI7aoJqHi7RAxkyLHPZ KFK0ypoyy5cKntA0hxVUdZ9W9Yi2GHVxubVI5LBZu9s0fosgwOYWDVvYB1JoYM2x yDoU27MiM8TfEvlQBjglX8ZLw3vlJJawGVUgNQmXspRxYh8FakSl2WZsgpvCCzS3 4Oj/kcV5PiJtbyiGbLmUuE5/TTH9mTEKUpP171iU8GtfoDRxRQHS+zN5hVpGgTkV 3RMvtQiaxDDgkiQt1ej5MyUEezN70Gc+MAXbQ4OxStpdeSh8okMEyR/KstDJyxtp xA/8gbUq1/Zt4y2m0ZwJl1Z9zQ== -----END CERTIFICATE-----Generated at Thu May 21 12:36:06 2026 by rpki-client