$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: enwJgQV1aN688nx8RhCFJ/yCn8h76RdJXECn4m0bVm4= Subject key identifier: B1:EF:56:33:76:18:43:07:29:1B:F3:29:06:24:90:E4:E3:D8:FE:B6 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 87 Signing time: Tue 03 Mar 2026 07:14:40 +0000 Manifest this update: Tue 03 Mar 2026 07:14:40 +0000 Manifest next update: Tue 10 Mar 2026 07:14:40 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: j1Av1PQXA/eCShedxU9ynqldzsqil5Wxr7+jMVhQaTk=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Mar 3 07:14:40 2026 GMT Not After : Mar 10 07:14:40 2026 GMT Subject: CN=69a68a60-62e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:9b:d6:98:d1:97:a0:0a:7a:83:33:07:96: 08:18:e4:33:fd:f9:57:62:34:ab:38:0e:27:cd:f1: be:13:79:ff:d9:11:90:ce:54:96:97:30:4d:21:ae: 70:81:bc:ff:2a:36:42:12:06:36:18:0e:b3:0f:4f: 23:41:70:bc:80:3f:d6:58:7f:6d:dc:04:f2:d4:8d: 4d:5d:3c:e8:61:34:72:4e:7d:71:49:92:9a:b4:59: 54:af:1a:03:29:38:2c:59:c1:1a:c6:6f:e6:09:0a: b0:dc:9c:a0:f5:24:9b:db:fd:97:a4:0f:7f:56:3b: 37:04:6d:8d:de:a0:57:c8:49:20:f6:c4:22:15:6d: 07:4a:eb:25:56:bf:e8:cc:de:94:54:4d:b1:fe:e1: 7c:51:15:0a:e0:4b:1f:6a:0c:fa:f0:3f:10:b7:36: ea:f1:2e:8e:9c:d7:be:1d:43:90:ae:28:9e:80:40: 35:0f:d0:a3:e4:2e:db:a9:93:6b:b4:63:3c:51:f2: 04:8f:7b:c8:5d:5a:ff:eb:ac:b8:2a:dc:68:03:c4: 41:27:7f:9f:41:06:c4:fc:57:61:24:8c:1e:35:b5: fb:d9:cc:7c:6d:62:90:d7:02:46:d4:d3:53:ed:a8: 9e:41:96:16:99:e0:b1:2b:cf:b1:94:90:4a:89:1f: fd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EF:56:33:76:18:43:07:29:1B:F3:29:06:24:90:E4:E3:D8:FE:B6 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:d4:6d:f5:cf:46:ec:99:04:89:c6:ca:09:88:d1:e8:01:5a: 4b:65:47:2d:ec:97:d2:cd:26:80:04:50:24:80:58:9a:9c:7a: c4:0b:23:01:cc:a6:61:8c:1b:75:96:1a:ff:9c:c5:72:cb:da: 6d:ff:88:46:30:50:1c:c5:ad:a0:ca:bb:76:13:a4:40:cd:4a: e1:62:d6:8c:5d:d0:ae:46:da:84:25:06:8c:34:b8:34:05:4c: a7:e0:32:74:24:35:07:e8:33:26:68:32:1d:3e:8d:19:be:67: c9:80:91:30:5e:e5:25:25:9f:51:0f:e6:fd:e0:6c:35:e5:8a: e9:0f:ba:3a:24:77:37:64:ee:92:6b:d7:b2:5a:e1:04:5c:fd: 09:49:9e:43:75:e1:4b:bc:a6:ac:99:e8:49:1b:82:35:de:54: 0e:7c:68:7b:ea:76:18:6e:c8:4c:36:83:39:24:46:cd:a0:a1: e5:28:2b:f9:4b:46:43:6d:fe:ba:f9:39:a4:69:ca:05:52:a1: 97:0a:63:73:83:4d:88:cd:d2:38:0c:46:b1:13:43:7a:c1:fb: d1:c3:8d:64:be:b4:57:48:b4:20:a2:3f:0e:61:13:3a:1e:4e: 70:5f:9f:90:c7:7b:c5:3d:1c:85:ba:20:1d:e8:b6:c3:86:8e: 5c:f7:5f:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwMzAzMDcxNDQwWhcNMjYwMzEwMDcxNDQwWjAYMRYwFAYD VQQDEw02OWE2OGE2MC02MmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLab1pjRl6AKeoMzB5YIGOQz/flXYjSrOA4nzfG+E3n/2RGQzlSWlzBNIa5w gbz/KjZCEgY2GA6zD08jQXC8gD/WWH9t3ATy1I1NXTzoYTRyTn1xSZKatFlUrxoD KTgsWcEaxm/mCQqw3Jyg9SSb2/2XpA9/Vjs3BG2N3qBXyEkg9sQiFW0HSuslVr/o zN6UVE2x/uF8URUK4Esfagz68D8Qtzbq8S6OnNe+HUOQriiegEA1D9Cj5C7bqZNr tGM8UfIEj3vIXVr/66y4KtxoA8RBJ3+fQQbE/FdhJIweNbX72cx8bWKQ1wJG1NNT 7aieQZYWmeCxK8+xlJBKiR/9xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLHvVjN2 GEMHKRvzKQYkkOTj2P62MB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAadRt9c9G7JkEicbKCYjR6AFaS2VHLeyX0s0mgARQJIBYmpx6xAsjAcymYYwb dZYa/5zFcsvabf+IRjBQHMWtoMq7dhOkQM1K4WLWjF3QrkbahCUGjDS4NAVMp+Ay dCQ1B+gzJmgyHT6NGb5nyYCRMF7lJSWfUQ/m/eBsNeWK6Q+6OiR3N2TukmvXslrh BFz9CUmeQ3XhS7ymrJnoSRuCNd5UDnxoe+p2GG7ITDaDOSRGzaCh5Sgr+UtGQ23+ uvk5pGnKBVKhlwpjc4NNiM3SOAxGsRNDesH70cONZL60V0i0IKI/DmETOh5OcF+f kMd7xT0chbogHei2w4aOXPdfYQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:41:28 2026 by rpki-client