$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: eR3znnBRISC3AtyyU38UJB3FlTGsYJF3LDd9ioICXTk= Subject key identifier: D3:CD:07:C3:57:21:03:AE:07:DA:80:D3:EC:16:6D:0B:A1:1F:03:15 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: B5 Signing time: Mon 01 Jun 2026 07:53:07 +0000 Manifest this update: Mon 01 Jun 2026 07:53:07 +0000 Manifest next update: Mon 08 Jun 2026 07:53:07 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: /1gJIPvQqfkqHEBO0kAkjxBhABcj5T5ZhEL28gixH8s=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 07:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Jun 1 07:53:07 2026 GMT Not After : Jun 8 07:53:07 2026 GMT Subject: CN=6a1d3a63-412e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b6:74:db:b0:77:1b:fa:ab:fb:f1:65:b9:ca: 8d:03:f0:a8:f6:27:cd:37:43:d2:82:06:d8:cb:6c: 87:bb:02:e4:d3:6b:f4:28:c2:81:53:32:ce:8e:17: 92:ce:4b:35:14:21:22:52:c0:47:67:b9:21:c6:26: e0:77:37:ed:7d:22:61:79:12:49:c6:40:b7:62:fa: ec:58:25:40:7a:6c:0c:fb:f4:ac:51:a8:ae:46:9b: be:a4:16:b4:cc:ed:d1:33:47:0b:f3:0e:b9:d9:89: 24:ad:99:c3:4a:a0:ce:c9:5b:e0:5f:e2:1b:74:31: 48:70:1d:d4:60:44:23:c9:da:7b:08:4f:e7:16:6e: e4:ed:5a:37:4e:96:cd:da:07:6b:07:b7:a8:da:d1: bb:2c:52:c6:9e:33:01:52:8c:ce:7f:78:2f:84:a3: 3f:a7:e3:78:6e:92:d2:ce:78:8d:5e:cd:63:a0:d4: b0:bf:86:ff:8f:31:0a:04:f1:72:db:48:01:70:79: 51:ff:79:ff:88:ff:7b:a7:e5:9e:cf:17:4e:0c:3e: a6:7f:f4:8b:9e:d5:45:65:15:98:26:55:53:e1:c5: 0b:47:c9:22:78:d3:ea:16:fd:5c:61:65:11:b2:72: 54:f8:2a:9d:dd:7b:97:55:d9:5b:a4:18:01:8b:e2: b1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CD:07:C3:57:21:03:AE:07:DA:80:D3:EC:16:6D:0B:A1:1F:03:15 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:46:b1:ac:f8:0f:2b:d8:75:49:6d:bc:a5:e9:74:c1:93:b4: 73:46:75:c6:d6:2e:96:8f:e8:7f:53:0f:a1:59:49:3a:da:6a: 32:7e:4d:26:fe:17:0a:59:53:f3:15:13:91:f7:c4:bf:d3:ed: f7:6f:e9:57:c5:69:99:89:01:8c:a0:0f:03:e4:c9:ef:cb:a4: b0:db:93:03:6b:e8:98:bd:27:32:0d:3b:b0:cd:f4:01:71:ab: 6f:c1:3a:48:e5:56:4c:50:80:6c:89:9d:a8:16:b1:aa:50:74: 1f:bd:72:35:0f:44:a1:e8:93:31:41:b9:15:bf:98:a6:86:7b: 29:95:6f:e7:59:96:0c:8c:6b:cc:01:87:fc:a0:11:1b:ed:21: 36:3e:6a:56:69:fd:03:75:ee:73:9c:a3:2f:c2:da:d1:cf:ea: a8:a8:f1:c2:c6:77:36:a0:fc:b7:0c:ab:ee:dd:7a:12:da:36: 1e:aa:8f:14:36:b2:32:18:d7:b9:3d:a5:55:f9:4a:63:69:2c: 22:86:2f:5a:fe:29:ee:78:3c:7d:ef:59:43:df:48:1b:d6:a0: 34:70:79:99:a4:e7:ad:1a:09:c0:ac:f3:e7:12:ac:85:22:06: 0a:98:6d:41:26:34:49:eb:87:fb:e0:36:67:c9:4b:8c:c4:91: d1:6c:b4:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwNjAxMDc1MzA3WhcNMjYwNjA4MDc1MzA3WjAYMRYwFAYD VQQDEw02YTFkM2E2My00MTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLZ027B3G/qr+/FlucqNA/Co9ifNN0PSggbYy2yHuwLk02v0KMKBUzLOjheS zks1FCEiUsBHZ7khxibgdzftfSJheRJJxkC3YvrsWCVAemwM+/SsUaiuRpu+pBa0 zO3RM0cL8w652YkkrZnDSqDOyVvgX+IbdDFIcB3UYEQjydp7CE/nFm7k7Vo3TpbN 2gdrB7eo2tG7LFLGnjMBUozOf3gvhKM/p+N4bpLSzniNXs1joNSwv4b/jzEKBPFy 20gBcHlR/3n/iP97p+WezxdODD6mf/SLntVFZRWYJlVT4cULR8kieNPqFv1cYWUR snJU+Cqd3XuXVdlbpBgBi+KxYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNPNB8NX IQOuB9qA0+wWbQuhHwMVMB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEUaxrPgPK9h1SW28pel0wZO0c0Z1xtYulo/of1MPoVlJOtpqMn5NJv4XCllT 8xUTkffEv9Pt92/pV8VpmYkBjKAPA+TJ78uksNuTA2vomL0nMg07sM30AXGrb8E6 SOVWTFCAbImdqBaxqlB0H71yNQ9EoeiTMUG5Fb+YpoZ7KZVv51mWDIxrzAGH/KAR G+0hNj5qVmn9A3Xuc5yjL8La0c/qqKjxwsZ3NqD8twyr7t16Eto2HqqPFDayMhjX uT2lVflKY2ksIoYvWv4p7ng8fe9ZQ99IG9agNHB5maTnrRoJwKzz5xKshSIGCpht QSY0SeuH++A2Z8lLjMSR0Wy0Iw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:41:33 2026 by rpki-client