$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: cPCJOJuJ9w91w1HxrDoNSBesKOEq6YriS3XUj7zImRY= Subject key identifier: 73:39:55:F7:EA:C0:7E:A3:8C:97:03:4F:22:87:01:69:D7:D6:05:60 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: BC Signing time: Sat 13 Jun 2026 07:07:13 +0000 Manifest this update: Sat 13 Jun 2026 07:07:12 +0000 Manifest next update: Sat 20 Jun 2026 07:07:12 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: oLyLXLY/wRN8dqG3/J/YKsk+S9yerY3RHIEQXjmY/U4=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 0Xdlp+Jjf+yeb2d/P0L7IU19P+mYj01Gp9Tj8N+RxJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 07:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Jun 13 07:07:12 2026 GMT Not After : Jun 20 07:07:12 2026 GMT Subject: CN=6a2d01a1-f28a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:7d:4d:cd:1f:b8:85:69:ba:75:35:14:00:71: b5:d5:df:7e:94:00:d0:0d:27:9f:47:a8:fd:e7:0f: 51:60:2f:0f:3f:a0:a8:12:8b:0c:24:df:18:11:ff: b9:37:df:73:cb:d2:39:fb:56:b7:1d:36:a9:fe:fe: d9:b1:70:67:e8:c6:d2:15:72:05:3a:3e:be:b4:88: 2b:be:6e:2a:ea:4c:e1:30:af:58:6c:8f:03:2f:3b: b5:04:31:a7:46:a6:9f:9e:c2:9c:6c:76:69:fd:e6: 31:84:2c:eb:2a:8d:f7:e4:d0:cc:77:72:ad:66:34: 85:45:0e:e9:bf:b5:32:fd:05:46:9a:51:43:5a:c9: 5b:94:3a:e6:7e:1d:ef:02:5a:2d:a7:47:b7:ab:e0: 8f:87:32:0e:41:7f:f1:14:23:f7:97:15:a4:40:91: 62:f8:95:9a:e5:73:8f:cf:03:6c:d5:f1:d0:73:48: 75:b8:91:3e:bf:59:01:40:fb:be:31:ea:2c:98:d7: 67:e0:5c:3e:7c:aa:a6:4f:c8:c5:b1:b0:02:2e:12: 3f:f1:53:7e:dc:58:bd:fb:34:1b:3f:04:58:51:40: 4d:9c:7a:01:b0:f9:79:48:07:35:1b:9e:8c:3c:0a: dd:5b:7a:95:f5:0c:e3:db:fd:64:ab:b3:b7:ce:d6: d3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:39:55:F7:EA:C0:7E:A3:8C:97:03:4F:22:87:01:69:D7:D6:05:60 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6d:20:93:ec:78:95:c3:f7:fc:cc:67:9a:b1:61:c8:4d:a4: f9:dd:ec:77:71:03:3e:c8:06:03:70:40:d5:23:cc:ce:58:e4: b1:67:a8:5e:86:09:90:c6:3c:b7:13:e2:46:d2:6f:e7:42:a8: 9a:be:b9:cf:8c:6f:f1:b7:cc:7c:16:d7:c3:f9:d6:6c:f2:cc: cf:6e:73:c9:40:bb:5c:4c:78:dd:49:7a:5a:38:3a:d7:ec:6e: fc:83:54:89:08:c1:fe:35:e0:98:5f:b5:36:43:92:dd:b2:e0: 10:25:7b:13:8b:86:4f:03:d7:a8:47:04:a7:4f:2e:13:92:5e: 9d:bc:55:8b:72:0b:ae:7e:f7:3b:df:f3:e3:56:c9:24:62:cf: e2:aa:56:29:75:98:ad:bf:8a:dd:34:63:0c:54:dd:64:72:fc: 6e:11:b6:4c:ef:64:90:8f:47:48:2d:07:8f:3e:70:97:45:34: 32:32:e6:fa:aa:f8:4f:7b:65:b4:84:b2:ec:c9:73:eb:9c:ae: fa:14:44:4e:68:88:c5:79:7f:c8:4f:b6:ce:67:48:4f:0f:00: de:3c:0a:75:2f:98:07:3b:9e:85:4a:3c:0a:e1:ac:87:3d:83: 0f:5d:de:32:57:58:41:16:15:db:fd:c4:dc:af:92:e6:49:0d: ac:ca:f7:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwNjEzMDcwNzEyWhcNMjYwNjIwMDcwNzEyWjAYMRYwFAYD VQQDEw02YTJkMDFhMS1mMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAin1NzR+4hWm6dTUUAHG11d9+lADQDSefR6j95w9RYC8PP6CoEosMJN8YEf+5 N99zy9I5+1a3HTap/v7ZsXBn6MbSFXIFOj6+tIgrvm4q6kzhMK9YbI8DLzu1BDGn RqafnsKcbHZp/eYxhCzrKo335NDMd3KtZjSFRQ7pv7Uy/QVGmlFDWslblDrmfh3v Alotp0e3q+CPhzIOQX/xFCP3lxWkQJFi+JWa5XOPzwNs1fHQc0h1uJE+v1kBQPu+ MeosmNdn4Fw+fKqmT8jFsbACLhI/8VN+3Fi9+zQbPwRYUUBNnHoBsPl5SAc1G56M PArdW3qV9Qzj2/1kq7O3ztbTqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHM5Vffq wH6jjJcDTyKHAWnX1gVgMB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnW0gk+x4lcP3/MxnmrFhyE2k+d3sd3EDPsgGA3BA1SPMzljksWeoXoYJkMY8 txPiRtJv50Komr65z4xv8bfMfBbXw/nWbPLMz25zyUC7XEx43Ul6Wjg61+xu/INU iQjB/jXgmF+1NkOS3bLgECV7E4uGTwPXqEcEp08uE5JenbxVi3ILrn73O9/z41bJ JGLP4qpWKXWYrb+K3TRjDFTdZHL8bhG2TO9kkI9HSC0Hjz5wl0U0MjLm+qr4T3tl tISy7Mlz65yu+hRETmiIxXl/yE+2zmdITw8A3jwKdS+YBzuehUo8CuGshz2DD13e MldYQRYV2/3E3K+S5kkNrMr39A== -----END CERTIFICATE-----Generated at Sun Jun 14 00:57:47 2026 by rpki-client