$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: tBSIeyvqYzFDo+mbIa7usbGiM08IZtcORheFO5jAB7w= Subject key identifier: 6B:B5:29:DF:7E:C0:E3:83:39:D0:98:6F:1A:0D:5C:3E:D3:2D:D8:E9 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 9E Signing time: Fri 17 Apr 2026 07:05:22 +0000 Manifest this update: Fri 17 Apr 2026 07:05:22 +0000 Manifest next update: Fri 24 Apr 2026 07:05:22 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: 9jzxQ0aoC41IqfUOCetlPSJlh+kAQkRoJn6nBS6BjEY=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Apr 17 07:05:22 2026 GMT Not After : Apr 24 07:05:22 2026 GMT Subject: CN=69e1dbb2-d76e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f5:d8:d3:2d:b0:05:22:5b:01:84:c9:c4:4b: 32:fb:f1:0a:8f:99:75:ce:1c:39:ae:aa:75:b6:1e: b9:a3:f0:0b:6a:2e:d0:59:00:5e:69:b1:87:bf:0b: 6c:8d:db:c0:d9:91:1c:bb:f0:fc:91:8d:4b:89:e2: 32:b1:85:8a:b8:2d:2d:30:14:75:7c:2e:b6:13:e3: b1:ac:0b:72:33:2e:00:5f:da:e8:3f:ec:d6:0f:2f: 28:64:3e:f8:81:65:95:a2:bd:66:1d:60:45:b0:bd: af:e6:f7:ce:31:d6:7c:04:8c:8d:08:96:5e:f1:82: 42:80:57:43:5b:05:6e:b5:ee:98:13:ed:d7:96:82: 5e:15:a1:96:9c:ae:42:ae:e7:e0:71:86:06:bb:4b: c5:40:2d:9b:e5:67:ad:ce:ee:da:b6:49:d6:96:b6: 7b:aa:1d:42:38:2b:6d:32:34:00:8f:66:e8:c3:30: 6d:0e:6c:a7:0a:21:c3:a0:8c:37:97:40:8e:bb:1e: b3:e5:c6:c7:3f:f3:5e:30:5b:ad:dc:1d:af:4f:3c: 42:50:5e:fb:5a:7e:83:f9:70:83:8c:df:b8:47:da: 5b:f1:3a:07:db:31:f7:a0:b4:c5:41:b3:94:da:34: 9a:77:ce:d8:99:4f:0d:ed:c3:4a:a6:41:d2:6e:df: c8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B5:29:DF:7E:C0:E3:83:39:D0:98:6F:1A:0D:5C:3E:D3:2D:D8:E9 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:45:29:05:20:40:3b:4b:50:d9:24:04:7a:34:00:df:2e:f4: b7:8b:2d:fd:a4:d7:75:53:c1:60:16:87:d5:6c:f2:20:c1:41: 2f:5e:fe:e8:a4:25:1e:56:ba:7b:2a:6c:04:64:2c:91:d4:58: 29:db:f2:51:75:d6:0e:ed:c5:f6:98:6f:aa:ff:7e:bd:47:fe: 4c:c7:cc:9d:66:a7:a3:2b:d4:c3:58:4e:b9:64:a6:f7:ed:94: 20:6f:e7:8d:4b:15:30:c2:75:4a:24:e1:e4:fc:7c:9e:a3:40: d7:f8:62:16:06:65:fc:2c:26:2b:bd:46:92:20:70:dc:2e:d7: c0:bb:09:16:67:bf:ac:2b:cf:db:b5:77:07:13:63:a7:d9:f0: be:04:ae:09:32:f6:d0:79:fc:98:5c:ef:88:1c:5b:12:97:e5: 3f:8a:9d:83:6b:b5:b7:7f:9c:23:41:94:0a:5e:fc:c9:05:7d: 7d:0c:cb:e3:62:43:8f:a9:2c:93:ce:30:48:d7:fa:eb:9f:95: 42:11:86:47:73:b2:6d:a5:16:a0:cf:00:21:9b:da:be:42:dd: a0:da:05:cb:5a:b5:cb:b8:44:f1:db:b7:88:60:ee:9f:3a:69: a0:cf:d2:92:56:98:c4:cf:07:ac:4a:4d:0f:d6:fc:ea:30:0c: 67:19:99:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwNDE3MDcwNTIyWhcNMjYwNDI0MDcwNTIyWjAYMRYwFAYD VQQDEw02OWUxZGJiMi1kNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvXY0y2wBSJbAYTJxEsy+/EKj5l1zhw5rqp1th65o/ALai7QWQBeabGHvwts jdvA2ZEcu/D8kY1LieIysYWKuC0tMBR1fC62E+OxrAtyMy4AX9roP+zWDy8oZD74 gWWVor1mHWBFsL2v5vfOMdZ8BIyNCJZe8YJCgFdDWwVute6YE+3XloJeFaGWnK5C rufgcYYGu0vFQC2b5Wetzu7atknWlrZ7qh1COCttMjQAj2bowzBtDmynCiHDoIw3 l0COux6z5cbHP/NeMFut3B2vTzxCUF77Wn6D+XCDjN+4R9pb8ToH2zH3oLTFQbOU 2jSad87YmU8N7cNKpkHSbt/IqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGu1Kd9+ wOODOdCYbxoNXD7TLdjpMB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0EUpBSBAO0tQ2SQEejQA3y70t4st/aTXdVPBYBaH1WzyIMFBL17+6KQlHla6 eypsBGQskdRYKdvyUXXWDu3F9phvqv9+vUf+TMfMnWanoyvUw1hOuWSm9+2UIG/n jUsVMMJ1SiTh5Px8nqNA1/hiFgZl/CwmK71GkiBw3C7XwLsJFme/rCvP27V3BxNj p9nwvgSuCTL20Hn8mFzviBxbEpflP4qdg2u1t3+cI0GUCl78yQV9fQzL42JDj6ks k84wSNf665+VQhGGR3OybaUWoM8AIZvavkLdoNoFy1q1y7hE8du3iGDunzppoM/S klaYxM8HrEpND9b86jAMZxmZdg== -----END CERTIFICATE-----Generated at Fri Apr 17 20:07:30 2026 by rpki-client