$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: KO72G7Eot4gl/PL9qaC45m7NH7zD72Rqj6PGFTZRgFI= Subject key identifier: E2:A0:FB:91:7C:D5:E4:09:C9:45:D1:BA:90:1F:12:06:B9:E5:70:3A Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 86 Signing time: Sun 01 Mar 2026 08:58:34 +0000 Manifest this update: Sun 01 Mar 2026 08:58:34 +0000 Manifest next update: Sun 08 Mar 2026 08:58:34 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: Nw+nEC/lb8wNuK1tiMyqwndyCa5iK47XKeHFrgV+Jwk=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: /QLzHLc4Bljeytqfm2ftMcWADN1qUL1XXdTe5GG/zUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Mar 1 08:58:34 2026 GMT Not After : Mar 8 08:58:34 2026 GMT Subject: CN=69a3ffba-8d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:a9:b4:c9:c2:0c:5c:5f:fb:83:89:21:73: e7:8d:70:f1:f6:11:9e:26:fd:57:34:e0:ea:88:ff: 3f:6f:07:97:62:37:22:70:83:77:22:a3:dc:d6:36: 4a:50:cd:aa:4d:ea:5b:5a:f7:03:a0:59:88:71:85: 5a:07:76:90:39:99:84:8d:9b:0a:ff:d2:03:75:86: 5c:c3:40:36:71:b0:c9:19:f2:b9:ed:b2:e7:69:68: 6d:c3:fd:82:0b:cb:be:0f:b3:61:a1:03:27:28:45: e4:5e:60:db:91:cc:76:e3:22:0b:52:6e:a0:22:34: e9:eb:ea:8c:82:fe:9c:b9:c6:d1:2b:c8:5c:de:c9: 67:56:8d:24:49:a9:2e:2a:10:29:25:bf:3a:7b:67: 96:79:b6:50:bf:ae:2f:33:0f:56:b4:92:2b:c2:e5: c7:a8:4a:1e:e1:a6:ae:1d:e7:9e:4f:91:ab:f0:f3: cb:99:a9:8d:43:57:6b:a8:a4:21:8c:fe:f1:fc:d5: 2a:79:9f:e6:79:cb:85:97:62:d4:a9:c2:48:85:de: f9:46:2f:93:c0:73:35:69:5a:98:45:11:e3:dd:4e: f7:4c:e3:73:82:c4:de:cd:90:57:a5:e4:50:40:a0: ff:f2:2c:22:60:56:51:34:3e:55:38:b1:16:da:36: d0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A0:FB:91:7C:D5:E4:09:C9:45:D1:BA:90:1F:12:06:B9:E5:70:3A X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:be:b8:9f:a4:23:4f:8b:22:22:7d:76:d6:e5:2e:94:1f:de: a8:70:4c:6c:07:1a:45:16:af:a5:86:c7:4d:58:37:a7:bb:12: ed:e4:63:34:e6:a2:0c:6a:0a:69:a6:ea:d2:a3:12:2a:4c:de: 42:c1:8b:e2:fc:8d:57:15:dc:74:15:c3:ab:16:ce:0a:86:34: d4:a9:a8:77:d2:73:7e:c2:e0:2b:e4:4a:df:72:03:ec:7f:13: 10:8b:3e:d4:7b:a4:2e:00:f2:7c:bc:3c:7a:3f:c4:03:d9:d1: e1:f9:b0:e9:77:6c:5d:8f:36:24:51:80:7d:b7:8b:23:3a:2d: 70:16:e4:6e:cc:52:bd:c5:e4:48:ed:51:3c:45:ee:bf:8d:d6: b9:08:71:84:91:b6:cd:cf:f8:f3:da:c0:42:d7:8f:b2:32:b4: 50:d4:1d:ff:45:73:fe:83:84:bb:22:40:4a:11:ce:31:ab:06: 55:2e:c0:e2:37:e3:51:26:aa:2f:c1:5c:ed:ff:3e:84:90:5a: a8:11:c3:72:58:c0:00:d7:f7:d7:3b:28:d0:c9:a2:ee:36:ec: 63:03:9c:af:cd:17:34:d3:c2:0d:54:68:9a:fc:ee:38:ad:46: 2c:b1:29:3f:e0:1a:0c:61:72:39:07:68:58:c8:5b:1c:3b:0f: d9:45:93:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQwNTMxMTAvBgNVBAUTKDcyMEFBNjZGMzZDMTQ2MEFENEJDM0FDNjkyRjk2NUI3 MTc0QTU4RTAwHhcNMjYwMzAxMDg1ODM0WhcNMjYwMzA4MDg1ODM0WjAYMRYwFAYD VQQDEw02OWEzZmZiYS04ZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxuptMnCDFxf+4OJIXPnjXDx9hGeJv1XNODqiP8/bweXYjcicIN3IqPc1jZK UM2qTepbWvcDoFmIcYVaB3aQOZmEjZsK/9IDdYZcw0A2cbDJGfK57bLnaWhtw/2C C8u+D7NhoQMnKEXkXmDbkcx24yILUm6gIjTp6+qMgv6cucbRK8hc3slnVo0kSaku KhApJb86e2eWebZQv64vMw9WtJIrwuXHqEoe4aauHeeeT5Gr8PPLmamNQ1drqKQh jP7x/NUqeZ/mecuFl2LUqcJIhd75Ri+TwHM1aVqYRRHj3U73TONzgsTezZBXpeRQ QKD/8iwiYFZRND5VOLEW2jbQqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOKg+5F8 1eQJyUXRupAfEga55XA6MB8GA1UdIwQYMBaAFHIKpm82wUYK1Lw6xpL5ZbcXSljg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDA1My8zNjQwQ0I5NDUw RTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJnclV2RHJHa3ZsbHR4ZEtX T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9jZ3FtYnpiQlJn clV2RHJHa3ZsbHR4ZEtXT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGr64n6QjT4siIn121uUulB/eqHBMbAcaRRavpYbHTVg3p7sS7eRjNOaiDGoK aabq0qMSKkzeQsGL4vyNVxXcdBXDqxbOCoY01Kmod9JzfsLgK+RK33ID7H8TEIs+ 1HukLgDyfLw8ej/EA9nR4fmw6XdsXY82JFGAfbeLIzotcBbkbsxSvcXkSO1RPEXu v43WuQhxhJG2zc/489rAQtePsjK0UNQd/0Vz/oOEuyJAShHOMasGVS7A4jfjUSaq L8Fc7f8+hJBaqBHDcljAANf31zso0Mmi7jbsYwOcr80XNNPCDVRomvzuOK1GLLEp P+AaDGFyOQdoWMhbHDsP2UWTeg== -----END CERTIFICATE-----Generated at Mon Mar 2 17:14:36 2026 by rpki-client