$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft File: cq-668ns3aLu0tSbE-YEjqPkHmA.mft (raw, json) Hash identifier: 6oI333IrIAvyzkgs7xBG0GxygodXogwrnKY7P8K5NnI= Subject key identifier: 95:0C:B8:EA:2B:69:AA:D7:44:0F:31:04:F2:78:FF:D0:55:62:C1:2C Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft Manifest number: 223A Signing time: Fri 12 Jun 2026 15:51:42 +0000 Manifest this update: Fri 12 Jun 2026 15:51:42 +0000 Manifest next update: Fri 19 Jun 2026 15:51:42 +0000 Files and hashes: 1: cq-668ns3aLu0tSbE-YEjqPkHmA.crl (hash: Nm/O+ErwCRJwHG/bzQJGjv6yps5+frdjcoUPmeGS6EI=) 2: 0FB07E54D28311EDB1655152C4F9AE02.roa (hash: 3IlwneiT3OIjV7tuhT2g5I0grdOyE91JkHSLmUB2BEY=) 3: E9DE96C44C3611EEA9D59630C4F9AE02.roa (hash: v4lm1t03b9gy+zkyAg0MsXuQLEziIg1Uau5peZt74RY=) 4: AB9E7432714911EEBF95153CC4F9AE02.roa (hash: Bbmi/J5Lpn7aHAntaVp/ckgJSOlUGXUjQqXrthSWKgU=) 5: EEFB07CCB8A311ED8F694046C4F9AE02.roa (hash: V2GgiDiVdp7icGNp8uei2QdYQy4qfASwmRrufFn1mxg=) 6: 1C628A90671411EEA0040661C4F9AE02.roa (hash: M0M27e7jpHMqjXXvltEuadHWRQl0UpCUB3Q3dSoBa+I=) 7: E50E6E14B63411EDB4416786C4F9AE02.roa (hash: KYaSzwf1L2QkO+jOOMTkJ2kvbpBzCO+jKOwM50VbrBw=) 8: 0F0824DED28311EDB1655152C4F9AE02.roa (hash: YxBTBicabikn08Aqg/dvf+PsgRQVrImZt4AAt8rvHnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8849 (0x2291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Jun 12 15:51:42 2026 GMT Not After : Jun 19 15:51:42 2026 GMT Subject: CN=6a2c2b0e-3e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2b:f5:98:1b:2c:75:e7:15:88:8f:f2:b9:d8: ca:d2:dd:4f:5c:5a:2f:4f:e5:df:4c:63:4e:07:16: 0f:1e:b8:5c:21:c0:6d:fb:de:83:92:f3:92:ce:1f: e9:35:4e:ca:49:b2:fa:13:38:7d:cf:ce:f8:4b:e5: c6:5a:d5:f3:58:a0:22:49:71:4b:06:5d:7d:9b:58: 22:cb:cd:5b:b0:36:06:93:af:33:eb:b9:5c:20:71: 52:4c:ae:a6:0d:3a:d8:58:6c:ff:95:12:97:97:12: 91:95:1a:ee:f9:1e:2d:d2:e7:92:39:ad:92:02:62: f3:8e:78:79:eb:91:61:f0:80:fe:74:bb:05:cd:84: 38:1f:80:77:25:c6:09:c3:8e:13:86:2f:3e:17:46: d9:2f:79:dc:34:c4:0e:63:78:2f:d1:5d:65:18:17: 79:5e:83:53:cc:b1:b3:57:46:56:c2:f6:28:05:05: 36:84:f2:15:2e:37:b2:df:19:5b:e5:44:59:f6:3f: 67:9f:70:fd:a7:fc:f9:28:c5:19:66:53:42:cd:43: 69:85:fb:f6:f1:24:fd:78:da:d3:78:a8:16:c8:76: 3b:c0:40:ee:39:11:b7:de:f1:49:8e:55:9c:1f:1e: 50:db:5d:46:dc:50:21:02:80:3d:e4:3f:1f:b5:94: d0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0C:B8:EA:2B:69:AA:D7:44:0F:31:04:F2:78:FF:D0:55:62:C1:2C X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:ea:cb:10:f8:e1:03:4d:41:30:7b:a2:e5:8d:d1:2b:cd:06: 9c:c0:5f:67:25:7f:55:23:3b:8c:e7:b2:32:06:c9:7a:aa:e4: 52:fd:89:92:f6:76:49:ca:2d:20:ea:ee:53:48:8b:b3:64:0f: 6c:41:fb:88:02:fd:ea:a2:48:85:85:7a:dd:02:5e:5f:f3:fe: d2:17:d1:0b:bf:dd:a6:db:58:14:57:62:ba:06:91:d4:10:64: 5b:41:47:06:38:67:d3:bd:9b:91:e3:4a:53:39:53:31:7e:79: 5f:38:d9:fb:6f:79:eb:f1:84:e3:19:c2:8d:87:71:b6:d3:a5: 99:d1:39:77:f9:74:bd:37:60:0f:75:d8:7f:1e:04:81:c0:56: 94:5d:d6:e6:4b:b8:04:5b:6e:d0:22:9c:44:c5:0e:a6:d5:96: 16:5c:d3:da:5f:03:47:bb:eb:8f:20:da:91:2c:f1:2e:e9:c7: 80:f1:57:ee:21:4f:d0:1a:0a:7c:e2:8f:a2:b7:38:79:27:7c: e1:a8:20:3c:69:a8:12:a0:92:b5:87:0c:c4:a0:c0:e2:77:3d: e9:67:10:82:4b:dc:9d:0f:f3:82:e4:c2:62:96:0b:12:6a:fc: ad:99:d6:d5:25:d6:df:b4:52:ab:6c:8b:60:d1:35:7a:ba:1c: 67:90:92:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwNjEyMTU1MTQyWhcNMjYwNjE5MTU1MTQyWjAYMRYwFAYD VQQDEw02YTJjMmIwZS0zZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiv1mBssdecViI/yudjK0t1PXFovT+XfTGNOBxYPHrhcIcBt+96DkvOSzh/p NU7KSbL6Ezh9z874S+XGWtXzWKAiSXFLBl19m1giy81bsDYGk68z67lcIHFSTK6m DTrYWGz/lRKXlxKRlRru+R4t0ueSOa2SAmLzjnh565Fh8ID+dLsFzYQ4H4B3JcYJ w44Thi8+F0bZL3ncNMQOY3gv0V1lGBd5XoNTzLGzV0ZWwvYoBQU2hPIVLjey3xlb 5URZ9j9nn3D9p/z5KMUZZlNCzUNphfv28ST9eNrTeKgWyHY7wEDuORG33vFJjlWc Hx5Q211G3FAhAoA95D8ftZTQnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUMuOor aarXRA8xBPJ4/9BVYsEsMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC9CQUUxMDhDNEVBNjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNh THUwdFNiRS1ZRWpxUGtIbUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb+rLEPjhA01BMHui5Y3RK80GnMBfZyV/VSM7jOeyMgbJeqrkUv2JkvZ2Scot IOruU0iLs2QPbEH7iAL96qJIhYV63QJeX/P+0hfRC7/dpttYFFdiugaR1BBkW0FH Bjhn072bkeNKUzlTMX55XzjZ+2956/GE4xnCjYdxttOlmdE5d/l0vTdgD3XYfx4E gcBWlF3W5ku4BFtu0CKcRMUOptWWFlzT2l8DR7vrjyDakSzxLunHgPFX7iFP0BoK fOKPorc4eSd84aggPGmoEqCStYcMxKDA4nc96WcQgkvcnQ/zguTCYpYLEmr8rZnW 1SXW37RSq2yLYNE1erocZ5CSUQ== -----END CERTIFICATE-----Generated at Sat Jun 13 20:02:29 2026 by rpki-client