$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft File: cq-668ns3aLu0tSbE-YEjqPkHmA.mft (raw, json) Hash identifier: veYOSe/i246UwIhJvjUY/o21PEy2Fi3TxrJQVSEOklA= Subject key identifier: 80:4B:53:00:54:D7:11:C1:22:12:BE:30:73:12:EC:E4:B8:B5:5B:53 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft Manifest number: 221D Signing time: Thu 16 Apr 2026 15:51:30 +0000 Manifest this update: Thu 16 Apr 2026 15:51:30 +0000 Manifest next update: Thu 23 Apr 2026 15:51:30 +0000 Files and hashes: 1: cq-668ns3aLu0tSbE-YEjqPkHmA.crl (hash: Cpal7CnRWs6n6cCeX7EeMlTMb3i9XyTuJch7S9kwKmI=) 2: 0F0824DED28311EDB1655152C4F9AE02.roa (hash: YxBTBicabikn08Aqg/dvf+PsgRQVrImZt4AAt8rvHnc=) 3: EEFB07CCB8A311ED8F694046C4F9AE02.roa (hash: V2GgiDiVdp7icGNp8uei2QdYQy4qfASwmRrufFn1mxg=) 4: 1C628A90671411EEA0040661C4F9AE02.roa (hash: M0M27e7jpHMqjXXvltEuadHWRQl0UpCUB3Q3dSoBa+I=) 5: E9DE96C44C3611EEA9D59630C4F9AE02.roa (hash: v4lm1t03b9gy+zkyAg0MsXuQLEziIg1Uau5peZt74RY=) 6: AB9E7432714911EEBF95153CC4F9AE02.roa (hash: Bbmi/J5Lpn7aHAntaVp/ckgJSOlUGXUjQqXrthSWKgU=) 7: 0FB07E54D28311EDB1655152C4F9AE02.roa (hash: 3IlwneiT3OIjV7tuhT2g5I0grdOyE91JkHSLmUB2BEY=) 8: E50E6E14B63411EDB4416786C4F9AE02.roa (hash: KYaSzwf1L2QkO+jOOMTkJ2kvbpBzCO+jKOwM50VbrBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8820 (0x2274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Apr 16 15:51:30 2026 GMT Not After : Apr 23 15:51:30 2026 GMT Subject: CN=69e10582-f0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:aa:0d:1a:13:c7:79:59:f1:3d:7c:00:88:a0: ec:3f:9d:fb:17:f3:7c:ed:9a:32:96:45:70:c2:5e: 43:9f:43:94:54:bb:2d:ab:6c:42:3c:f5:0a:06:3a: e0:8e:dd:12:b6:85:d5:30:30:2c:21:f9:ed:64:70: e6:88:5c:76:a6:56:7e:3a:6a:f5:b3:fb:67:49:13: 18:dc:4a:16:dc:3b:8c:48:6e:a0:55:4b:72:56:85: c5:7a:a3:79:2c:27:e1:4c:13:03:2d:cc:1e:b3:5e: 01:4d:b3:e4:8a:6f:d0:54:0c:99:af:6e:c0:fb:94: 96:b1:88:bb:ca:1d:bb:c6:b6:47:0d:24:45:69:13: 27:86:de:39:56:52:98:e9:6d:39:b0:9b:54:32:18: 4e:c9:98:68:0c:f4:50:40:aa:4b:f7:b7:21:4b:29: bd:87:c0:bd:4a:85:54:8e:37:ba:a1:a2:d9:e2:27: 38:0d:7b:cf:00:7b:1f:14:fc:46:4b:7d:c9:a6:aa: 8a:dc:dd:f2:55:73:37:3b:74:1b:9e:73:bc:85:01: 31:6d:3d:c0:69:5f:3c:c4:b7:fa:b6:33:e2:b2:dd: e0:15:c6:f1:13:f1:ff:20:2d:7a:0c:26:e0:c0:a7: c9:b0:06:07:1f:37:32:65:e0:75:67:22:92:dd:f3: 31:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:4B:53:00:54:D7:11:C1:22:12:BE:30:73:12:EC:E4:B8:B5:5B:53 X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:18:89:1a:cf:5b:b8:3b:ed:2b:79:ad:ab:9a:ce:b0:01:6f: 43:86:55:e3:24:f2:17:61:fc:14:ca:78:53:81:a5:73:9a:6c: ce:15:cb:97:33:98:f3:d3:31:60:97:2b:e2:aa:bb:87:9f:4c: 89:4b:fd:f3:be:18:88:c0:da:7d:d9:1e:51:ab:25:9a:46:bd: 73:d4:22:4c:63:e0:3a:ab:28:64:c2:8b:7c:27:52:db:cd:e7: aa:24:f3:c0:a4:78:98:ef:56:fd:ae:f6:0f:db:dc:b5:01:6d: 94:32:8a:04:25:5f:93:68:3d:9f:a1:49:7a:dd:ce:29:f0:57: 8a:57:29:7a:5c:17:56:7c:07:db:3e:e1:e4:6d:16:cc:3a:65: 58:29:a6:f5:01:e6:8d:d4:ed:9b:7e:c1:f3:6e:f0:e2:16:b9: d5:71:29:a6:ce:d7:c2:73:3c:ba:89:ef:e4:bd:a4:63:82:16: 18:ac:31:68:26:e5:5f:d1:d4:f3:d8:73:6b:18:d5:0d:1a:ac: 77:a8:4d:80:92:b0:c8:a7:4a:55:cc:1b:89:cb:43:c3:d6:19: 0c:46:55:5e:0d:78:bc:d3:27:26:34:be:94:09:27:ea:0a:d0: ed:70:f9:b6:b1:67:09:de:53:17:56:48:b1:ab:c9:8e:cc:75: f7:d6:90:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICInQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwNDE2MTU1MTMwWhcNMjYwNDIzMTU1MTMwWjAYMRYwFAYD VQQDEw02OWUxMDU4Mi1mMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqoNGhPHeVnxPXwAiKDsP537F/N87ZoylkVwwl5Dn0OUVLstq2xCPPUKBjrg jt0StoXVMDAsIfntZHDmiFx2plZ+Omr1s/tnSRMY3EoW3DuMSG6gVUtyVoXFeqN5 LCfhTBMDLcwes14BTbPkim/QVAyZr27A+5SWsYi7yh27xrZHDSRFaRMnht45VlKY 6W05sJtUMhhOyZhoDPRQQKpL97chSym9h8C9SoVUjje6oaLZ4ic4DXvPAHsfFPxG S33JpqqK3N3yVXM3O3QbnnO8hQExbT3AaV88xLf6tjPist3gFcbxE/H/IC16DCbg wKfJsAYHHzcyZeB1ZyKS3fMxrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIBLUwBU 1xHBIhK+MHMS7OS4tVtTMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC9CQUUxMDhDNEVBNjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNh THUwdFNiRS1ZRWpxUGtIbUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnBiJGs9buDvtK3mtq5rOsAFvQ4ZV4yTyF2H8FMp4U4Glc5pszhXLlzOY89Mx YJcr4qq7h59MiUv9874YiMDafdkeUaslmka9c9QiTGPgOqsoZMKLfCdS283nqiTz wKR4mO9W/a72D9vctQFtlDKKBCVfk2g9n6FJet3OKfBXilcpelwXVnwH2z7h5G0W zDplWCmm9QHmjdTtm37B827w4ha51XEpps7XwnM8uonv5L2kY4IWGKwxaCblX9HU 89hzaxjVDRqsd6hNgJKwyKdKVcwbictDw9YZDEZVXg14vNMnJjS+lAkn6grQ7XD5 trFnCd5TF1ZIsavJjsx199aQgQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:40:39 2026 by rpki-client