$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft File: cq-668ns3aLu0tSbE-YEjqPkHmA.mft (raw, json) Hash identifier: 0jWPitB5jVpPKcssate3iBTxEuqxK9QRFs3rVlTBgv8= Subject key identifier: C4:20:10:48:D5:2D:44:E9:81:7C:17:FF:23:5B:FA:4C:E5:E9:F6:B7 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 223B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft Manifest number: 2200 Signing time: Sat 28 Feb 2026 15:55:54 +0000 Manifest this update: Sat 28 Feb 2026 15:55:54 +0000 Manifest next update: Sat 07 Mar 2026 15:55:54 +0000 Files and hashes: 1: cq-668ns3aLu0tSbE-YEjqPkHmA.crl (hash: ZrfgPpO+jGUDKYFpVxsQ7rsWrM/c389EcRI5JSKnABM=) 2: 0F0824DED28311EDB1655152C4F9AE02.roa (hash: dz1GvojNAIHZyqW3h8Y6bP+YBH4Rk6bXASQ1x7rYr58=) 3: E50E6E14B63411EDB4416786C4F9AE02.roa (hash: FmtBKEomkwEsg09oOugyzChandkcrHCKNwzoO1agNsg=) 4: AB9E7432714911EEBF95153CC4F9AE02.roa (hash: lgOGf6vXQs55zxCogd+pRQs87jNu5Yd5pLF5QPR8QMk=) 5: EEFB07CCB8A311ED8F694046C4F9AE02.roa (hash: cgIrr8o9jTXMbYMAZf1J8wAI/DfnpUQHzKHIr7ZgI6c=) 6: 1C628A90671411EEA0040661C4F9AE02.roa (hash: CTvIhXrCtBos/LVoBMmH2P68ViNfFaDxoAYBDmOA96g=) 7: E9DE96C44C3611EEA9D59630C4F9AE02.roa (hash: PC1UpxkrsO/0WXvqCVPit0ma41SpwfY7b5bjQTzVpWQ=) 8: 0FB07E54D28311EDB1655152C4F9AE02.roa (hash: V6pTdi9Go4VZBEN3XXIn2lnRjqLUf2zngAhmgO8tgA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8763 (0x223b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Feb 28 15:55:54 2026 GMT Not After : Mar 7 15:55:54 2026 GMT Subject: CN=69a3100a-61ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b5:7a:79:b7:f8:48:86:6c:d8:15:96:10:5a: 17:2c:a3:5c:a6:83:90:ac:5f:07:ee:d5:6e:82:67: a8:d9:3e:ee:bf:52:f2:aa:57:a1:7a:13:84:7e:7e: 4c:91:3c:eb:c4:d5:b1:87:76:ee:33:1c:41:aa:05: d3:0f:3f:5c:d1:9a:b6:29:85:2f:7f:f1:9b:01:d1: a4:e7:46:b9:e4:22:8e:a9:9b:25:b3:4a:ec:8c:64: 54:6f:ef:18:aa:a4:7b:a0:d2:a0:97:38:dc:fd:0f: 9d:b3:40:c4:fd:ed:bc:f8:78:4c:bf:99:10:84:5d: fb:2f:5a:71:de:6b:73:d9:c8:af:b3:f0:3c:20:ce: bb:cd:13:4d:65:bf:3f:b7:dc:98:11:3c:79:6f:01: 58:0b:cc:79:0e:41:69:89:a9:90:b5:bf:86:67:a1: 52:c5:d1:d0:00:7c:83:5e:95:ff:d2:d7:ba:e5:02: f3:91:aa:34:b0:88:b0:8f:00:d2:c6:b5:a5:99:41: 42:cf:41:9b:38:bc:60:5e:52:94:92:79:5c:5b:6d: 7b:26:66:3c:89:df:3b:b6:dd:7a:8e:dc:68:1b:53: c4:33:59:39:dd:b8:53:34:d9:14:2e:e9:d6:06:d1: f8:a1:fc:9e:0e:2f:ba:fc:73:5d:d1:cd:a3:a2:e8: dd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:20:10:48:D5:2D:44:E9:81:7C:17:FF:23:5B:FA:4C:E5:E9:F6:B7 X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:5d:59:4b:66:4c:2f:7a:fb:c9:e5:f4:39:36:df:8a:6e:be: a8:77:86:03:96:19:0c:c3:63:4b:f7:b2:99:dc:cb:f3:4e:a9: 22:ad:0b:ea:c4:5f:a5:d7:8a:f8:6a:c3:78:5c:ae:08:1d:b9: dd:3a:e1:99:d7:7a:25:27:e2:43:76:4d:45:66:e2:48:98:a6: fc:11:a7:b3:82:03:26:1f:38:fb:91:6b:d7:b4:c2:c6:3d:78: 03:05:75:69:40:8d:6f:da:81:58:42:20:e5:5c:73:7b:61:27: cc:13:bd:e8:a8:79:49:c7:f0:ca:9a:e2:f2:ae:da:87:7a:08: aa:53:42:9e:16:9e:2c:1b:f4:03:86:38:6f:e9:94:d6:87:4c: 40:c8:80:38:4d:40:e6:7b:ee:67:16:2f:41:25:30:6b:dc:3a: 1e:66:35:94:4c:78:e2:f7:c1:36:72:c5:dd:58:52:58:16:51: 6a:38:47:42:ea:47:32:d6:b9:be:4d:24:ca:ab:82:5a:33:9d: 5a:41:b9:c0:d3:b1:ad:30:a5:c6:d6:56:e2:af:d2:ef:d5:7f: 70:bd:c1:6d:cb:c2:26:99:0e:f8:38:25:25:0b:5c:05:2a:f7: c7:fd:ba:7d:9b:33:a6:72:db:05:cf:31:78:76:34:47:6a:92: 82:7d:23:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwMjI4MTU1NTU0WhcNMjYwMzA3MTU1NTU0WjAYMRYwFAYD VQQDDA02OWEzMTAwYS02MWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7V6ebf4SIZs2BWWEFoXLKNcpoOQrF8H7tVugmeo2T7uv1LyqlehehOEfn5M kTzrxNWxh3buMxxBqgXTDz9c0Zq2KYUvf/GbAdGk50a55CKOqZsls0rsjGRUb+8Y qqR7oNKglzjc/Q+ds0DE/e28+HhMv5kQhF37L1px3mtz2civs/A8IM67zRNNZb8/ t9yYETx5bwFYC8x5DkFpiamQtb+GZ6FSxdHQAHyDXpX/0te65QLzkao0sIiwjwDS xrWlmUFCz0GbOLxgXlKUknlcW217JmY8id87tt16jtxoG1PEM1k53bhTNNkULunW BtH4ofyeDi+6/HNd0c2joujd3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMQgEEjV LUTpgXwX/yNb+kzl6fa3MB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC9CQUUxMDhDNEVBNjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNh THUwdFNiRS1ZRWpxUGtIbUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPF1ZS2ZML3r7yeX0OTbfim6+qHeGA5YZDMNjS/eymdzL806pIq0L6sRfpdeK +GrDeFyuCB253Trhmdd6JSfiQ3ZNRWbiSJim/BGns4IDJh84+5Fr17TCxj14AwV1 aUCNb9qBWEIg5Vxze2EnzBO96Kh5Scfwypri8q7ah3oIqlNCnhaeLBv0A4Y4b+mU 1odMQMiAOE1A5nvuZxYvQSUwa9w6HmY1lEx44vfBNnLF3VhSWBZRajhHQupHMta5 vk0kyquCWjOdWkG5wNOxrTClxtZW4q/S79V/cL3BbcvCJpkO+DglJQtcBSr3x/26 fZszpnLbBc8xeHY0R2qSgn0jpg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:12:11 2026 by rpki-client