$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: gA/Ia3k0jd/XeiKezcz0rYYff8b4kh/ZfwD3PgY+Rkk= Subject key identifier: DA:18:FC:7D:B4:42:3C:C0:83:7F:3A:ED:94:C1:5F:82:98:C7:78:08 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 01CB Signing time: Thu 12 Mar 2026 22:55:11 +0000 Manifest this update: Thu 12 Mar 2026 22:55:10 +0000 Manifest next update: Thu 19 Mar 2026 22:55:10 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: AjeKzk6QKm03FbxZQ0WO8b99Lt3ngFHi6pB+H21611Y=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: eMoNWFAjlk42wYo90tOjaYJfYKyeXSPXFsOpwUhELOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Mar 12 22:55:10 2026 GMT Not After : Mar 19 22:55:10 2026 GMT Subject: CN=69b3444f-8967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:15:2b:6a:39:e2:66:ea:f5:22:8c:8a:67:37: d3:f8:8d:df:c9:a7:ef:a3:2b:e3:13:ed:ab:98:5f: b6:a8:01:52:dc:44:7f:f1:af:9d:21:b1:59:73:03: 42:10:bc:ba:9d:94:76:1a:0e:e9:bd:08:9b:2e:db: 10:2f:9b:e7:4f:fc:5a:4f:e5:8e:b0:d9:ba:9b:b9: 7d:db:d3:ed:c4:f5:bf:a5:3a:2d:c6:7d:8a:19:ed: 48:e7:91:86:22:00:6f:4d:5c:f7:8b:68:35:a3:6c: 51:c7:14:4f:ce:c8:dd:fe:7a:4c:13:41:df:90:7e: 8c:87:ec:4b:41:64:d3:92:29:32:72:49:31:4a:6f: 64:f4:48:1e:1d:46:6d:c3:eb:ca:df:45:a5:48:0d: 94:3c:a7:e5:64:39:b6:3c:b1:c7:79:8a:2b:6f:51: f0:a7:3d:b0:68:95:64:99:fa:bd:c2:08:35:83:95: f8:9e:6c:3a:dc:19:82:2e:ba:66:67:03:9d:5d:52: e3:4c:cc:9e:f7:66:4c:24:0f:41:32:4e:c2:71:14: a7:ad:ec:c6:d4:cd:16:82:2e:54:a1:f4:21:2b:d2: 52:90:84:6a:c4:04:64:9b:5f:c0:90:0c:f0:dd:6b: e8:d0:b7:3c:94:25:61:0d:63:cf:af:59:0e:e7:23: d1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:18:FC:7D:B4:42:3C:C0:83:7F:3A:ED:94:C1:5F:82:98:C7:78:08 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:60:3b:b6:04:18:98:06:25:51:d1:a2:46:11:02:a0:a1:25: 2a:35:30:05:d1:15:d0:48:28:5a:b7:81:6d:bc:55:d7:8f:7d: f2:a7:6a:04:de:7a:69:07:9b:28:8c:20:af:58:76:70:bc:22: d9:d5:a9:1f:73:fe:3d:27:c8:9b:1d:00:4d:e9:46:06:e7:ba: 1c:65:e8:a0:55:fa:e9:0e:54:b8:e7:a2:5f:ac:0a:3a:7d:50: 28:d6:d9:04:48:10:c0:40:67:93:4e:11:d4:d8:d5:03:35:89: 1e:f5:e1:9b:85:e5:87:e6:1e:a4:ad:ef:a0:57:24:58:0d:3c: ba:ba:63:46:84:5a:df:3f:a3:3b:a8:12:a0:d2:3a:97:fe:79: 80:55:30:b2:33:7d:05:ff:0a:ef:81:0d:3d:7a:07:e8:d2:62: f7:86:1a:8e:98:d5:29:6b:f1:c1:e0:32:a0:6c:dd:7f:77:ed: 1e:13:7f:b7:61:40:db:f3:7a:27:a0:d1:ef:db:df:7a:d7:bd: 9d:f8:38:10:6f:76:64:45:9a:33:7a:31:33:71:a0:ef:ed:e6: 8d:a6:07:57:3d:86:6f:8e:fd:b3:61:ac:00:10:65:fb:0e:c4: 78:0a:6d:8f:00:dc:45:12:60:5d:c2:a8:c0:22:eb:d6:1b:1a: db:dd:83:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjYwMzEyMjI1NTEwWhcNMjYwMzE5MjI1NTEwWjAYMRYwFAYD VQQDEw02OWIzNDQ0Zi04OTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xUrajniZur1IoyKZzfT+I3fyafvoyvjE+2rmF+2qAFS3ER/8a+dIbFZcwNC ELy6nZR2Gg7pvQibLtsQL5vnT/xaT+WOsNm6m7l929PtxPW/pTotxn2KGe1I55GG IgBvTVz3i2g1o2xRxxRPzsjd/npME0HfkH6Mh+xLQWTTkikyckkxSm9k9EgeHUZt w+vK30WlSA2UPKflZDm2PLHHeYorb1Hwpz2waJVkmfq9wgg1g5X4nmw63BmCLrpm ZwOdXVLjTMye92ZMJA9BMk7CcRSnrezG1M0Wgi5UofQhK9JSkIRqxARkm1/AkAzw 3Wvo0Lc8lCVhDWPPr1kO5yPRpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNoY/H20 QjzAg3867ZTBX4KYx3gIMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJWA7tgQYmAYlUdGiRhECoKElKjUwBdEV0EgoWreBbbxV14998qdqBN56aQeb KIwgr1h2cLwi2dWpH3P+PSfImx0ATelGBue6HGXooFX66Q5UuOeiX6wKOn1QKNbZ BEgQwEBnk04R1NjVAzWJHvXhm4Xlh+YepK3voFckWA08urpjRoRa3z+jO6gSoNI6 l/55gFUwsjN9Bf8K74ENPXoH6NJi94YajpjVKWvxweAyoGzdf3ftHhN/t2FA2/N6 J6DR79vfete9nfg4EG92ZEWaM3oxM3Gg7+3mjaYHVz2Gb479s2GsABBl+w7EeApt jwDcRRJgXcKowCLr1hsa292DDg== -----END CERTIFICATE-----Generated at Fri Mar 13 09:58:20 2026 by rpki-client