$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: oNESBgP2VgMiWUnByzV7s+bnCkfQmTjvbvaAAiY/aUY= Subject key identifier: 3C:FE:5C:8C:FD:87:2F:01:77:D2:B6:89:2D:6B:AC:CC:BD:33:11:E6 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 01D9 Signing time: Thu 21 May 2026 03:35:03 +0000 Manifest this update: Thu 21 May 2026 03:35:03 +0000 Manifest next update: Thu 28 May 2026 03:35:03 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: PZEkZ3NRdEZva/20yjrZuiz6l5J9D6jbJqu1mc/2aTk=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 3tWo+TxjvNRfazBkfrqsYl15Cz/V8ipCTw/38p8PqXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: May 21 03:35:03 2026 GMT Not After : May 28 03:35:03 2026 GMT Subject: CN=6a0e7d67-f715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:42:3c:3d:ef:25:14:04:d2:4a:37:00:c9:74: 2b:95:7c:bd:c9:38:34:af:b4:4c:d8:bb:e0:c0:f8: 33:ea:13:8a:e1:b3:b9:5e:d4:55:e2:1e:71:e0:20: a7:a8:84:cc:c6:1d:2e:43:43:bf:9d:cc:6f:51:26: e5:db:a1:ba:c0:b6:3c:99:d8:ca:71:a9:a1:0e:65: bf:f4:ad:93:f5:97:2f:dc:c2:d0:bc:8b:74:95:02: b6:63:83:3a:56:ca:2c:88:30:dd:ae:d5:53:4c:20: 24:67:5c:5a:5f:68:c7:68:7d:d6:70:25:d7:90:82: 58:cf:75:d0:6d:d6:a2:30:d6:4f:fa:3e:a8:73:63: 4b:6e:7e:5e:21:37:25:9b:da:9f:90:b0:65:87:07: 1f:30:2e:f5:3c:26:9d:09:f7:08:77:c4:20:6d:61: 4b:a5:df:7f:36:46:ae:3d:45:a4:9c:bc:5b:57:15: b4:2c:48:82:cc:d8:e5:2b:b5:50:61:90:bf:4f:92: c1:14:95:f4:26:39:a8:65:53:b5:3a:37:d7:80:fc: 2b:d4:57:6c:1d:1b:36:95:91:9e:b1:2c:8a:d4:1b: 0f:9b:5a:dc:d3:8a:61:11:6a:3e:a8:cf:5e:5b:c4: b7:e5:5e:ca:7b:c4:e7:16:a7:30:e1:5e:10:a8:02: 4f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:FE:5C:8C:FD:87:2F:01:77:D2:B6:89:2D:6B:AC:CC:BD:33:11:E6 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:88:e2:8d:ee:ef:9e:d1:31:8d:ad:fd:6c:8d:39:c8:c3:2b: f5:6f:e8:16:fb:73:a5:3c:62:5e:ed:72:32:df:cb:25:12:85: 46:ec:17:43:18:3c:44:e6:6a:1c:f4:62:08:6c:51:82:24:62: 6c:c8:a5:40:06:b7:ec:0d:ca:d9:81:d1:20:26:27:08:cb:a7: 49:11:25:1c:f0:ff:be:25:3d:1a:68:fe:07:57:b5:a4:2e:9b: dd:b6:a8:93:ad:70:86:17:e7:bb:86:8c:64:3b:f2:12:1d:01: 37:db:d6:65:95:dc:d1:97:8d:4a:6c:b8:a0:84:06:85:86:ce: 8c:da:f2:b3:ea:c9:aa:f5:d7:26:d4:a9:a3:21:4b:8f:88:5d: 67:af:d8:92:50:f6:e1:7c:46:16:89:c2:4c:33:2e:08:64:18: fa:f8:d1:2e:09:3a:05:2f:f4:b8:70:29:38:2c:35:d7:be:2e: 2c:68:ed:a8:b5:cb:e0:4c:a6:f0:82:05:73:ce:8e:b3:fa:aa: 9c:fd:56:79:74:89:7c:1a:78:53:ad:39:ae:0b:8d:f6:e1:f4: f7:24:9d:07:c2:05:82:6c:d9:94:e7:97:b1:0a:ff:07:6d:36: 30:30:ab:8a:ed:b9:98:80:5d:72:f1:9b:0c:18:06:32:43:b5: be:bf:fa:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjYwNTIxMDMzNTAzWhcNMjYwNTI4MDMzNTAzWjAYMRYwFAYD VQQDEw02YTBlN2Q2Ny1mNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0I8Pe8lFATSSjcAyXQrlXy9yTg0r7RM2LvgwPgz6hOK4bO5XtRV4h5x4CCn qITMxh0uQ0O/ncxvUSbl26G6wLY8mdjKcamhDmW/9K2T9Zcv3MLQvIt0lQK2Y4M6 VsosiDDdrtVTTCAkZ1xaX2jHaH3WcCXXkIJYz3XQbdaiMNZP+j6oc2NLbn5eITcl m9qfkLBlhwcfMC71PCadCfcId8QgbWFLpd9/NkauPUWknLxbVxW0LEiCzNjlK7VQ YZC/T5LBFJX0JjmoZVO1OjfXgPwr1FdsHRs2lZGesSyK1BsPm1rc04phEWo+qM9e W8S35V7Ke8TnFqcw4V4QqAJPHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDz+XIz9 hy8Bd9K2iS1rrMy9MxHmMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEojije7vntExja39bI05yMMr9W/oFvtzpTxiXu1yMt/LJRKFRuwXQxg8ROZq HPRiCGxRgiRibMilQAa37A3K2YHRICYnCMunSRElHPD/viU9Gmj+B1e1pC6b3bao k61whhfnu4aMZDvyEh0BN9vWZZXc0ZeNSmy4oIQGhYbOjNrys+rJqvXXJtSpoyFL j4hdZ6/YklD24XxGFonCTDMuCGQY+vjRLgk6BS/0uHApOCw1174uLGjtqLXL4Eym 8IIFc86Os/qqnP1WeXSJfBp4U605rguN9uH09ySdB8IFgmzZlOeXsQr/B202MDCr iu25mIBdcvGbDBgGMkO1vr/6eg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:31 2026 by rpki-client