$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: fSIcRKuUek8X4pLxs797bGvmomREGK1rSUvTHR4uXmE= Subject key identifier: EC:73:81:0F:57:D8:63:10:7A:78:8E:5D:5B:06:14:A0:61:AF:16:86 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 01C2 Signing time: Sun 05 Apr 2026 03:17:19 +0000 Manifest this update: Sun 05 Apr 2026 03:17:18 +0000 Manifest next update: Sun 12 Apr 2026 03:17:18 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: /W13MSP+d3kBDIC/mIOvlqIBITMoiJ/hlDyx9ox54ig=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 3tWo+TxjvNRfazBkfrqsYl15Cz/V8ipCTw/38p8PqXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Apr 5 03:17:18 2026 GMT Not After : Apr 12 03:17:18 2026 GMT Subject: CN=69d1d43f-590a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:3d:78:17:f9:8b:4e:fe:b3:94:b0:7a:89: cc:90:c3:34:2f:46:50:a2:96:5b:58:b6:aa:a6:6a: bd:8a:ce:0c:1a:a4:6e:ea:6f:72:8b:33:11:95:b1: a2:b9:a3:50:7f:f4:06:bf:75:9a:14:03:b4:20:6d: 1d:e5:73:b3:5a:1d:4b:04:18:62:c1:a9:6e:cb:19: 46:a4:40:e5:8d:f3:51:9c:1a:8c:3d:17:6e:e1:d3: e0:24:80:9a:86:21:42:1b:a4:1c:a3:3c:0f:78:0e: 8b:91:9d:51:1b:59:1b:58:50:97:dc:60:b0:1e:c8: 85:48:10:2a:81:49:78:d6:89:db:31:66:fc:e9:3e: a7:d7:af:81:43:16:c9:4f:1d:a0:85:c5:f9:80:e7: 3d:d7:7e:5b:45:09:e6:42:69:c3:fc:71:b3:db:10: e8:4d:f9:c2:39:33:6d:5b:e1:9e:45:b4:1e:f9:27: be:64:c0:a2:2f:50:77:82:1a:d9:44:d7:fe:19:b9: cf:49:67:20:f6:ef:a9:d1:01:df:0f:f8:b2:43:d4: 18:87:ee:f1:39:94:06:47:20:7f:63:3c:04:93:92: 07:4c:a6:82:92:83:c6:c6:c7:f6:fe:5c:62:5b:85: 6d:03:ff:57:77:3d:3d:ab:ee:f0:e3:1d:c5:4d:66: 13:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:73:81:0F:57:D8:63:10:7A:78:8E:5D:5B:06:14:A0:61:AF:16:86 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ef:31:9a:bf:54:40:48:50:81:84:bf:9b:c8:9f:ec:4b:67: a3:be:d4:6d:79:a4:f1:75:3d:86:57:79:a8:8a:4c:cc:d5:4a: e9:ad:48:48:ca:25:42:01:40:1f:c2:9d:25:ee:bb:0e:69:69: 8e:58:5c:61:f8:70:dd:59:45:6f:bb:ef:b0:15:ba:bc:d8:2a: 0b:1f:e6:f5:7d:73:7b:d9:9f:1e:72:64:37:6a:1c:c1:65:e5: 97:b9:90:89:6f:90:11:33:8a:a1:06:df:a0:e4:a2:22:26:ed: c8:25:00:82:86:d8:a9:f4:cd:c8:66:0d:1a:3e:9c:08:eb:8a: e6:1a:4f:19:54:17:00:b7:53:a9:81:b6:03:b8:f7:a0:5e:79: 78:75:33:36:60:a0:dc:ce:7b:49:72:68:23:21:06:25:fe:98: f1:5a:d6:e4:eb:0c:bc:ba:75:b6:d0:ce:d5:36:99:41:95:a8: 5a:3a:31:30:37:6c:60:f9:66:48:f5:11:43:d4:07:eb:fc:8c: be:62:85:21:e6:80:21:58:cc:ae:22:e8:4b:1a:96:57:21:46: 0d:a1:6e:e8:e8:2d:32:6b:e1:60:87:86:37:87:a6:9b:96:03: 9c:fc:59:bf:de:57:a5:6c:37:54:05:85:44:9c:ca:8a:23:62: 0e:a2:ed:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjYwNDA1MDMxNzE4WhcNMjYwNDEyMDMxNzE4WjAYMRYwFAYD VQQDEw02OWQxZDQzZi01OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2w9eBf5i07+s5SweonMkMM0L0ZQopZbWLaqpmq9is4MGqRu6m9yizMRlbGi uaNQf/QGv3WaFAO0IG0d5XOzWh1LBBhiwaluyxlGpEDljfNRnBqMPRdu4dPgJICa hiFCG6QcozwPeA6LkZ1RG1kbWFCX3GCwHsiFSBAqgUl41onbMWb86T6n16+BQxbJ Tx2ghcX5gOc9135bRQnmQmnD/HGz2xDoTfnCOTNtW+GeRbQe+Se+ZMCiL1B3ghrZ RNf+GbnPSWcg9u+p0QHfD/iyQ9QYh+7xOZQGRyB/YzwEk5IHTKaCkoPGxsf2/lxi W4VtA/9Xdz09q+7w4x3FTWYTiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxzgQ9X 2GMQeniOXVsGFKBhrxaGMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATe8xmr9UQEhQgYS/m8if7Etno77UbXmk8XU9hld5qIpMzNVK6a1ISMolQgFA H8KdJe67DmlpjlhcYfhw3VlFb7vvsBW6vNgqCx/m9X1ze9mfHnJkN2ocwWXll7mQ iW+QETOKoQbfoOSiIibtyCUAgobYqfTNyGYNGj6cCOuK5hpPGVQXALdTqYG2A7j3 oF55eHUzNmCg3M57SXJoIyEGJf6Y8VrW5OsMvLp1ttDO1TaZQZWoWjoxMDdsYPlm SPURQ9QH6/yMvmKFIeaAIVjMriLoSxqWVyFGDaFu6OgtMmvhYIeGN4emm5YDnPxZ v95XpWw3VAWFRJzKiiNiDqLtGA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:46 2026 by rpki-client