$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: 0h7b/Kw0KyROHuAw/RZL8v80uZIItvVNQXBrUO6G9kA= Subject key identifier: 66:A5:0D:A3:53:2B:7C:3F:65:5D:5E:32:84:92:7C:6F:23:D4:D3:22 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B7D Signing time: Sat 04 Apr 2026 18:57:38 +0000 Manifest this update: Sat 04 Apr 2026 18:57:38 +0000 Manifest next update: Sat 11 Apr 2026 18:57:38 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: 8G9bH8pvCyqpT4F/OxHNCMlVtqhlgKrqBupbpKjy2U8=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 1+jD0Tan+qw9lGGMHwgX8x7RXas01clsSnD+5FJCfx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2963 (0xb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Apr 4 18:57:38 2026 GMT Not After : Apr 11 18:57:38 2026 GMT Subject: CN=69d15f22-5110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:dc:f8:8e:cc:80:85:18:58:3f:85:9d:3d:d1: 48:32:07:62:b9:da:97:bc:58:d7:dc:7f:47:83:c4: 3d:2e:9e:6a:f8:45:b3:82:70:13:a7:1c:34:3a:86: 1e:c3:b6:63:8a:4c:e5:67:d3:a0:ec:4a:7f:05:ec: a7:1f:8e:54:92:a4:63:0b:83:35:33:fc:4c:18:95: 9c:b8:53:44:71:e6:59:c8:d5:b9:65:a8:39:c5:5a: 25:2c:41:b1:df:fe:ea:15:68:07:21:ae:4b:a2:39: 8c:ac:c0:a3:f7:42:cd:36:98:9d:b5:f7:4c:8a:cb: eb:e3:d5:7e:62:12:78:3e:c3:70:42:65:bb:a6:65: 30:ca:e5:cd:41:ac:0a:58:63:02:24:4a:b1:a6:19: 8f:81:62:17:4d:fa:68:76:0f:2d:b8:83:ad:bb:5a: 92:8e:21:d7:95:6c:be:a0:ae:08:b7:34:48:44:ed: bd:98:e8:16:9e:dd:2b:ea:62:93:f4:50:19:c6:c9: 8f:13:ce:c8:c9:5f:f6:6d:ae:0a:5f:2a:e7:6b:53: 37:d9:77:46:e6:23:bb:8b:b7:be:8a:59:3a:d1:a6: 50:08:cf:cf:c4:61:97:b0:92:95:c7:1c:d7:3b:fb: 83:ee:68:0c:60:df:95:f6:8c:63:f6:81:d9:e6:ee: d2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A5:0D:A3:53:2B:7C:3F:65:5D:5E:32:84:92:7C:6F:23:D4:D3:22 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:87:fb:53:cb:50:9b:29:b7:07:d8:b4:af:b3:61:e2:3e:b0: 10:63:e6:d6:6b:d6:29:b3:5b:95:c9:a6:ed:8a:cb:a8:bf:8d: db:32:9b:04:6d:01:16:3f:9e:b7:a2:dc:bf:25:2b:35:7f:fc: a7:37:5a:e5:f0:36:30:c2:1a:d1:0b:c9:b0:1a:af:f1:e4:58: be:67:55:96:1e:90:e0:fa:52:05:7f:81:df:67:6a:b9:b4:66: de:77:c6:f4:f7:09:9a:dd:36:02:3a:a3:2d:14:6a:11:73:f6: a5:06:c5:f7:b8:76:f2:b2:19:58:68:e1:e9:1c:58:f5:c6:a2: 4a:91:04:38:65:1b:f3:64:a0:39:cf:66:a3:2c:9c:db:1c:b3: 59:3c:43:85:a8:e8:19:d0:e0:f0:24:55:8b:1c:d5:25:52:45: 3b:62:cb:b7:f2:fa:b5:f6:c5:c4:0c:1a:a4:11:b9:c3:20:db: 57:60:1c:60:49:1d:f0:7c:12:c1:f4:ac:fd:da:a5:a4:93:46: 70:c4:25:ba:59:b2:46:11:16:32:53:00:0b:6f:03:d9:01:4e: a8:18:3a:e9:ee:66:7d:64:a4:1a:e0:a0:bf:c5:c6:56:7d:2d: 1d:9d:b7:78:01:da:95:31:cd:74:84:56:6b:45:c7:8e:89:26: 1b:2f:0f:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjYwNDA0MTg1NzM4WhcNMjYwNDExMTg1NzM4WjAYMRYwFAYD VQQDEw02OWQxNWYyMi01MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9z4jsyAhRhYP4WdPdFIMgdiudqXvFjX3H9Hg8Q9Lp5q+EWzgnATpxw0OoYe w7ZjikzlZ9Og7Ep/BeynH45UkqRjC4M1M/xMGJWcuFNEceZZyNW5Zag5xVolLEGx 3/7qFWgHIa5LojmMrMCj90LNNpidtfdMisvr49V+YhJ4PsNwQmW7pmUwyuXNQawK WGMCJEqxphmPgWIXTfpodg8tuIOtu1qSjiHXlWy+oK4ItzRIRO29mOgWnt0r6mKT 9FAZxsmPE87IyV/2ba4KXyrna1M32XdG5iO7i7e+ilk60aZQCM/PxGGXsJKVxxzX O/uD7mgMYN+V9oxj9oHZ5u7S4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGalDaNT K3w/ZV1eMoSSfG8j1NMiMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGIf7U8tQmym3B9i0r7Nh4j6wEGPm1mvWKbNblcmm7YrLqL+N2zKbBG0BFj+e t6LcvyUrNX/8pzda5fA2MMIa0QvJsBqv8eRYvmdVlh6Q4PpSBX+B32dqubRm3nfG 9PcJmt02AjqjLRRqEXP2pQbF97h28rIZWGjh6RxY9caiSpEEOGUb82SgOc9moyyc 2xyzWTxDhajoGdDg8CRVixzVJVJFO2LLt/L6tfbFxAwapBG5wyDbV2AcYEkd8HwS wfSs/dqlpJNGcMQlulmyRhEWMlMAC28D2QFOqBg66e5mfWSkGuCgv8XGVn0tHZ23 eAHalTHNdIRWa0XHjokmGy8PTw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:11 2026 by rpki-client