$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: ajpgmqYMTecZz+WGSN8i/jW5lKnqgUBBG6rCE7pRkJ0= Subject key identifier: D8:30:C9:5F:36:99:F4:E0:7D:09:D1:4D:DA:CB:0F:85:9D:A6:56:B9 Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 0307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 02FF Signing time: Sun 05 Apr 2026 01:00:47 +0000 Manifest this update: Sun 05 Apr 2026 01:00:46 +0000 Manifest next update: Sun 12 Apr 2026 01:00:46 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: DV/Bo75Cwodok9vBVGvUJ3DClmrBSVUQHW6QBBKSjBg=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: bTkT2MqFX/19qcSjcX3ccXtP/wVqXRGcmC6IZgoF9mg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406, serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: Apr 5 01:00:46 2026 GMT Not After : Apr 12 01:00:46 2026 GMT Subject: CN=69d1b43e-d045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:27:36:66:a5:de:f0:0e:83:6d:4c:e5:3c:ce: 43:4c:31:08:46:d1:d4:60:4e:69:72:76:38:9b:b1: c4:61:6b:74:a0:35:9e:82:7f:63:6a:12:3c:45:dc: a0:ad:2c:90:85:09:b1:b0:8a:a2:9a:dd:2e:98:42: 11:ac:a0:46:bd:7c:1d:fe:0c:b8:6f:ac:9a:79:da: 9b:d5:03:90:43:0d:63:a5:09:17:f4:b6:06:56:f3: 00:f7:df:02:6c:07:7d:bc:f6:2d:42:10:6a:cd:5a: 54:51:b8:ca:86:18:ca:14:9e:58:82:07:da:a2:42: 5d:97:30:94:ad:1f:2d:f6:f6:ac:0f:fd:48:fd:97: a3:cb:18:e3:51:31:d5:eb:18:35:1b:a8:7d:5f:b0: ec:8e:40:bf:37:82:f5:ce:58:25:5f:49:6f:65:72: 89:1b:2a:38:7d:be:18:b6:12:0f:c4:98:bc:c4:60: e0:8d:1a:b6:f1:b3:e3:95:fd:f8:b6:dc:f4:d9:a6: ab:7d:4e:66:da:95:d4:6e:68:6a:e9:79:e8:81:8b: 3c:70:05:1b:5f:68:3e:8d:90:33:c5:0b:b5:40:af: 36:06:0e:35:80:48:b3:ff:31:44:75:30:7f:69:63: 1d:00:90:e1:6c:0d:a2:12:d0:51:25:2c:80:76:3b: b6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:30:C9:5F:36:99:F4:E0:7D:09:D1:4D:DA:CB:0F:85:9D:A6:56:B9 X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:4d:66:b2:8e:21:64:78:4a:ab:d7:4e:c7:95:36:11:5a:10: 96:a3:ae:8d:0c:d9:08:1d:7b:7c:be:81:ca:da:b4:44:91:0a: f7:d2:10:81:3a:00:bb:92:ed:f5:f6:fa:04:eb:10:64:19:65: d6:8e:5f:3c:eb:bd:55:be:96:5f:94:9e:f9:d5:a2:0b:21:30: c2:e3:22:4c:5c:18:0f:dd:a9:01:34:12:f9:3b:f7:23:af:79: 50:3c:8a:ed:09:87:06:9f:cb:0f:3b:6c:dd:fb:cb:dd:9e:d9: 4a:ec:e9:ff:40:9e:4f:77:ec:56:cd:ab:cb:8d:c3:a0:b3:98: bc:bf:a0:2f:fc:5d:af:6c:09:4c:64:9d:f0:43:d3:89:33:ae: 4a:9f:1c:4c:b8:5f:79:11:96:19:b9:47:03:5a:45:8f:c7:8e: d6:68:a5:8b:08:1f:cb:10:b3:16:a9:a5:ef:4a:3e:2c:8a:32: 4b:16:e1:40:c7:de:5b:f6:4c:2c:bc:5c:14:3b:3e:b9:df:7a: a0:87:1a:3e:d3:1a:31:4e:3a:8b:56:8c:da:45:0d:49:9b:9f: c1:a6:fd:bf:aa:88:98:e8:02:23:62:e4:dd:fb:76:7e:7e:6a: 35:b5:4c:75:e0:c7:05:47:05:c1:5c:4c:57:df:a3:14:23:d6: 84:eb:57:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjYwNDA1MDEwMDQ2WhcNMjYwNDEyMDEwMDQ2WjAYMRYwFAYD VQQDEw02OWQxYjQzZS1kMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryc2ZqXe8A6DbUzlPM5DTDEIRtHUYE5pcnY4m7HEYWt0oDWegn9jahI8Rdyg rSyQhQmxsIqimt0umEIRrKBGvXwd/gy4b6yaedqb1QOQQw1jpQkX9LYGVvMA998C bAd9vPYtQhBqzVpUUbjKhhjKFJ5YggfaokJdlzCUrR8t9vasD/1I/ZejyxjjUTHV 6xg1G6h9X7DsjkC/N4L1zlglX0lvZXKJGyo4fb4YthIPxJi8xGDgjRq28bPjlf34 ttz02aarfU5m2pXUbmhq6XnogYs8cAUbX2g+jZAzxQu1QK82Bg41gEiz/zFEdTB/ aWMdAJDhbA2iEtBRJSyAdju2zwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgwyV82 mfTgfQnRTdrLD4Wdpla5MB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFk1mso4hZHhKq9dOx5U2EVoQlqOujQzZCB17fL6Bytq0RJEK99IQgToAu5Lt 9fb6BOsQZBll1o5fPOu9Vb6WX5Se+dWiCyEwwuMiTFwYD92pATQS+Tv3I695UDyK 7QmHBp/LDzts3fvL3Z7ZSuzp/0CeT3fsVs2ry43DoLOYvL+gL/xdr2wJTGSd8EPT iTOuSp8cTLhfeRGWGblHA1pFj8eO1miliwgfyxCzFqml70o+LIoySxbhQMfeW/ZM LLxcFDs+ud96oIcaPtMaMU46i1aM2kUNSZufwab9v6qImOgCI2Lk3ft2fn5qNbVM deDHBUcFwVxMV9+jFCPWhOtXCg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:42:25 2026 by rpki-client