$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: InT+SY2ZNd2JQ5Sw0zUxZZdUllDJsn8R2tcKRZKcMnc= Subject key identifier: EA:AB:DF:23:D2:23:E7:C8:D1:E8:67:2F:DB:13:91:69:50:89:B2:42 Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 032F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 0327 Signing time: Tue 23 Jun 2026 01:12:34 +0000 Manifest this update: Tue 23 Jun 2026 01:12:33 +0000 Manifest next update: Tue 30 Jun 2026 01:12:33 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: HP8TWyvqOFF7LJojzNb1vywiHzG3O+vClojwwQEw3qg=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: bTkT2MqFX/19qcSjcX3ccXtP/wVqXRGcmC6IZgoF9mg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 01:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406, serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: Jun 23 01:12:33 2026 GMT Not After : Jun 30 01:12:33 2026 GMT Subject: CN=6a39dd82-5d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:70:e1:6b:ea:93:48:61:61:14:a1:27:a8:ee: ec:13:56:e5:be:12:61:e2:c2:1e:4c:cc:8c:72:29: ea:70:d5:c5:14:6d:fd:61:a2:54:c9:06:6e:65:d0: 03:ea:28:e5:61:8e:b6:52:b6:29:15:c8:d0:8d:9e: c3:90:ff:de:1f:ef:ed:d1:93:d0:d5:a8:7d:3b:32: c1:d4:ad:6b:02:eb:bb:99:9a:bd:ce:d7:c6:8c:ad: d4:b8:75:d6:87:d7:c8:d6:38:98:87:fe:ce:30:e9: 2c:c6:f6:f0:17:5e:c9:89:aa:d2:9e:d1:8b:cd:6d: 45:6f:3b:33:c5:d3:df:ca:b0:75:61:44:a9:2d:8f: cf:d7:6c:48:0f:88:dc:b5:4d:8a:c1:f5:7a:68:63: 5b:7d:d0:9d:1e:7c:37:f2:a6:f7:9a:7c:6b:cb:97: f6:27:56:3c:26:fa:ab:5e:c3:e3:e9:11:c7:cf:46: 55:52:24:ef:90:df:45:4c:62:a8:bf:8d:0a:39:73: 85:7f:f9:15:7d:db:f8:49:9b:c6:62:eb:3b:3c:6d: f3:7b:ae:de:9b:d9:fa:c4:ba:ee:87:7a:29:d5:1d: 80:a9:cf:71:40:f6:f9:82:9e:3f:90:76:e9:ab:16: c0:f7:5d:9e:3d:a7:4b:9c:67:99:f8:c8:08:43:8c: cb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AB:DF:23:D2:23:E7:C8:D1:E8:67:2F:DB:13:91:69:50:89:B2:42 X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:7a:d5:9c:8a:e6:98:29:c3:b7:8e:df:e6:68:0b:0c:b2:d1: b1:01:69:fb:30:60:d6:cf:d3:7e:c6:de:a2:b1:e9:f3:76:b4: 33:a8:f2:74:e7:69:69:2e:f0:b5:58:7a:9b:c7:f8:7a:20:43: 76:dc:d9:dd:c6:40:ad:57:87:04:2d:1a:18:1d:a3:cd:5d:a0: 62:1b:51:b2:2b:3c:5c:dc:c2:81:ee:29:5a:c2:b2:45:dd:ac: c1:0b:1f:b4:d0:4a:de:04:17:33:73:18:c2:84:b4:12:81:e1: 66:0e:07:7c:a0:9d:c9:94:60:85:24:fb:80:c5:7f:6e:5c:6d: a1:8e:df:21:02:4d:ab:87:53:70:b1:07:a0:39:4a:14:3a:db: 6a:dc:2d:70:cc:0d:e8:c3:3d:70:3a:f5:9e:e6:73:fc:02:65: 91:cc:22:07:96:c4:b6:c4:a4:6b:a3:61:5c:18:72:77:d0:e2: 7b:59:54:ea:b4:4e:c0:73:24:e6:48:6c:b7:88:78:a7:c1:df: 67:6f:40:5c:f8:b1:c2:7c:a8:5d:ce:0e:0f:1b:31:f7:e7:81: 59:8d:c5:92:26:3e:ef:61:19:15:20:c5:fe:d3:b7:88:8f:85: 7c:e9:c2:85:56:83:0f:99:7e:ff:0b:4d:8e:45:8e:7d:9f:e1: 54:50:87:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjYwNjIzMDExMjMzWhcNMjYwNjMwMDExMjMzWjAYMRYwFAYD VQQDEw02YTM5ZGQ4Mi01ZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHDha+qTSGFhFKEnqO7sE1blvhJh4sIeTMyMcinqcNXFFG39YaJUyQZuZdAD 6ijlYY62UrYpFcjQjZ7DkP/eH+/t0ZPQ1ah9OzLB1K1rAuu7mZq9ztfGjK3UuHXW h9fI1jiYh/7OMOksxvbwF17JiarSntGLzW1FbzszxdPfyrB1YUSpLY/P12xID4jc tU2KwfV6aGNbfdCdHnw38qb3mnxry5f2J1Y8JvqrXsPj6RHHz0ZVUiTvkN9FTGKo v40KOXOFf/kVfdv4SZvGYus7PG3ze67em9n6xLruh3op1R2Aqc9xQPb5gp4/kHbp qxbA912ePadLnGeZ+MgIQ4zLQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqr3yPS I+fI0ehnL9sTkWlQibJCMB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhHrVnIrmmCnDt47f5mgLDLLRsQFp+zBg1s/TfsbeorHp83a0M6jydOdpaS7w tVh6m8f4eiBDdtzZ3cZArVeHBC0aGB2jzV2gYhtRsis8XNzCge4pWsKyRd2swQsf tNBK3gQXM3MYwoS0EoHhZg4HfKCdyZRghST7gMV/blxtoY7fIQJNq4dTcLEHoDlK FDrbatwtcMwN6MM9cDr1nuZz/AJlkcwiB5bEtsSka6NhXBhyd9Die1lU6rROwHMk 5khst4h4p8HfZ29AXPixwnyoXc4ODxsx9+eBWY3FkiY+72EZFSDF/tO3iI+FfOnC hVaDD5l+/wtNjkWOfZ/hVFCHMg== -----END CERTIFICATE-----Generated at Wed Jun 24 11:30:01 2026 by rpki-client