$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: OI4ITyLhDHIKwpvgomZF4rUYWcONVwuhN7mIVxUChFI= Subject key identifier: 16:91:FA:E1:FD:12:1A:AF:A1:BA:6D:03:4D:0F:44:E4:19:A1:37:0B Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0C76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0C5C Signing time: Thu 16 Apr 2026 18:37:56 +0000 Manifest this update: Thu 16 Apr 2026 18:37:55 +0000 Manifest next update: Thu 23 Apr 2026 18:37:55 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: 7ZyN6yhS+9vQfR0MwgvAUZ2yCpxjyj62ue6WQg7ucxg=) 2: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: LA1zhuDO8oOV5U+SWHLv48B4wlsZkTvLHZIw98i6K60=) 3: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: cD+tWMa2tCm5TnaY019r+91dmxm4eQDA6fv1coCGHU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Apr 16 18:37:55 2026 GMT Not After : Apr 23 18:37:55 2026 GMT Subject: CN=69e12c84-6c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4e:61:a1:3b:3b:84:0a:bd:48:51:d2:fa:80: 11:d1:63:08:a2:c5:b1:ee:43:5b:d2:c0:ad:6e:db: c0:e4:66:1a:19:5f:d4:fb:6b:01:24:7f:1d:cb:ad: 6f:d8:22:86:4c:4b:be:80:b1:5b:92:04:1b:4d:6f: dc:cb:9f:e9:25:f5:44:0d:1a:97:46:6f:10:88:ae: 21:b7:42:be:46:22:5e:3f:97:2f:6a:26:03:10:41: e4:f0:15:89:ac:b3:d1:ba:91:ba:6e:87:40:4c:78: 3d:7f:64:97:9d:6f:68:bc:01:ed:a3:9c:cb:48:72: 0b:74:9f:97:46:f5:6f:11:4a:87:57:79:ea:c6:28: c0:98:13:3b:db:4a:61:05:27:e5:c2:e7:65:d6:29: 50:bd:9f:ce:43:f0:6f:c5:d6:ec:e9:f9:64:e2:3b: cf:2e:35:a2:30:74:12:ab:58:41:79:53:7f:6c:6b: ed:14:d1:28:66:8d:86:cd:41:f7:3b:18:02:71:5d: fd:aa:6d:2a:58:ca:d4:e5:ff:ad:49:22:4d:ba:e4: d9:9b:74:93:1a:67:0b:75:1c:89:3d:16:56:82:74: 97:31:67:2c:a8:6c:64:08:9c:4f:13:06:dd:3d:f9: 99:9b:0d:ac:85:98:73:04:c3:2c:67:83:9c:1f:83: 85:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:91:FA:E1:FD:12:1A:AF:A1:BA:6D:03:4D:0F:44:E4:19:A1:37:0B X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:ff:0c:62:22:a1:fc:68:4d:1c:1b:23:88:80:38:71:02:db: 39:ee:62:97:19:b8:e4:fd:18:24:a3:e3:d2:a3:52:7d:0c:f0: b9:0f:89:1f:01:52:04:e8:54:e0:1a:25:ef:b9:e5:15:e4:be: 9f:08:e4:14:73:b4:7e:03:25:69:ff:d5:8e:57:25:ef:69:13: 1d:0c:4e:30:64:db:e0:74:b8:f4:0c:62:4e:cb:af:d0:e9:98: 83:9a:e5:ab:57:78:1e:0e:3f:df:78:5d:3c:5c:33:f2:4b:67: 0e:17:d5:f9:f8:6f:a1:84:8b:92:d6:20:2a:8e:2b:b6:94:3e: aa:bb:66:21:a7:6d:8b:aa:0e:9e:f7:57:2d:87:81:0e:96:ef: 4d:ec:fb:b9:6b:10:dd:d6:58:b7:5f:12:9a:33:81:1d:22:ad: 55:9a:ee:a4:50:16:e2:39:e7:21:44:ef:52:e0:da:bb:dc:31: 21:cf:0a:b2:5c:2e:57:b0:5c:10:61:a7:06:31:b2:72:c4:03: 26:a4:ba:53:14:70:5d:92:74:1f:97:49:38:ee:bb:67:c8:9d: 64:ae:47:39:fd:3e:5a:ca:fd:6c:12:41:0c:e2:62:7e:17:6a: 34:27:d4:41:2b:c8:2d:91:0c:5e:30:0a:0c:79:71:ad:2e:10: 74:4f:fb:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjYwNDE2MTgzNzU1WhcNMjYwNDIzMTgzNzU1WjAYMRYwFAYD VQQDEw02OWUxMmM4NC02YzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE5hoTs7hAq9SFHS+oAR0WMIosWx7kNb0sCtbtvA5GYaGV/U+2sBJH8dy61v 2CKGTEu+gLFbkgQbTW/cy5/pJfVEDRqXRm8QiK4ht0K+RiJeP5cvaiYDEEHk8BWJ rLPRupG6bodATHg9f2SXnW9ovAHto5zLSHILdJ+XRvVvEUqHV3nqxijAmBM720ph BSflwudl1ilQvZ/OQ/Bvxdbs6flk4jvPLjWiMHQSq1hBeVN/bGvtFNEoZo2GzUH3 OxgCcV39qm0qWMrU5f+tSSJNuuTZm3STGmcLdRyJPRZWgnSXMWcsqGxkCJxPEwbd PfmZmw2shZhzBMMsZ4OcH4OFOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBaR+uH9 EhqvobptA00PROQZoTcLMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApP8MYiKh/GhNHBsjiIA4cQLbOe5ilxm45P0YJKPj0qNSfQzwuQ+JHwFSBOhU 4Bol77nlFeS+nwjkFHO0fgMlaf/Vjlcl72kTHQxOMGTb4HS49AxiTsuv0OmYg5rl q1d4Hg4/33hdPFwz8ktnDhfV+fhvoYSLktYgKo4rtpQ+qrtmIadti6oOnvdXLYeB DpbvTez7uWsQ3dZYt18SmjOBHSKtVZrupFAW4jnnIUTvUuDau9wxIc8KslwuV7Bc EGGnBjGycsQDJqS6UxRwXZJ0H5dJOO67Z8idZK5HOf0+Wsr9bBJBDOJifhdqNCfU QSvILZEMXjAKDHlxrS4QdE/7NA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:23:39 2026 by rpki-client