$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: G9xSZeEGFbk3OWQrZI2naxPRy5/QmS82ehI2R+Zo0+w= Subject key identifier: BB:6A:F2:7F:03:B5:F7:1B:41:76:59:DB:53:A2:41:4B:3A:C3:14:24 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 01C8 Signing time: Fri 17 Apr 2026 03:27:41 +0000 Manifest this update: Fri 17 Apr 2026 03:27:40 +0000 Manifest next update: Fri 24 Apr 2026 03:27:40 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: RwRAUfXHFXH0gsWpIFt6ZyNsNuinLzfwE2TbvAQG7tg=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 3tWo+TxjvNRfazBkfrqsYl15Cz/V8ipCTw/38p8PqXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Apr 17 03:27:40 2026 GMT Not After : Apr 24 03:27:40 2026 GMT Subject: CN=69e1a8ac-6367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fd:6b:51:49:f8:af:ff:4f:eb:ed:b8:8c:a7: 26:ec:1b:cf:33:41:7d:16:09:30:a2:55:37:48:13: df:92:cd:1e:1f:27:53:87:3f:50:3b:7e:67:a3:ff: 2c:6a:40:f9:2f:c5:49:45:d8:11:75:26:03:97:25: e6:83:27:05:93:46:d6:96:c7:9d:ce:9d:cb:db:a0: 0f:76:46:58:9e:21:a5:3a:1d:34:bb:df:2b:4e:83: 38:e4:94:40:1d:9d:73:2c:37:b3:4b:6a:cc:64:60: e6:87:2c:c8:06:c9:b5:9e:e0:f1:cd:d4:b0:f7:6e: f5:6f:cd:dd:2d:15:63:71:e0:6c:fe:98:f8:8b:1e: af:ad:3f:f7:04:06:b6:1e:f1:1c:aa:01:7b:59:a5: 63:82:a5:24:31:6b:a1:fb:39:b3:ab:3e:a0:d5:2c: a0:76:92:35:3e:09:c7:38:aa:02:46:ca:b8:a2:77: e6:bd:be:c8:da:07:c5:cd:bf:fd:2d:f0:a5:0f:71: 61:38:f5:ae:1f:04:a2:e3:38:3b:b3:00:0b:fd:2a: 64:38:5f:e6:f1:90:63:ae:2e:19:aa:d1:16:3e:f6: fe:f0:74:e9:ea:f6:bc:f3:8f:15:e6:ec:64:66:57: fb:71:56:02:d0:b4:2a:20:52:ce:36:4d:bf:e0:25: 83:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6A:F2:7F:03:B5:F7:1B:41:76:59:DB:53:A2:41:4B:3A:C3:14:24 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:7a:73:2e:1e:de:fc:85:46:5a:4d:16:45:a2:24:88:c4:b4: d5:09:2e:41:81:ce:fe:7c:97:ac:14:00:e7:95:ae:8a:2a:66: e4:7f:dc:ae:12:5c:d0:09:71:20:9e:8f:80:2f:66:3e:d3:cc: 7d:2e:ec:10:10:59:52:d5:02:de:5d:0e:8e:30:35:8d:2a:1e: a2:2e:5c:bd:12:58:cd:90:84:84:f1:9c:37:d3:79:87:7f:e2: f5:cc:68:3b:83:c8:47:86:9d:bc:3a:8d:7d:9d:26:65:37:f0: 2a:a5:f2:41:b8:c8:8c:d3:d8:8f:35:f2:a8:43:db:76:cc:e7: 34:34:e9:0d:16:3d:67:a8:7a:bc:ed:38:34:99:fd:51:c9:59: 29:9d:53:b3:57:cd:a5:79:94:9c:cf:c8:f3:c3:23:79:85:00: ed:d7:87:98:d2:a5:ef:e4:94:5d:c1:f3:30:38:67:ea:7d:3b: d7:85:bb:8d:0c:b3:5f:59:ae:3b:3f:d8:66:82:a4:c5:9d:f7: 24:39:17:06:ea:3b:fb:92:b3:48:14:2c:16:18:28:4a:ee:e4: da:bc:87:70:cc:60:90:bc:d3:ef:08:1e:aa:f2:63:66:cf:ec: 13:57:e4:b1:d7:de:e0:05:5c:bf:5a:e5:68:81:d7:5d:b4:d8: 79:2b:5e:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjYwNDE3MDMyNzQwWhcNMjYwNDI0MDMyNzQwWjAYMRYwFAYD VQQDEw02OWUxYThhYy02MzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsf1rUUn4r/9P6+24jKcm7BvPM0F9FgkwolU3SBPfks0eHydThz9QO35no/8s akD5L8VJRdgRdSYDlyXmgycFk0bWlsedzp3L26APdkZYniGlOh00u98rToM45JRA HZ1zLDezS2rMZGDmhyzIBsm1nuDxzdSw9271b83dLRVjceBs/pj4ix6vrT/3BAa2 HvEcqgF7WaVjgqUkMWuh+zmzqz6g1SygdpI1PgnHOKoCRsq4onfmvb7I2gfFzb/9 LfClD3FhOPWuHwSi4zg7swAL/SpkOF/m8ZBjri4ZqtEWPvb+8HTp6va8848V5uxk Zlf7cVYC0LQqIFLONk2/4CWDfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLtq8n8D tfcbQXZZ21OiQUs6wxQkMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYHpzLh7e/IVGWk0WRaIkiMS01QkuQYHO/nyXrBQA55Wuiipm5H/crhJc0Alx IJ6PgC9mPtPMfS7sEBBZUtUC3l0OjjA1jSoeoi5cvRJYzZCEhPGcN9N5h3/i9cxo O4PIR4advDqNfZ0mZTfwKqXyQbjIjNPYjzXyqEPbdsznNDTpDRY9Z6h6vO04NJn9 UclZKZ1Ts1fNpXmUnM/I88MjeYUA7deHmNKl7+SUXcHzMDhn6n0714W7jQyzX1mu Oz/YZoKkxZ33JDkXBuo7+5KzSBQsFhgoSu7k2ryHcMxgkLzT7wgeqvJjZs/sE1fk sdfe4AVcv1rlaIHXXbTYeSte6A== -----END CERTIFICATE-----Generated at Fri Apr 17 17:05:59 2026 by rpki-client