$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: B39oScGaAJo7Drx347bV9yp8Tbu2WxGy43/5+hwfX5M= Subject key identifier: 88:5F:52:B8:81:E9:6E:A9:4F:E0:56:C6:11:6E:B0:CE:61:AE:DE:12 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 01AE Signing time: Sun 01 Mar 2026 04:46:03 +0000 Manifest this update: Sun 01 Mar 2026 04:46:03 +0000 Manifest next update: Sun 08 Mar 2026 04:46:03 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: PdkjZMtA274IxJVv/c+6/2HuXkgKoBQqpgFbKosj3kQ=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: etATH7cpBctXxSFj9qh8jaunQqoMoUcK6DY8J7yW9Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Mar 1 04:46:03 2026 GMT Not After : Mar 8 04:46:03 2026 GMT Subject: CN=69a3c48b-198a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8a:61:69:20:75:c2:1e:95:f5:d9:ea:1c:b0: f9:87:40:04:d3:ae:f2:c1:74:eb:73:ea:c2:40:6d: a5:ec:75:f3:c5:af:e3:6d:5a:5c:79:a5:f5:6a:50: ba:bb:f1:fb:e7:22:1c:20:c9:03:b9:2b:48:5a:18: 5b:de:49:63:0b:05:13:91:e6:c2:09:c8:af:d9:26: 4f:94:2f:f5:78:ef:a9:82:fb:58:55:b6:61:41:8e: 18:9b:fc:ce:73:e7:05:27:27:29:00:a1:24:5a:d9: 56:e8:6e:1d:a2:ba:5b:bd:c2:fb:6c:8c:3a:9a:7f: 05:03:35:5f:24:43:a1:bb:98:d4:ad:2e:59:76:4c: e4:f4:45:f8:9b:7d:e8:d7:d1:d4:fa:47:95:9a:e3: d0:41:3b:21:ed:ff:c1:ce:d2:d7:0b:51:7d:de:10: 9b:ef:b1:01:59:42:6d:c1:bc:17:63:6c:4d:58:3a: 90:2f:10:43:48:8e:0b:c9:5f:2d:fa:c7:4f:21:46: b0:2f:58:67:97:10:04:a5:36:b8:d9:2d:bd:15:82: ba:68:cd:bd:d1:ce:46:d8:58:1e:c5:21:b7:65:57: 8f:3e:b7:f4:96:5a:d3:46:c2:54:32:69:a2:c3:1a: 80:34:e0:bb:69:77:61:14:92:4f:f3:57:bc:a3:d0: 75:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5F:52:B8:81:E9:6E:A9:4F:E0:56:C6:11:6E:B0:CE:61:AE:DE:12 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ce:61:e8:8f:98:f3:dd:c4:06:b8:6e:6e:ed:10:cd:80:c3: 33:4d:bc:9d:e9:a1:d6:e6:1c:ce:fe:38:e8:fd:86:78:dc:b9: 44:d9:47:ce:94:7e:e0:a4:d5:43:f0:d8:6c:9c:35:6b:22:dd: 31:73:f1:04:e8:57:db:3a:d0:20:ff:b7:49:79:3a:ec:2a:89: b3:a2:a0:03:04:6d:c3:bc:20:57:11:a1:7c:65:1e:3d:02:20: 03:cd:5b:79:44:f0:cb:41:68:fa:2d:75:55:4c:ab:d6:e2:5f: 85:81:20:0b:46:57:56:b9:37:b2:17:65:bf:00:36:25:a3:05: e4:3a:fd:50:41:4d:8a:0e:7a:fb:5f:3f:f5:7f:62:37:6f:85: b0:0f:0f:fd:7c:f0:e1:05:af:9e:d6:3e:05:f3:e4:bd:15:87: d8:2b:93:63:64:0c:0d:75:8d:30:a2:7d:1a:09:d7:89:a3:45: 12:77:a5:e8:e9:e3:2c:4e:5b:fe:54:bf:3b:43:c8:4d:47:cd: 7f:5d:87:ae:1b:08:1f:01:3b:e5:76:26:30:7d:d6:e3:c0:bc: 0e:58:b0:76:66:ab:5c:57:63:8b:87:02:ff:d0:0f:5d:d2:eb: 8a:a9:cf:f1:da:92:94:4c:11:ef:c9:d6:ca:fb:e1:6b:60:50: 79:54:68:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjYwMzAxMDQ0NjAzWhcNMjYwMzA4MDQ0NjAzWjAYMRYwFAYD VQQDDA02OWEzYzQ4Yi0xOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IphaSB1wh6V9dnqHLD5h0AE067ywXTrc+rCQG2l7HXzxa/jbVpceaX1alC6 u/H75yIcIMkDuStIWhhb3kljCwUTkebCCciv2SZPlC/1eO+pgvtYVbZhQY4Ym/zO c+cFJycpAKEkWtlW6G4dorpbvcL7bIw6mn8FAzVfJEOhu5jUrS5Zdkzk9EX4m33o 19HU+keVmuPQQTsh7f/BztLXC1F93hCb77EBWUJtwbwXY2xNWDqQLxBDSI4LyV8t +sdPIUawL1hnlxAEpTa42S29FYK6aM290c5G2FgexSG3ZVePPrf0llrTRsJUMmmi wxqANOC7aXdhFJJP81e8o9B1awIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIhfUriB 6W6pT+BWxhFusM5hrt4SMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfM5h6I+Y893EBrhubu0QzYDDM028nemh1uYczv446P2GeNy5RNlHzpR+4KTV Q/DYbJw1ayLdMXPxBOhX2zrQIP+3SXk67CqJs6KgAwRtw7wgVxGhfGUePQIgA81b eUTwy0Fo+i11VUyr1uJfhYEgC0ZXVrk3shdlvwA2JaMF5Dr9UEFNig56+18/9X9i N2+FsA8P/Xzw4QWvntY+BfPkvRWH2CuTY2QMDXWNMKJ9GgnXiaNFEnel6OnjLE5b /lS/O0PITUfNf12HrhsIHwE75XYmMH3W48C8DliwdmarXFdji4cC/9APXdLriqnP 8dqSlEwR78nWyvvha2BQeVRobQ== -----END CERTIFICATE-----Generated at Mon Mar 2 02:54:18 2026 by rpki-client