$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: vOO+A6XDcoR6mLk6xnS5dUZ4zKDMwW8iFr9xG7xNjNI= Subject key identifier: F9:B8:95:35:57:DE:25:2E:BA:4B:50:19:5E:86:95:CA:18:57:B2:FB Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0C6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0C50 Signing time: Tue 24 Mar 2026 18:33:31 +0000 Manifest this update: Tue 24 Mar 2026 18:33:30 +0000 Manifest next update: Tue 31 Mar 2026 18:33:30 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: cesFoUDoUy3s3mj+6SqxJ86KDm0dRm/UoRmzOybsdGA=) 2: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: LA1zhuDO8oOV5U+SWHLv48B4wlsZkTvLHZIw98i6K60=) 3: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: cD+tWMa2tCm5TnaY019r+91dmxm4eQDA6fv1coCGHU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Mar 24 18:33:30 2026 GMT Not After : Mar 31 18:33:30 2026 GMT Subject: CN=69c2d8fa-e496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:81:2c:c1:1f:5c:1e:61:98:8c:cc:3c:9b:38: ab:bf:e2:70:a1:60:f6:e7:be:b9:bc:24:5d:e9:da: c3:73:81:3a:a9:5b:66:c1:26:57:c7:90:59:66:3e: 65:d1:f6:63:61:a7:25:40:8a:11:d9:26:f9:83:33: fc:0f:79:92:96:d6:c5:b4:65:64:69:e4:91:af:93: 3e:ab:78:69:8b:00:fe:52:c6:c5:72:25:b5:c7:1e: 95:55:01:85:25:6d:e6:ff:d9:3c:dc:c8:a6:95:ec: 9a:22:3e:16:f4:cc:85:fd:f4:d8:3a:fa:af:1b:45: 13:27:f5:e6:9d:dd:fe:15:eb:1d:99:14:13:e0:04: a3:b2:03:df:9e:c9:f1:94:a5:6c:e4:75:75:c2:9a: 72:7b:3c:b0:95:43:be:19:e5:e5:90:58:fd:16:08: 4e:87:a1:84:b5:fa:29:44:4e:3d:37:14:a6:b3:f4: 5e:9f:02:37:a4:41:48:b6:f1:42:1d:43:7a:1b:cd: b2:97:cb:a7:45:ab:6c:5f:c6:f6:a1:33:25:4e:16: f4:d6:f6:62:ae:a7:02:03:ea:0e:13:e5:34:82:57: 39:22:05:dc:b8:b4:db:53:3f:7a:4d:96:33:75:8c: 8a:fe:e9:41:5e:5d:7a:1b:6a:fc:86:b4:5a:21:c3: 43:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B8:95:35:57:DE:25:2E:BA:4B:50:19:5E:86:95:CA:18:57:B2:FB X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:29:43:06:66:ff:4f:6b:87:cf:c4:f5:2e:05:99:a9:bc:53: 96:ba:75:90:f7:82:6b:b7:0b:00:d7:1f:4b:59:a8:b4:ab:65: 7b:3d:03:1e:35:04:4c:c0:a9:70:d1:b2:ce:96:08:2b:21:08: 83:02:b7:f8:7d:b3:fd:e8:26:dd:3a:f5:d5:7a:2b:90:f4:03: 18:52:3e:30:83:bd:62:cc:98:a3:e4:db:dc:d2:19:0f:5d:38: 43:f3:fe:bd:e9:ed:67:a0:0a:52:4a:7a:8a:b3:a7:15:e9:fe: d8:73:21:9c:ef:37:18:c7:cc:b8:46:da:84:62:43:35:43:43: 8d:86:d2:28:ae:9a:da:e9:76:42:d9:67:ea:11:70:2b:91:b4: 4e:84:b2:5f:36:4c:ae:67:31:0b:b4:56:61:41:9e:df:e1:af: 7c:07:e9:e0:cf:11:38:e9:50:42:fe:88:9b:af:2a:28:8d:c9: 5d:df:f3:e6:65:9b:1e:86:dc:b9:0c:06:0b:4f:df:e7:10:89: d0:28:74:1f:33:c9:13:7c:86:26:36:05:e1:93:2d:9f:a4:0e: 55:b8:b7:06:11:45:ca:22:69:df:27:8e:5d:dc:d7:cc:e6:36: de:5f:38:9c:88:ed:a5:6e:fa:cd:93:eb:43:75:90:99:39:ad: c4:76:b4:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjYwMzI0MTgzMzMwWhcNMjYwMzMxMTgzMzMwWjAYMRYwFAYD VQQDEw02OWMyZDhmYS1lNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4EswR9cHmGYjMw8mzirv+JwoWD25765vCRd6drDc4E6qVtmwSZXx5BZZj5l 0fZjYaclQIoR2Sb5gzP8D3mSltbFtGVkaeSRr5M+q3hpiwD+UsbFciW1xx6VVQGF JW3m/9k83MimleyaIj4W9MyF/fTYOvqvG0UTJ/Xmnd3+FesdmRQT4ASjsgPfnsnx lKVs5HV1wppyezywlUO+GeXlkFj9FghOh6GEtfopRE49NxSms/RenwI3pEFItvFC HUN6G82yl8unRatsX8b2oTMlThb01vZirqcCA+oOE+U0glc5IgXcuLTbUz96TZYz dYyK/ulBXl16G2r8hrRaIcNDiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPm4lTVX 3iUuuktQGV6GlcoYV7L7MB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOSlDBmb/T2uHz8T1LgWZqbxTlrp1kPeCa7cLANcfS1motKtlez0DHjUETMCp cNGyzpYIKyEIgwK3+H2z/egm3Tr11XorkPQDGFI+MIO9YsyYo+Tb3NIZD104Q/P+ ventZ6AKUkp6irOnFen+2HMhnO83GMfMuEbahGJDNUNDjYbSKK6a2ul2Qtln6hFw K5G0ToSyXzZMrmcxC7RWYUGe3+GvfAfp4M8ROOlQQv6Im68qKI3JXd/z5mWbHobc uQwGC0/f5xCJ0Ch0HzPJE3yGJjYF4ZMtn6QOVbi3BhFFyiJp3yeOXdzXzOY23l84 nIjtpW76zZPrQ3WQmTmtxHa00g== -----END CERTIFICATE-----Generated at Thu Mar 26 09:53:39 2026 by rpki-client