$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: hOwYAmFk7C7nIjNuaYTTnnmTR+CuYL65foBXnx9GRBk= Subject key identifier: 29:32:64:DE:87:C3:E4:F6:BE:FF:7C:E3:80:3E:00:1F:DD:D0:0F:FC Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0C83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0C69 Signing time: Tue 12 May 2026 18:44:36 +0000 Manifest this update: Tue 12 May 2026 18:44:36 +0000 Manifest next update: Tue 19 May 2026 18:44:36 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: Zg1HlynkPkhMj9rbI1hBuXt1TAEtg1IprDS/n+KLHFE=) 2: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: LA1zhuDO8oOV5U+SWHLv48B4wlsZkTvLHZIw98i6K60=) 3: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: cD+tWMa2tCm5TnaY019r+91dmxm4eQDA6fv1coCGHU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: May 12 18:44:36 2026 GMT Not After : May 19 18:44:36 2026 GMT Subject: CN=6a037514-4b9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:03:87:19:04:cc:7b:58:59:c6:85:27:97:f1: 86:35:ff:19:a3:56:f3:4a:0f:3b:28:53:dd:33:ec: 25:df:0e:2e:eb:56:94:ef:1c:4f:f0:ec:56:b7:9d: 14:35:20:d6:97:6f:7e:3a:a7:4e:47:d9:68:a0:e6: 03:7c:dd:4a:d0:60:a9:6e:7b:c7:b7:c4:3c:5e:7c: 48:2e:7d:cf:93:9e:0e:03:50:22:e2:9e:06:94:08: e1:72:4c:19:e3:2f:b3:ec:bc:37:c8:5d:3d:4b:c0: c9:4d:8c:5b:41:e2:82:f2:eb:a8:56:05:0e:a2:c2: 43:aa:78:fd:df:b2:af:8c:2b:73:a4:a6:3d:31:99: b3:22:b3:fd:ab:74:d9:cd:e1:40:de:22:58:e4:5a: 3f:8f:c0:90:21:25:7a:b4:86:3b:e1:f0:42:88:86: 82:56:21:5b:3e:f9:d0:6e:64:4a:46:b6:ce:07:6c: e4:60:5c:1f:cc:cc:d5:72:5f:e6:02:85:91:ca:cf: 18:3a:96:28:3c:c8:36:3d:eb:08:a3:a5:7e:a5:24: 61:53:ef:b5:29:6c:0d:dc:d4:63:4b:2b:42:32:c3: 2b:f1:48:24:e2:53:a3:d0:bc:e2:91:a0:39:b4:1d: f5:56:c6:ff:1a:45:fe:35:31:af:45:ef:33:e2:d1: b8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:32:64:DE:87:C3:E4:F6:BE:FF:7C:E3:80:3E:00:1F:DD:D0:0F:FC X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:98:08:e2:9a:25:f6:42:83:73:e7:75:76:1f:cf:a3:39:a1: 48:1a:a6:16:ca:fb:7b:1c:f7:5a:48:af:40:19:0e:16:3b:89: d7:a4:26:e2:5d:9b:90:04:2d:82:44:f5:9e:1d:42:0f:fe:91: 72:47:6c:ee:23:0f:af:7f:61:d6:ce:cd:9e:a1:c4:1a:72:e6: 2f:c3:ff:ce:e2:49:e4:f2:8c:0c:3d:a4:c6:82:15:ae:f0:28: 46:d3:e1:48:4d:3a:ec:b0:58:f5:9f:22:10:55:b8:ab:85:dc: de:3c:b1:b9:f0:5a:71:7a:44:9f:c8:75:a1:42:47:c9:04:2e: aa:07:bc:1d:c0:f6:11:8c:0a:c5:eb:25:8a:17:4b:9b:27:67: 9f:cf:f3:c5:54:b5:80:35:65:af:ef:03:06:df:c5:72:09:8e: 3c:89:12:73:0b:ba:3b:7c:46:12:5e:c5:83:15:01:d4:af:e4: 0a:1f:7a:5b:25:88:06:f3:cb:1d:76:f6:39:63:ff:cc:0e:90: e7:e7:82:e1:fa:47:71:30:02:94:f7:27:36:4d:9e:a4:fd:f6: d0:c7:12:36:65:45:57:b9:78:1e:bc:c3:33:e6:71:6a:d9:88: 23:78:82:ff:06:6d:8c:6a:2a:4b:64:f3:c2:5b:03:eb:81:f9: d5:95:7d:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjYwNTEyMTg0NDM2WhcNMjYwNTE5MTg0NDM2WjAYMRYwFAYD VQQDEw02YTAzNzUxNC00YjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQOHGQTMe1hZxoUnl/GGNf8Zo1bzSg87KFPdM+wl3w4u61aU7xxP8OxWt50U NSDWl29+OqdOR9looOYDfN1K0GCpbnvHt8Q8XnxILn3Pk54OA1Ai4p4GlAjhckwZ 4y+z7Lw3yF09S8DJTYxbQeKC8uuoVgUOosJDqnj937KvjCtzpKY9MZmzIrP9q3TZ zeFA3iJY5Fo/j8CQISV6tIY74fBCiIaCViFbPvnQbmRKRrbOB2zkYFwfzMzVcl/m AoWRys8YOpYoPMg2PesIo6V+pSRhU++1KWwN3NRjSytCMsMr8Ugk4lOj0LzikaA5 tB31Vsb/GkX+NTGvRe8z4tG49QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCkyZN6H w+T2vv9844A+AB/d0A/8MB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXZgI4pol9kKDc+d1dh/PozmhSBqmFsr7exz3WkivQBkOFjuJ16Qm4l2bkAQt gkT1nh1CD/6Rckds7iMPr39h1s7NnqHEGnLmL8P/zuJJ5PKMDD2kxoIVrvAoRtPh SE067LBY9Z8iEFW4q4Xc3jyxufBacXpEn8h1oUJHyQQuqge8HcD2EYwKxeslihdL mydnn8/zxVS1gDVlr+8DBt/FcgmOPIkScwu6O3xGEl7FgxUB1K/kCh96WyWIBvPL HXb2OWP/zA6Q5+eC4fpHcTAClPcnNk2epP320McSNmVFV7l4HrzDM+ZxatmII3iC /wZtjGoqS2TzwlsD64H51ZV9hA== -----END CERTIFICATE-----Generated at Wed May 13 00:59:53 2026 by rpki-client