$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: RGDG438t4fqxGoFbxGD7snKvnGy4awfpAczbxrShtjQ= Subject key identifier: 39:EE:64:00:EE:69:64:F7:F5:B0:20:07:C9:53:0F:D7:60:A2:6B:8A Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 01D1 Signing time: Tue 24 Mar 2026 22:59:52 +0000 Manifest this update: Tue 24 Mar 2026 22:59:52 +0000 Manifest next update: Tue 31 Mar 2026 22:59:52 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: LYy9ekihEcsNmynCQOEFD8VV/e31K+oFR2dikm/zyeA=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: eMoNWFAjlk42wYo90tOjaYJfYKyeXSPXFsOpwUhELOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:59:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Mar 24 22:59:52 2026 GMT Not After : Mar 31 22:59:52 2026 GMT Subject: CN=69c31768-8dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:f5:8b:1d:d7:71:bc:d6:df:b2:df:27:58:fe: 93:bc:ec:8f:a2:b6:1d:7d:3e:d5:23:e7:6e:5d:b9: 73:4d:57:4b:f9:ef:f8:ed:40:ab:24:22:5f:b7:e2: ee:41:9e:7d:ee:e0:b5:78:b8:c0:d0:db:da:2e:35: ea:ae:59:4c:60:7c:c1:5a:42:f9:2f:c5:46:23:92: a3:85:e5:44:49:74:50:66:59:84:d8:a1:78:c4:d7: ef:18:05:7b:18:6e:c2:67:5f:9b:f0:31:f2:cb:f0: f2:cf:20:d1:b8:f7:d3:60:87:eb:3c:4a:8a:ef:7b: 2a:47:cd:86:13:81:b7:f0:08:83:ed:68:06:56:93: 15:01:cf:54:57:1f:fa:23:c3:b2:ae:0d:d1:f3:32: 03:59:2a:c7:9c:6a:67:76:53:ee:15:c2:68:57:59: c0:9f:ae:79:68:ed:af:64:14:1b:0f:fb:6b:cf:6f: cb:b1:0f:9d:f1:57:54:5c:c3:40:aa:b1:bb:ef:a9: 25:c8:62:c0:05:90:b6:f2:3d:9b:6e:24:ac:8d:7d: 13:6e:b7:b7:1c:ba:64:fd:03:ce:17:e8:8a:0b:5c: 96:96:41:3e:8c:60:5d:0a:2d:f4:23:dc:72:e7:cb: 6f:f1:64:c7:eb:f4:53:95:41:1a:43:fb:8d:c4:26: 6f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EE:64:00:EE:69:64:F7:F5:B0:20:07:C9:53:0F:D7:60:A2:6B:8A X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3e:6c:96:57:e7:fd:aa:bc:b2:69:c7:a6:c7:22:c6:6a:4d: 7c:80:a1:31:e2:ea:4d:c6:27:5e:a4:71:69:33:b5:25:0f:31: 28:e6:7c:36:51:0d:17:0e:77:7d:73:8d:eb:4c:5a:51:d0:f0: b1:a0:96:59:6e:95:34:a8:0b:ac:d2:e6:74:8c:3c:5b:af:df: 40:c9:85:56:69:a4:fe:4f:2d:d8:e2:eb:f0:a6:0c:e7:b1:1f: a7:c2:a3:63:87:ca:49:54:da:1e:80:ec:ae:1b:bb:29:72:af: 1f:39:4f:f5:e8:a7:02:7a:2f:55:bd:52:aa:7a:ad:c1:c0:24: 0f:ad:68:18:9b:03:d6:49:72:71:b2:3b:cd:5c:06:73:e1:70: ef:51:e5:5e:76:13:71:1a:1c:b1:66:41:8f:f5:d1:bc:9b:0a: de:67:87:d2:c2:df:7b:32:9d:1d:aa:f7:b3:e2:b3:7e:68:a3: 24:2e:9d:0a:00:58:72:4c:99:4f:6a:2e:68:0c:8d:0d:12:f7: 4a:a9:9a:0e:25:6f:fb:37:af:0a:3b:f8:ef:0b:b7:ed:ff:42: 48:35:e5:4b:92:d4:b2:15:4f:e5:7e:fd:2c:11:22:6d:6e:79: 75:49:39:ec:ea:42:df:ed:ab:3a:54:1d:9e:bc:a5:9f:0a:44: 89:58:9a:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjYwMzI0MjI1OTUyWhcNMjYwMzMxMjI1OTUyWjAYMRYwFAYD VQQDEw02OWMzMTc2OC04ZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+PWLHddxvNbfst8nWP6TvOyPorYdfT7VI+duXblzTVdL+e/47UCrJCJft+Lu QZ597uC1eLjA0NvaLjXqrllMYHzBWkL5L8VGI5KjheVESXRQZlmE2KF4xNfvGAV7 GG7CZ1+b8DHyy/DyzyDRuPfTYIfrPEqK73sqR82GE4G38AiD7WgGVpMVAc9UVx/6 I8Oyrg3R8zIDWSrHnGpndlPuFcJoV1nAn655aO2vZBQbD/trz2/LsQ+d8VdUXMNA qrG776klyGLABZC28j2bbiSsjX0Tbre3HLpk/QPOF+iKC1yWlkE+jGBdCi30I9xy 58tv8WTH6/RTlUEaQ/uNxCZvtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDnuZADu aWT39bAgB8lTD9dgomuKMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApT5sllfn/aq8smnHpscixmpNfIChMeLqTcYnXqRxaTO1JQ8xKOZ8NlENFw53 fXON60xaUdDwsaCWWW6VNKgLrNLmdIw8W6/fQMmFVmmk/k8t2OLr8KYM57Efp8Kj Y4fKSVTaHoDsrhu7KXKvHzlP9einAnovVb1SqnqtwcAkD61oGJsD1klycbI7zVwG c+Fw71HlXnYTcRocsWZBj/XRvJsK3meH0sLfezKdHar3s+KzfmijJC6dCgBYckyZ T2ouaAyNDRL3SqmaDiVv+zevCjv47wu37f9CSDXlS5LUshVP5X79LBEibW55dUk5 7OpC3+2rOlQdnrylnwpEiViaNA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:29:25 2026 by rpki-client