$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: svE9FFXTddqdWcph3yksq0TJzgPqNK5+wPSlyfc6d60= Subject key identifier: FA:E3:58:6B:32:E3:F7:7B:39:E0:6A:89:4A:27:B6:3C:43:69:1F:9E Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 0168 Signing time: Sun 19 Oct 2025 06:33:59 +0000 Manifest this update: Sun 19 Oct 2025 06:33:59 +0000 Manifest next update: Sun 26 Oct 2025 06:33:59 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: uYrFXYbOtPgXSHHAenXMN/hQ0uOj5076vmfXPmtSaeE=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 6W6Gywd7YHiIdjjDyCFNskNZyB3wgY++Ir7hfO/X2TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Oct 19 06:33:59 2025 GMT Not After : Oct 26 06:33:59 2025 GMT Subject: CN=68f48657-188a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b3:16:65:33:8c:da:8c:43:55:04:41:af:2a: ab:5a:1e:ef:ae:d4:6b:fe:3a:c9:01:43:70:27:89: 9f:02:12:20:50:21:4a:a9:d1:91:87:5f:ed:9a:5e: e8:77:b2:f3:85:e8:48:a1:3a:79:e9:eb:fe:4c:9d: 07:26:4e:92:a2:2f:cb:cf:ab:97:99:73:56:b1:1d: 24:22:7e:24:c1:03:34:5b:ba:8b:5d:09:70:a6:72: 60:ae:91:b4:90:bb:20:d3:75:66:c4:bd:8a:69:b4: 5e:15:e0:03:1f:02:8b:f7:b4:9e:e4:04:8e:75:b0: 00:e0:1b:a8:34:dc:ba:c6:d9:1b:1c:34:48:49:76: d3:70:ae:7c:eb:b2:fc:17:f3:fb:db:ec:26:92:0c: 2d:8b:52:7d:86:b6:ca:14:49:0a:b2:40:80:cf:d8: 70:d0:51:1c:f2:79:8b:69:3f:2b:b1:d0:f9:d5:b3: 5f:1d:97:90:bc:12:5f:01:33:df:69:5a:a0:26:49: 98:d2:52:da:2a:f7:eb:e4:a4:0b:23:bb:3d:18:9f: 44:e0:f5:68:29:8c:e6:7a:e2:1d:05:af:b4:bf:e7: 0d:a2:de:be:0a:9d:b3:04:41:d1:b2:62:ae:b5:f2: 34:89:22:a1:26:fc:7d:8d:00:6e:05:62:f3:70:69: 99:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E3:58:6B:32:E3:F7:7B:39:E0:6A:89:4A:27:B6:3C:43:69:1F:9E X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:62:de:65:3e:ec:7e:75:76:8b:6b:9f:f6:74:ec:e0:b4:87: cb:dc:98:4a:53:48:bb:d9:42:fd:cf:d6:2e:2c:b7:d8:e9:64: 95:3c:4b:a0:c3:80:65:0b:b5:bd:83:37:ec:cf:0b:2c:52:8f: b8:12:12:27:05:35:7d:d8:51:49:55:3c:e3:3e:96:17:c4:65: 4d:f9:10:ba:07:da:5b:8f:e7:1e:e6:d3:81:84:b2:54:23:c0: 1a:bb:72:14:c1:01:a0:fa:8d:27:90:0a:00:12:b0:13:c3:ec: 37:21:f6:20:b3:62:23:02:da:74:f0:02:21:17:8f:8f:b2:99: 64:b0:da:a9:83:0a:d0:ad:71:e9:30:0f:61:3a:b6:d1:bb:12: b8:f9:3f:f4:16:78:59:5c:d2:41:4d:8d:8c:d7:1a:72:e8:75: 9b:35:97:0f:a5:0b:51:0c:a0:45:c4:54:d7:13:c6:0e:aa:1b: 29:0e:ed:9c:8b:18:cf:fe:26:a2:9c:d9:60:f6:c9:43:7f:00: 4f:48:e8:82:a8:90:31:4d:1b:1e:24:fd:b1:da:bf:d3:72:92: eb:c9:4d:bf:a9:cf:9d:7b:52:65:6b:be:08:2d:5d:d7:e7:66: b1:52:48:b5:a1:5c:37:bf:15:c2:87:de:54:d2:dc:c6:48:34: 29:6e:04:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjUxMDE5MDYzMzU5WhcNMjUxMDI2MDYzMzU5WjAYMRYwFAYD VQQDEw02OGY0ODY1Ny0xODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87MWZTOM2oxDVQRBryqrWh7vrtRr/jrJAUNwJ4mfAhIgUCFKqdGRh1/tml7o d7LzhehIoTp56ev+TJ0HJk6Soi/Lz6uXmXNWsR0kIn4kwQM0W7qLXQlwpnJgrpG0 kLsg03VmxL2KabReFeADHwKL97Se5ASOdbAA4BuoNNy6xtkbHDRISXbTcK5867L8 F/P72+wmkgwti1J9hrbKFEkKskCAz9hw0FEc8nmLaT8rsdD51bNfHZeQvBJfATPf aVqgJkmY0lLaKvfr5KQLI7s9GJ9E4PVoKYzmeuIdBa+0v+cNot6+Cp2zBEHRsmKu tfI0iSKhJvx9jQBuBWLzcGmZJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrjWGsy 4/d7OeBqiUontjxDaR+eMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFYt5lPux+dXaLa5/2dOzgtIfL3JhKU0i72UL9z9YuLLfY6WSVPEug w4BlC7W9gzfszwssUo+4EhInBTV92FFJVTzjPpYXxGVN+RC6B9pbj+ce5tOBhLJU I8Aau3IUwQGg+o0nkAoAErATw+w3IfYgs2IjAtp08AIhF4+PsplksNqpgwrQrXHp MA9hOrbRuxK4+T/0FnhZXNJBTY2M1xpy6HWbNZcPpQtRDKBFxFTXE8YOqhspDu2c ixjP/iainNlg9slDfwBPSOiCqJAxTRseJP2x2r/TcpLryU2/qc+de1Jla74ILV3X 52axUki1oVw3vxXCh95U0tzGSDQpbgST -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:01 2025 by rpki-client