$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: XHP75sUYkcpZZ7u1PxwWrP/CXet5V5HD2EXcg+K7PTc= Subject key identifier: 25:C6:81:3F:C7:90:55:AA:B3:1D:75:5C:90:68:EC:BB:7E:F8:B2:DF Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 01BC Signing time: Wed 25 Mar 2026 03:09:28 +0000 Manifest this update: Wed 25 Mar 2026 03:09:27 +0000 Manifest next update: Wed 01 Apr 2026 03:09:27 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: hWLHa3nN7wwGru7l2BRMGY2Qdhg6+UluayHzA8FMDo8=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 3tWo+TxjvNRfazBkfrqsYl15Cz/V8ipCTw/38p8PqXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Mar 25 03:09:27 2026 GMT Not After : Apr 1 03:09:27 2026 GMT Subject: CN=69c351e7-2bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:38:98:70:e1:96:73:d6:e1:0b:87:d3:b3: ff:26:74:4a:94:68:dc:64:20:2b:ab:bb:a0:2c:f7: f7:41:02:b2:10:17:27:78:65:b1:f2:87:9b:54:cb: bb:f3:d2:9e:71:78:45:1a:9a:1d:47:e7:d0:67:90: 36:51:21:b1:72:9e:b7:4e:c9:d5:6e:2d:6f:e3:28: 13:32:99:d6:9d:58:ee:7b:75:07:f7:7c:cf:4c:0a: 06:f5:22:f8:db:eb:01:bb:2a:b3:40:d9:36:88:ae: b7:e0:ea:ec:01:00:ca:9d:6b:70:30:10:6c:f3:56: d7:90:c9:0d:84:ee:5a:5f:52:e5:c0:98:95:2d:3d: 0b:9c:6c:06:61:d9:73:90:4c:be:0c:be:12:60:06: 36:c0:07:19:f3:f1:5b:60:3a:48:31:21:b4:51:28: 82:6b:8b:04:fb:86:99:e2:91:86:3b:f2:9c:cb:15: e0:53:ef:47:ae:c7:55:d1:4b:a4:f7:1d:9c:f6:d0: 67:9e:bb:ec:85:c6:da:8e:36:85:83:8d:2c:cc:06: d1:28:59:86:d8:e0:a7:de:d8:1f:dd:89:80:20:a1: f7:ee:be:59:b6:e7:3b:d6:73:e8:b8:b3:33:93:d2: 7f:87:4b:95:be:0a:d3:0c:b3:97:4d:67:ac:10:94: c1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C6:81:3F:C7:90:55:AA:B3:1D:75:5C:90:68:EC:BB:7E:F8:B2:DF X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:66:de:15:e8:c5:46:6a:db:77:84:ab:1e:b0:b0:7d:bf:8d: e4:50:b2:41:71:4a:33:79:d1:b2:67:17:ad:6a:39:bd:10:e2: c7:71:61:85:a0:b4:25:d0:01:7a:ed:db:6d:59:74:3d:33:29: 76:1c:cf:2c:77:6e:cd:76:7b:33:f5:41:ad:27:90:7f:11:48: 63:cd:37:68:ca:e5:56:0d:1e:1a:5e:3f:24:33:d7:8d:51:01: 1f:e8:00:ec:1b:de:f9:46:14:d7:9c:26:5d:b5:06:50:8b:a1: d2:6c:99:8c:96:d9:6b:97:6a:90:fb:c8:1a:0d:85:b8:62:56: f3:01:50:7b:64:0e:b4:c4:ec:8b:dc:6d:21:81:e7:54:2e:fe: 8a:99:bb:13:69:51:a2:cf:b2:07:7f:fb:4f:52:ab:64:fb:b9: fd:8c:27:0f:25:7c:d8:96:8a:b2:37:09:88:ae:4e:95:b0:cc: 20:ce:c8:36:7f:62:49:49:b6:80:d1:cb:40:41:24:33:3d:ac: ca:4d:b9:dc:f9:ea:79:6f:69:e4:05:bb:1d:8c:34:07:fb:53: 96:17:e0:41:01:b6:8f:61:f8:d5:b2:9b:c5:89:6e:ea:2e:2b: 70:b9:37:91:3d:9b:64:4c:98:e6:a7:82:57:02:03:13:81:db: fd:c4:71:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjYwMzI1MDMwOTI3WhcNMjYwNDAxMDMwOTI3WjAYMRYwFAYD VQQDEw02OWMzNTFlNy0yYmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxU4mHDhlnPW4QuH07P/JnRKlGjcZCArq7ugLPf3QQKyEBcneGWx8oebVMu7 89KecXhFGpodR+fQZ5A2USGxcp63TsnVbi1v4ygTMpnWnVjue3UH93zPTAoG9SL4 2+sBuyqzQNk2iK634OrsAQDKnWtwMBBs81bXkMkNhO5aX1LlwJiVLT0LnGwGYdlz kEy+DL4SYAY2wAcZ8/FbYDpIMSG0USiCa4sE+4aZ4pGGO/KcyxXgU+9HrsdV0Uuk 9x2c9tBnnrvshcbajjaFg40szAbRKFmG2OCn3tgf3YmAIKH37r5Ztuc71nPouLMz k9J/h0uVvgrTDLOXTWesEJTBLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCXGgT/H kFWqsx11XJBo7Lt++LLfMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXmbeFejFRmrbd4SrHrCwfb+N5FCyQXFKM3nRsmcXrWo5vRDix3FhhaC0JdAB eu3bbVl0PTMpdhzPLHduzXZ7M/VBrSeQfxFIY803aMrlVg0eGl4/JDPXjVEBH+gA 7Bve+UYU15wmXbUGUIuh0myZjJbZa5dqkPvIGg2FuGJW8wFQe2QOtMTsi9xtIYHn VC7+ipm7E2lRos+yB3/7T1KrZPu5/YwnDyV82JaKsjcJiK5OlbDMIM7INn9iSUm2 gNHLQEEkMz2syk253PnqeW9p5AW7HYw0B/tTlhfgQQG2j2H41bKbxYlu6i4rcLk3 kT2bZEyY5qeCVwIDE4Hb/cRxgA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:23:16 2026 by rpki-client