$ rpki-client -vvf rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft File: 74x3yBft3T_cxmtjUtbqeNcsWsY.mft (raw, json) Hash identifier: xcPjuNxjMwiGICgQUgclj8C827CZyCYC134Kf0juCMw= Subject key identifier: E6:A7:94:AA:5C:51:58:C0:5F:22:32:E5:2B:27:3E:06:C2:82:36:40 Authority key identifier: EF:8C:77:C8:17:ED:DD:3F:DC:C6:6B:63:52:D6:EA:78:D7:2C:5A:C6 Certificate issuer: /CN=A91DABAA/serialNumber=EF8C77C817EDDD3FDCC66B6352D6EA78D72C5AC6 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74x3yBft3T_cxmtjUtbqeNcsWsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft Manifest number: 3B Signing time: Wed 25 Mar 2026 07:43:01 +0000 Manifest this update: Wed 25 Mar 2026 07:43:01 +0000 Manifest next update: Wed 01 Apr 2026 07:43:01 +0000 Files and hashes: 1: 74x3yBft3T_cxmtjUtbqeNcsWsY.crl (hash: +6coAJM+7Az3ZKWt/jb2WVGcJLEwn9di75jn1cm987E=) 2: EEEB4CEAD19D11F0B238D972C4F9AE02.roa (hash: KBecdMTFKnUpJ7QDfC5GLAYFAglDXZ+nTAZgDKN2WsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.crl rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74x3yBft3T_cxmtjUtbqeNcsWsY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DABAA, serialNumber=EF8C77C817EDDD3FDCC66B6352D6EA78D72C5AC6 Validity Not Before: Mar 25 07:43:01 2026 GMT Not After : Apr 1 07:43:01 2026 GMT Subject: CN=69c39205-bc97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:a3:4c:8e:ef:db:46:ae:c3:2b:8f:51:06: 31:c7:e8:28:9b:f7:a8:a2:c7:fe:63:3d:3b:3b:6d: 3c:1b:e4:c9:da:d3:5d:ec:66:53:d6:5f:44:5b:40: df:d8:5c:bd:00:e6:e4:29:2f:0d:5e:fe:76:ab:29: 5a:c2:a2:2b:04:18:8d:02:56:f6:6c:92:79:bb:78: ef:5a:b7:06:e5:af:4c:4c:5b:00:4d:dc:77:ea:b8: d6:ef:6c:9f:e6:c0:27:13:a9:87:33:11:4c:0e:dd: 5f:f4:54:a7:3f:cc:61:af:8a:04:b6:af:98:13:f3: d4:a4:55:e8:4a:b0:17:84:8d:54:dd:7b:06:9b:35: 88:84:03:42:fc:e8:1d:ef:f8:fa:9f:c0:d4:02:70: 61:e2:c0:da:d4:26:a0:93:f1:40:3f:32:84:82:89: 10:3c:c6:30:bc:ac:7d:79:fa:cb:72:ec:18:78:d7: de:f9:22:8f:d4:ec:11:1d:a2:41:7a:c5:b6:65:c9: 27:42:00:73:95:93:dd:2e:04:39:d3:36:04:b0:6b: f5:4c:ff:8a:47:8d:32:2d:d0:df:b8:ba:60:c4:11: 97:8d:dc:49:4a:48:ab:6e:13:3f:6e:59:f7:ec:bc: 72:e5:ad:bc:74:2f:d4:c1:9a:33:24:c6:9f:89:13: 35:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A7:94:AA:5C:51:58:C0:5F:22:32:E5:2B:27:3E:06:C2:82:36:40 X509v3 Authority Key Identifier: keyid:EF:8C:77:C8:17:ED:DD:3F:DC:C6:6B:63:52:D6:EA:78:D7:2C:5A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74x3yBft3T_cxmtjUtbqeNcsWsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:5e:67:5a:16:89:46:37:83:1e:30:b1:0a:4f:bc:a8:8b:06: 0d:02:71:ba:9d:1f:61:e8:2d:00:67:07:6f:be:af:07:3e:84: 89:f8:50:76:4f:a4:de:93:b5:5a:e0:46:b0:73:56:3a:f4:b1: 04:35:d0:da:15:83:5e:28:da:39:6c:14:18:89:12:bd:48:f9: 4a:5d:13:12:1a:1c:68:a2:08:9e:94:81:cf:4d:6d:98:a9:85: 44:89:8c:77:36:14:50:2f:62:95:62:a8:17:7e:af:e1:ab:2b: 53:82:d9:85:ea:1f:3a:d8:fe:3b:65:cf:cb:2e:21:21:d0:af: 71:78:0d:6b:93:c0:99:be:4d:ac:a5:bf:2b:e9:79:c1:80:9b: 6c:d5:b9:f6:07:58:35:84:58:a3:40:82:01:21:58:27:00:7f: 21:3c:5b:65:34:49:46:c7:83:c4:14:e4:a5:2d:7b:60:40:c0: c7:f4:21:cb:0f:52:d5:a3:99:ee:70:11:51:cc:53:5e:ce:43: a3:45:fd:2d:f7:dd:1f:a0:60:0d:5d:dc:93:e5:5a:f5:44:52: b8:fb:5a:bc:b4:b4:8e:a7:65:d2:9d:f8:94:3f:64:47:46:30: a1:05:ec:e7:a2:1c:17:f4:86:8a:43:63:e3:71:95:b5:8a:3c: 50:96:65:b2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QUJBQTExMC8GA1UEBRMoRUY4Qzc3QzgxN0VEREQzRkRDQzY2QjYzNTJENkVBNzhE NzJDNUFDNjAeFw0yNjAzMjUwNzQzMDFaFw0yNjA0MDEwNzQzMDFaMBgxFjAUBgNV BAMTDTY5YzM5MjA1LWJjOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLiKNMju/bRq7DK49RBjHH6Cib96iix/5jPTs7bTwb5Mna013sZlPWX0RbQN/Y XL0A5uQpLw1e/narKVrCoisEGI0CVvZsknm7eO9atwblr0xMWwBN3HfquNbvbJ/m wCcTqYczEUwO3V/0VKc/zGGvigS2r5gT89SkVehKsBeEjVTdewabNYiEA0L86B3v +PqfwNQCcGHiwNrUJqCT8UA/MoSCiRA8xjC8rH15+sty7Bh41975Io/U7BEdokF6 xbZlySdCAHOVk90uBDnTNgSwa/VM/4pHjTIt0N+4umDEEZeN3ElKSKtuEz9uWffs vHLlrbx0L9TBmjMkxp+JEzXRAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU5qeUqlxR WMBfIjLlKyc+BsKCNkAwHwYDVR0jBBgwFoAU74x3yBft3T/cxmtjUtbqeNcsWsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBQkFBLzQyMEMwRjZFRDE5 RDExRjA4MzgxNDE3MEM0RjlBRTAyLzc0eDN5QmZ0M1RfY3htdGpVdGJxZU5jc1dz WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNzR4M3lCZnQzVF9jeG10alV0YnFlTmNzV3NZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB QkFBLzQyMEMwRjZFRDE5RDExRjA4MzgxNDE3MEM0RjlBRTAyLzc0eDN5QmZ0M1Rf Y3htdGpVdGJxZU5jc1dzWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBUXmdaFolGN4MeMLEKT7yoiwYNAnG6nR9h6C0AZwdvvq8HPoSJ+FB2T6Tek7Va 4Eawc1Y69LEENdDaFYNeKNo5bBQYiRK9SPlKXRMSGhxoogielIHPTW2YqYVEiYx3 NhRQL2KVYqgXfq/hqytTgtmF6h862P47Zc/LLiEh0K9xeA1rk8CZvk2spb8r6XnB gJts1bn2B1g1hFijQIIBIVgnAH8hPFtlNElGx4PEFOSlLXtgQMDH9CHLD1LVo5nu cBFRzFNezkOjRf0t990foGANXdyT5Vr1RFK4+1q8tLSOp2XSnfiUP2RHRjChBezn ohwX9IaKQ2PjcZW1ijxQlmWy -----END CERTIFICATE-----Generated at Fri Mar 27 04:55:56 2026 by rpki-client