$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC978/C526E60E001311F1BC38ABCC406F56BC/74sS4pnzyE0UvzVyXwLdxQOxLgE.mft File: 74sS4pnzyE0UvzVyXwLdxQOxLgE.mft (raw, json) Hash identifier: BUP2J+MJjcIBaN0xDGPnqUgywqwKs4dZk6T4AR7Zt5A= Subject key identifier: 46:C5:1F:F4:06:B5:BF:E5:69:04:56:E1:6D:92:02:6F:7C:76:C7:F6 Authority key identifier: EF:8B:12:E2:99:F3:C8:4D:14:BF:35:72:5F:02:DD:C5:03:B1:2E:01 Certificate issuer: /CN=A91EC978/serialNumber=EF8B12E299F3C84D14BF35725F02DDC503B12E01 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/74sS4pnzyE0UvzVyXwLdxQOxLgE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC978/C526E60E001311F1BC38ABCC406F56BC/74sS4pnzyE0UvzVyXwLdxQOxLgE.mft Manifest number: 23 Signing time: Sun 29 Mar 2026 08:32:27 +0000 Manifest this update: Sun 29 Mar 2026 08:32:27 +0000 Manifest next update: Sun 05 Apr 2026 08:32:27 +0000 Files and hashes: 1: 74sS4pnzyE0UvzVyXwLdxQOxLgE.crl (hash: 19eAIz6ZOFcLkZuZKFtxAFjJJzuqhRStwylxPZwolUo=) 2: F46C6AE2001311F1811932CE406F56BC.roa (hash: MxFfnouduq0AyvPx5Uzbe5lXPlmcgFB0L/5+2A+Av3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC978/C526E60E001311F1BC38ABCC406F56BC/74sS4pnzyE0UvzVyXwLdxQOxLgE.crl rsync://rpki.apnic.net/member_repository/A91EC978/C526E60E001311F1BC38ABCC406F56BC/74sS4pnzyE0UvzVyXwLdxQOxLgE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/74sS4pnzyE0UvzVyXwLdxQOxLgE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:32:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC978, serialNumber=EF8B12E299F3C84D14BF35725F02DDC503B12E01 Validity Not Before: Mar 29 08:32:27 2026 GMT Not After : Apr 5 08:32:27 2026 GMT Subject: CN=69c8e39b-f330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:b0:c6:94:ca:6a:3c:05:21:33:79:cd:d7: e6:4f:2d:f6:75:48:dc:2c:6f:d6:e9:7a:9e:17:c7: a1:7c:fa:80:a3:b5:c2:c0:b7:d7:c8:52:05:10:6d: ce:35:d3:27:6d:24:7e:dd:2e:0c:5e:b1:99:6f:0f: 3f:e8:97:93:67:1b:0f:19:47:22:8a:60:90:00:94: 54:a0:80:30:2e:16:e4:94:95:0c:62:8d:a1:e1:0e: 8d:5b:16:fa:6a:ad:fe:fe:ce:84:8e:7c:e3:fc:97: 44:25:9d:81:b8:ff:9a:a8:53:8a:b7:2d:7b:73:15: 41:32:a2:25:d1:2a:bd:50:ef:a8:19:cb:d0:a4:1e: f3:c0:c4:5a:89:66:c1:6d:76:c8:e8:00:12:e0:1b: 70:03:ee:26:17:3b:dc:a1:6f:52:11:97:4f:c9:d4: e1:aa:49:df:f8:9e:00:f6:06:5b:88:a8:e7:75:e3: 96:d6:f8:eb:24:37:ae:2e:3a:15:7b:b4:db:3b:66: 4b:02:a6:e7:36:ee:72:bb:12:25:3c:77:4c:97:8a: c3:f7:e9:a6:a3:77:9e:2f:75:5e:7a:20:68:20:d0: e1:54:e0:d3:99:d2:40:24:6e:2e:ac:70:a0:29:37: 93:c4:ec:f5:ec:c0:01:9f:c9:0e:20:13:7e:39:f9: f5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C5:1F:F4:06:B5:BF:E5:69:04:56:E1:6D:92:02:6F:7C:76:C7:F6 X509v3 Authority Key Identifier: keyid:EF:8B:12:E2:99:F3:C8:4D:14:BF:35:72:5F:02:DD:C5:03:B1:2E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC978/C526E60E001311F1BC38ABCC406F56BC/74sS4pnzyE0UvzVyXwLdxQOxLgE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/74sS4pnzyE0UvzVyXwLdxQOxLgE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC978/C526E60E001311F1BC38ABCC406F56BC/74sS4pnzyE0UvzVyXwLdxQOxLgE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b4:02:76:32:2e:7c:0a:36:6b:98:3e:f4:db:54:ca:2d:ef: 3d:62:e1:9a:6c:b0:2b:d5:66:b2:43:10:a6:b5:67:a7:b3:3c: 18:2a:d5:d0:a8:7c:f8:a6:0a:6b:50:e2:7f:5a:56:bb:67:a8: 92:98:e4:d6:d4:e6:62:00:65:1a:0c:41:4c:70:25:f6:5f:69: 27:5c:b8:13:5b:e2:af:21:f2:06:27:32:e8:52:f4:62:f0:b3: 50:d3:24:a1:6b:7c:33:82:63:28:f0:a9:9e:43:9c:c5:88:d3: 79:ae:d9:a7:ae:f9:bf:60:99:68:8d:50:c1:b9:b8:bf:2e:9d: 65:cd:98:ce:07:0d:62:23:41:8e:b2:e5:ba:1c:27:63:a5:6d: c3:ea:d1:f3:4b:e4:0c:d9:1a:2c:a5:ab:a2:33:7d:58:5b:c1: 87:a3:d9:72:c6:f1:ff:d6:dc:f0:13:76:ca:b5:e5:1f:7f:c1: c8:dc:48:8c:45:6e:d7:78:c3:58:fb:8e:a7:07:58:9c:b2:14: 6a:67:f8:36:b9:95:e6:b2:d7:2f:41:3d:43:41:3b:ef:8a:3d: 32:cf:53:dd:49:c4:7b:71:39:86:e0:71:b8:9c:a1:1d:b3:00: 95:ee:47:bb:09:24:f1:94:be:6e:60:29:d0:ff:06:41:f0:b3: d2:c1:08:a1 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Qzk3ODExMC8GA1UEBRMoRUY4QjEyRTI5OUYzQzg0RDE0QkYzNTcyNUYwMkREQzUw M0IxMkUwMTAeFw0yNjAzMjkwODMyMjdaFw0yNjA0MDUwODMyMjdaMBgxFjAUBgNV BAMTDTY5YzhlMzliLWYzMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC927DGlMpqPAUhM3nN1+ZPLfZ1SNwsb9bpep4Xx6F8+oCjtcLAt9fIUgUQbc41 0ydtJH7dLgxesZlvDz/ol5NnGw8ZRyKKYJAAlFSggDAuFuSUlQxijaHhDo1bFvpq rf7+zoSOfOP8l0QlnYG4/5qoU4q3LXtzFUEyoiXRKr1Q76gZy9CkHvPAxFqJZsFt dsjoABLgG3AD7iYXO9yhb1IRl0/J1OGqSd/4ngD2BluIqOd145bW+OskN64uOhV7 tNs7ZksCpuc27nK7EiU8d0yXisP36aajd54vdV56IGgg0OFU4NOZ0kAkbi6scKAp N5PE7PXswAGfyQ4gE345+fU1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQURsUf9Aa1 v+VpBFbhbZICb3x2x/YwHwYDVR0jBBgwFoAU74sS4pnzyE0UvzVyXwLdxQOxLgEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVDOTc4L0M1MjZFNjBFMDAx MzExRjFCQzM4QUJDQzQwNkY1NkJDLzc0c1M0cG56eUUwVXZ6VnlYd0xkeFFPeExn RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzRzUzRwbnp5RTBVdnpWeVh3TGR4UU94TGdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVD OTc4L0M1MjZFNjBFMDAxMzExRjFCQzM4QUJDQzQwNkY1NkJDLzc0c1M0cG56eUUw VXZ6VnlYd0xkeFFPeExnRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBFtAJ2Mi58CjZrmD7021TKLe89YuGabLAr1WayQxCmtWenszwYKtXQqHz4pgpr UOJ/Wla7Z6iSmOTW1OZiAGUaDEFMcCX2X2knXLgTW+KvIfIGJzLoUvRi8LNQ0ySh a3wzgmMo8KmeQ5zFiNN5rtmnrvm/YJlojVDBubi/Lp1lzZjOBw1iI0GOsuW6HCdj pW3D6tHzS+QM2RospauiM31YW8GHo9lyxvH/1tzwE3bKteUff8HI3EiMRW7XeMNY +46nB1icshRqZ/g2uZXmstcvQT1DQTvvij0yz1PdScR7cTmG4HG4nKEdswCV7ke7 CSTxlL5uYCnQ/wZB8LPSwQih -----END CERTIFICATE-----Generated at Mon Mar 30 14:59:24 2026 by rpki-client