$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: PP2DCtqO+Gwva2ZtnRXtDBShalcIY++eudKkNcFs7PI= Subject key identifier: 1B:37:7E:DB:D7:D5:96:DC:C1:27:B6:33:B0:A5:60:22:40:71:AA:27 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 021F Signing time: Sun 05 Apr 2026 02:28:28 +0000 Manifest this update: Sun 05 Apr 2026 02:28:27 +0000 Manifest next update: Sun 12 Apr 2026 02:28:27 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: OtGH10a8XKx/xXFQYg7WsRWUB9YK0rpEbmRkDye3GTY=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: jQDpwo+QqLU/lJ9etJ9XrTrIVILmvaXnCVSDMxtlPro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Apr 5 02:28:27 2026 GMT Not After : Apr 12 02:28:27 2026 GMT Subject: CN=69d1c8cb-5f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:a0:bc:25:ff:df:a8:59:8d:39:cc:57:7b: 70:42:cb:d0:a4:ed:8f:e8:b7:e6:1d:3f:d7:7c:6d: 8c:12:09:30:71:f0:17:74:40:c6:78:50:71:e0:81: 97:15:8b:f8:39:31:98:75:7e:b2:ef:d0:c6:3a:55: c3:cf:3b:39:bf:11:90:fc:93:2e:d1:b7:93:37:1d: 1b:21:9b:17:0e:c8:33:b5:32:e4:90:c5:74:1f:4b: c6:54:0b:1d:ed:f6:37:36:6c:67:2d:a0:48:17:e3: 3d:a0:d2:71:60:e5:23:1a:9a:10:98:c4:14:b0:a3: f5:99:b3:f7:e2:50:24:cc:c4:e3:c8:31:e9:68:e4: f2:f1:1b:b9:04:c9:fe:3a:ab:c0:61:14:bc:da:a6: ef:8e:40:2e:7c:e7:e3:0f:85:77:5c:68:ac:c1:2e: 1f:ac:a9:68:f4:fa:30:ae:2d:77:48:67:5c:c2:7d: 13:da:51:60:8a:23:90:c2:ca:b8:d5:a7:35:24:57: b1:fa:19:e8:26:7d:7a:2e:cd:02:ed:c6:80:7d:2e: a4:f0:4f:ec:ef:cb:41:1f:42:8b:c0:79:ab:01:ca: 2f:d8:36:04:2b:9c:b1:b5:46:7b:02:63:75:1d:f8: f0:e0:54:ef:48:f7:19:6e:dd:5f:07:50:ed:62:5c: 56:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:37:7E:DB:D7:D5:96:DC:C1:27:B6:33:B0:A5:60:22:40:71:AA:27 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:9d:b5:9f:2c:26:cc:a3:94:05:a5:82:e7:cb:f7:9e:59:cd: 61:f4:eb:70:30:a9:24:cd:db:17:cc:b3:fd:10:60:24:dd:9a: 02:55:d5:7d:f6:7a:bb:07:e3:ec:1e:7f:12:ad:69:ad:d8:4d: 46:5d:3e:f5:1f:64:7c:f4:e9:ea:0c:c3:03:f0:92:09:df:02: 2a:96:ce:82:ac:e7:9d:1e:ba:50:94:5d:dd:74:e6:2c:12:51: bf:33:4f:d6:03:52:64:fd:1c:1a:13:ac:99:b8:3f:b0:73:02: b0:96:d1:dc:0c:6c:35:b8:ad:e3:21:16:c3:2b:95:11:cb:1a: 38:46:db:03:c8:85:d5:91:7a:c1:74:9b:17:07:9a:bb:da:aa: 37:63:30:4f:31:22:f4:9d:65:67:9b:9c:a9:21:6b:0c:89:75: 24:a1:ab:33:e4:93:09:b6:3c:0a:3d:de:78:9f:bd:ac:cc:2d: 1d:20:be:00:a3:41:a3:78:8e:2a:be:fd:99:3d:e1:80:54:d2: 45:db:67:7b:18:87:75:dc:80:bb:36:d6:ee:72:e9:e9:3d:30: 50:fc:2b:d3:08:c9:47:99:31:42:b8:0a:68:cd:ce:59:5f:2d: e4:90:26:4f:3a:e8:d0:fc:22:9e:9d:40:90:a0:92:30:f0:aa: 1d:2d:82:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjYwNDA1MDIyODI3WhcNMjYwNDEyMDIyODI3WjAYMRYwFAYD VQQDEw02OWQxYzhjYi01ZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJmgvCX/36hZjTnMV3twQsvQpO2P6LfmHT/XfG2MEgkwcfAXdEDGeFBx4IGX FYv4OTGYdX6y79DGOlXDzzs5vxGQ/JMu0beTNx0bIZsXDsgztTLkkMV0H0vGVAsd 7fY3NmxnLaBIF+M9oNJxYOUjGpoQmMQUsKP1mbP34lAkzMTjyDHpaOTy8Ru5BMn+ OqvAYRS82qbvjkAufOfjD4V3XGiswS4frKlo9Powri13SGdcwn0T2lFgiiOQwsq4 1ac1JFex+hnoJn16Ls0C7caAfS6k8E/s78tBH0KLwHmrAcov2DYEK5yxtUZ7AmN1 Hfjw4FTvSPcZbt1fB1DtYlxWOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBs3ftvX 1ZbcwSe2M7ClYCJAcaonMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJp21nywmzKOUBaWC58v3nlnNYfTrcDCpJM3bF8yz/RBgJN2aAlXVffZ6uwfj 7B5/Eq1prdhNRl0+9R9kfPTp6gzDA/CSCd8CKpbOgqznnR66UJRd3XTmLBJRvzNP 1gNSZP0cGhOsmbg/sHMCsJbR3AxsNbit4yEWwyuVEcsaOEbbA8iF1ZF6wXSbFwea u9qqN2MwTzEi9J1lZ5ucqSFrDIl1JKGrM+STCbY8Cj3eeJ+9rMwtHSC+AKNBo3iO Kr79mT3hgFTSRdtnexiHddyAuzbW7nLp6T0wUPwr0wjJR5kxQrgKaM3OWV8t5JAm Tzro0Pwinp1AkKCSMPCqHS2CFA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:10 2026 by rpki-client