$ rpki-client -vvf rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft File: 33nDugFSYeOshDI5zkcDWQHWapQ.mft (raw, json) Hash identifier: 5KnHqz3RvFF3pj5Fr236PT4Q4Qi5IIv/ekO6n/v+X2Y= Subject key identifier: 76:60:0B:DB:61:A7:E6:42:4D:C3:5E:B8:59:A4:B0:6B:F6:8B:02:B9 Authority key identifier: DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 Certificate issuer: /CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft Manifest number: 0212 Signing time: Sun 05 Apr 2026 02:30:32 +0000 Manifest this update: Sun 05 Apr 2026 02:30:31 +0000 Manifest next update: Sun 12 Apr 2026 02:30:31 +0000 Files and hashes: 1: 33nDugFSYeOshDI5zkcDWQHWapQ.crl (hash: unwlsNt6bt76YlLe1w6bhGD9x8U3p73mU1vKohyYQpc=) 2: 18DC0A381C0311EE9B0F2938C4F9AE02.roa (hash: ZuQdvo3O3mwgbl46FNxheRRrkq5c13FZ1QLKqfjZUX8=) 3: 17C68D301C0311EE9B0F2938C4F9AE02.roa (hash: PPUG38GrYc1pSvAs42aCMPByXIt0IlvrGE9mP2N9xD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C572B, serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Validity Not Before: Apr 5 02:30:31 2026 GMT Not After : Apr 12 02:30:31 2026 GMT Subject: CN=69d1c947-4c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fc:4f:49:5d:89:b6:76:86:72:10:54:1f:b1: e5:b9:d5:30:fb:9b:1f:23:e7:ed:ef:a7:47:7e:78: 11:c5:6e:c4:eb:6e:49:93:66:c1:01:96:c4:5e:31: 1d:d4:a2:7c:a1:f5:4e:52:59:de:5c:95:24:59:10: e9:9e:72:3a:e0:97:d7:b2:b8:65:74:bd:40:15:b9: 66:98:44:bf:66:16:71:c9:ff:f3:3c:91:cb:8d:f7: 1f:0f:64:c6:e6:92:5a:8e:64:91:3d:59:1e:0e:f5: 99:77:a8:be:b0:ae:2c:d1:3c:e0:2f:27:f0:7e:51: ad:21:df:95:b8:8d:28:3f:41:94:36:2c:b7:5c:d1: 94:cd:1d:61:f1:1f:a6:cb:bb:86:b1:62:4c:fe:3b: a6:3a:0d:97:d1:ac:15:14:29:f7:27:80:d9:92:38: 77:02:c4:5b:fb:37:3d:41:bc:86:4c:27:78:d5:18: db:d6:e5:b3:5e:eb:28:b5:bc:18:3c:a2:24:1d:4b: a8:ba:09:4b:6e:dc:d7:80:ad:43:f7:b3:42:12:07: 20:b4:23:df:ea:83:af:3a:2a:fe:bd:cc:6e:33:ff: 9a:bd:26:91:96:c4:af:5f:d4:1c:f6:74:9d:fc:64: 5c:82:1d:c4:4b:d2:97:c8:bc:03:02:47:2b:79:20: 7d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:60:0B:DB:61:A7:E6:42:4D:C3:5E:B8:59:A4:B0:6B:F6:8B:02:B9 X509v3 Authority Key Identifier: keyid:DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:30:16:09:86:5d:ca:29:13:ef:69:5b:d3:b2:e5:43:74:2f: 2b:3d:61:6c:e7:c6:77:18:c7:36:8a:80:64:71:85:61:97:06: 5f:2d:eb:8e:37:30:5e:05:b4:bd:b0:64:b1:d1:03:34:24:80: 6f:b8:9d:d6:2c:5e:dc:cc:85:46:e9:63:f8:56:33:3d:96:29: 5f:d8:7a:76:10:83:3e:af:37:89:08:1c:f9:90:b2:dc:52:e1: 77:05:10:26:4a:11:72:a7:4c:04:95:dd:d8:a9:78:2b:c0:e3: f6:50:a1:0b:17:31:74:9d:51:79:67:a2:60:ea:d8:e6:ad:bb: b6:11:10:eb:3e:15:7a:69:fa:d9:fb:a0:30:23:24:0b:5a:eb: f7:35:db:8f:c3:39:3e:31:57:67:35:b4:72:f5:cd:74:27:27: 0c:cf:ed:7e:d3:8f:de:cf:d2:7b:27:d8:7e:d8:17:ae:48:68: 16:ca:90:2b:07:ff:3e:4b:c2:e0:ce:d1:dd:ab:ed:2f:3c:49: 8c:32:d6:96:12:71:9a:70:e6:21:9f:d8:7a:46:fe:35:04:a0: 8f:a8:42:1f:ff:aa:d9:15:18:43:6e:00:0f:45:aa:bf:65:ac: 5d:a2:eb:14:0a:26:dc:d3:7a:3f:f8:44:ed:84:d5:f7:c3:24: 49:01:0f:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3MkIxMTAvBgNVBAUTKERGNzlDM0JBMDE1MjYxRTNBQzg0MzIzOUNFNDcwMzU5 MDFENjZBOTQwHhcNMjYwNDA1MDIzMDMxWhcNMjYwNDEyMDIzMDMxWjAYMRYwFAYD VQQDEw02OWQxYzk0Ny00YzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufxPSV2JtnaGchBUH7HludUw+5sfI+ft76dHfngRxW7E625Jk2bBAZbEXjEd 1KJ8ofVOUlneXJUkWRDpnnI64JfXsrhldL1AFblmmES/ZhZxyf/zPJHLjfcfD2TG 5pJajmSRPVkeDvWZd6i+sK4s0TzgLyfwflGtId+VuI0oP0GUNiy3XNGUzR1h8R+m y7uGsWJM/jumOg2X0awVFCn3J4DZkjh3AsRb+zc9QbyGTCd41Rjb1uWzXusotbwY PKIkHUuouglLbtzXgK1D97NCEgcgtCPf6oOvOir+vcxuM/+avSaRlsSvX9Qc9nSd /GRcgh3ES9KXyLwDAkcreSB9dwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHZgC9th p+ZCTcNeuFmksGv2iwK5MB8GA1UdIwQYMBaAFN95w7oBUmHjrIQyOc5HA1kB1mqU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTcyQi9GN0U1QzE2ODBF OUExMUVFQTY0NDlFNzFDNEY5QUUwMi8zM25EdWdGU1llT3NoREk1emtjRFdRSFdh cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzbkR1Z0ZTWWVPc2hESTV6a2NEV1FIV2FwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTcyQi9GN0U1QzE2ODBFOUExMUVFQTY0NDlFNzFDNEY5QUUwMi8zM25EdWdGU1ll T3NoREk1emtjRFdRSFdhcFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQDAWCYZdyikT72lb07LlQ3QvKz1hbOfGdxjHNoqAZHGFYZcGXy3rjjcwXgW0 vbBksdEDNCSAb7id1ixe3MyFRulj+FYzPZYpX9h6dhCDPq83iQgc+ZCy3FLhdwUQ JkoRcqdMBJXd2Kl4K8Dj9lChCxcxdJ1ReWeiYOrY5q27thEQ6z4Vemn62fugMCMk C1rr9zXbj8M5PjFXZzW0cvXNdCcnDM/tftOP3s/SeyfYftgXrkhoFsqQKwf/PkvC 4M7R3avtLzxJjDLWlhJxmnDmIZ/Yekb+NQSgj6hCH/+q2RUYQ24AD0Wqv2WsXaLr FAom3NN6P/hE7YTV98MkSQEPlg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:56 2026 by rpki-client