$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: CZQHrOahNGPP1hrugt4Lmz2zFhhtsuuvQSvp8tgFU6U= Subject key identifier: 75:D1:EC:17:AB:75:0D:8F:D4:1B:2F:3E:79:0A:57:DC:BB:E6:64:67 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 020D Signing time: Sun 05 Apr 2026 02:34:59 +0000 Manifest this update: Sun 05 Apr 2026 02:34:59 +0000 Manifest next update: Sun 12 Apr 2026 02:34:59 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: Huze5pe0wgvGEfFVv4+xqseRnfyrx84KKhUUggExQbg=) 2: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: VGPzKMnPimSMI2CiaOjVgyPC7/IcbTH85rF5mJCg2Ms=) 3: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: gZLmgQL8Id/ZC97jwL0iGOj/66jYcGItOBO3dCFihUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Apr 5 02:34:59 2026 GMT Not After : Apr 12 02:34:59 2026 GMT Subject: CN=69d1ca53-f945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f9:28:7e:eb:cc:9d:08:41:ea:7e:d5:ec:bb: 5f:65:54:fe:dd:0c:db:be:eb:3d:e4:09:60:74:c5: a2:c2:68:3c:e0:00:f7:a9:3f:f8:78:0a:9a:f6:22: 13:56:53:cd:b5:d5:69:0e:1b:b4:8d:a7:3a:1a:89: 03:1d:7b:60:63:09:a0:7e:bc:0b:fd:e8:0a:74:ea: d1:b4:f8:a0:72:e9:d0:d0:6e:42:14:1b:ae:98:72: 3f:c1:fe:f5:97:99:fb:05:0a:9d:6b:95:b1:be:68: 1b:dc:63:1b:29:fd:cf:15:b4:33:ba:48:83:dc:b0: 87:7b:3a:87:fd:d4:8b:f8:e1:fe:e4:24:97:22:1d: dd:65:b9:e1:af:c4:94:b2:f1:a0:e2:11:e6:93:e4: 57:65:ad:1e:ca:a0:19:02:a6:20:a2:d3:a2:75:93: a9:1f:0d:35:90:13:c9:4b:2a:ee:77:09:90:4e:46: 97:91:32:77:57:04:7d:69:4e:f8:54:e2:cd:bc:dd: 09:f2:1e:79:3c:17:2e:66:98:3a:37:1e:45:f9:98: 31:1c:33:92:3c:62:49:2a:36:da:3c:eb:50:a3:f7: e1:69:7d:0a:f7:6a:4a:43:f6:ad:45:86:f7:f2:59: 73:cd:34:0d:b1:bf:69:70:17:66:f9:ed:fb:26:66: b4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D1:EC:17:AB:75:0D:8F:D4:1B:2F:3E:79:0A:57:DC:BB:E6:64:67 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a7:74:5c:13:76:85:b2:1e:e7:b2:6a:20:76:bd:9c:e0:90: 0b:ea:4d:62:a5:16:04:3e:a6:1b:55:42:88:33:16:3f:1d:97: af:47:7b:bb:b7:03:ed:51:a6:b0:0d:90:05:7d:7e:41:59:7a: 75:3e:9d:36:3e:9e:45:fe:22:cc:e5:76:2f:a6:4d:eb:79:fc: 21:68:1b:79:5f:2c:42:6a:d5:62:d0:be:d3:67:ef:c7:0b:32: 12:64:5b:bf:54:c5:86:6a:9c:1b:b8:2b:a3:59:89:c8:ba:67: f4:c0:11:39:a2:95:f7:4b:6f:03:f8:a0:b4:bc:ac:04:ba:7b: f9:fa:09:b3:2c:a5:3e:3d:b3:14:a0:fd:a4:de:9c:f0:4c:c0: ea:94:a0:10:5f:7a:1b:ca:87:2a:7a:f6:aa:c4:d4:c8:18:41: 8c:5e:1e:89:68:b3:17:82:d2:a4:82:ac:89:f8:d0:81:e9:60: a5:85:9d:36:34:a3:b2:70:9a:71:91:1e:44:67:b6:11:53:e8: e5:f0:93:f4:8a:7d:10:2e:a8:60:d8:84:bd:0f:f4:81:e2:1f: 33:1f:d7:08:38:5d:b7:35:64:c9:6f:ef:e9:3c:24:9b:92:42: d9:38:c8:43:c7:1c:37:20:04:03:76:13:08:8e:84:d8:8e:77: 0b:ef:83:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjYwNDA1MDIzNDU5WhcNMjYwNDEyMDIzNDU5WjAYMRYwFAYD VQQDEw02OWQxY2E1My1mOTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/kofuvMnQhB6n7V7LtfZVT+3Qzbvus95AlgdMWiwmg84AD3qT/4eAqa9iIT VlPNtdVpDhu0jac6GokDHXtgYwmgfrwL/egKdOrRtPigcunQ0G5CFBuumHI/wf71 l5n7BQqda5Wxvmgb3GMbKf3PFbQzukiD3LCHezqH/dSL+OH+5CSXIh3dZbnhr8SU svGg4hHmk+RXZa0eyqAZAqYgotOidZOpHw01kBPJSyrudwmQTkaXkTJ3VwR9aU74 VOLNvN0J8h55PBcuZpg6Nx5F+ZgxHDOSPGJJKjbaPOtQo/fhaX0K92pKQ/atRYb3 8llzzTQNsb9pcBdm+e37Jma0WQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHXR7Ber dQ2P1BsvPnkKV9y75mRnMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcqd0XBN2hbIe57JqIHa9nOCQC+pNYqUWBD6mG1VCiDMWPx2Xr0d7u7cD7VGm sA2QBX1+QVl6dT6dNj6eRf4izOV2L6ZN63n8IWgbeV8sQmrVYtC+02fvxwsyEmRb v1TFhmqcG7gro1mJyLpn9MAROaKV90tvA/igtLysBLp7+foJsyylPj2zFKD9pN6c 8EzA6pSgEF96G8qHKnr2qsTUyBhBjF4eiWizF4LSpIKsifjQgelgpYWdNjSjsnCa cZEeRGe2EVPo5fCT9Ip9EC6oYNiEvQ/0geIfMx/XCDhdtzVkyW/v6Twkm5JC2TjI Q8ccNyAEA3YTCI6E2I53C++D2A== -----END CERTIFICATE-----Generated at Mon Apr 6 09:04:07 2026 by rpki-client