$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: uUPllpODHySpXykUOPS/KSbBahWeeaxVPaXvQWxrXyE= Subject key identifier: 4C:65:98:C7:5A:F7:36:7C:D9:F8:54:AD:56:EF:33:B0:C5:AA:D2:1C Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 057F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0576 Signing time: Sat 04 Apr 2026 23:05:15 +0000 Manifest this update: Sat 04 Apr 2026 23:05:15 +0000 Manifest next update: Sat 11 Apr 2026 23:05:15 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: eqSoQGo7ADo3dPDE6BQyCWORYGTvecTooNF1GeuwAJo=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: 1OTKEgqlZnaKGpmz6oNBNrSZubeFhZS/c5pM2HU9abQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1407 (0x57f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Apr 4 23:05:15 2026 GMT Not After : Apr 11 23:05:15 2026 GMT Subject: CN=69d1992b-ad2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:7f:a5:54:2c:3a:19:73:b5:c0:23:ee:cd: 1f:d4:72:fd:43:b7:5c:d9:7c:64:a2:27:e9:41:3c: ea:37:1b:58:c8:a6:09:c5:d3:f7:30:12:50:7f:ed: 51:34:a5:0b:9a:77:31:dc:65:92:73:81:ff:6b:1d: 96:c1:5d:ec:97:a4:5a:e5:06:52:1b:73:aa:ce:b0: 47:d7:bb:f9:65:59:14:e8:2f:df:0c:2d:db:30:4b: 82:23:1f:e3:49:83:26:c2:40:f6:84:78:a4:14:37: c5:10:1c:09:4c:a4:cf:f0:46:61:ee:c6:67:81:3c: 69:bd:18:be:2f:06:f5:c7:da:df:f8:a1:59:7c:53: c5:65:01:77:4f:7c:df:10:76:c6:c8:12:4b:a6:2f: c4:5c:c8:ec:0a:ad:c7:6b:a0:d2:56:a8:8c:af:f1: 77:fa:3e:60:a3:61:42:0f:0c:23:03:09:8a:f0:60: 4a:54:02:2c:86:a0:a8:a5:36:73:16:a7:91:a1:0d: a8:ae:e2:c3:ce:9d:c6:e2:4f:32:b6:b4:38:cf:dd: 58:39:3b:57:3b:ae:94:02:13:fd:dc:c2:65:f4:d1: 26:62:98:14:71:a0:33:70:ef:15:ca:17:8b:c3:2d: 2a:83:ce:eb:5e:a1:7b:65:76:f6:2f:53:28:3b:3b: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:65:98:C7:5A:F7:36:7C:D9:F8:54:AD:56:EF:33:B0:C5:AA:D2:1C X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:7d:20:d5:7e:74:7c:0e:9b:68:9a:96:89:6e:f1:e1:6e:6f: 86:8e:f0:bd:42:ea:76:10:6d:86:7c:67:d4:80:eb:a4:d8:76: c9:30:fb:8b:76:24:e0:03:63:05:a9:48:0f:ea:6d:81:29:ac: d1:dd:ef:0f:b2:88:e5:c3:ec:dc:d1:73:bb:a9:79:28:13:1b: aa:07:cc:a1:48:93:9f:98:c1:c1:4a:b6:97:79:23:d7:09:64: 66:55:58:69:8c:f8:db:12:d6:6c:31:e5:20:5d:75:29:af:0e: 90:2f:9a:81:d1:14:b2:ca:28:8e:ba:8a:bb:72:04:ea:98:08: ad:69:2f:1f:14:31:ce:a7:b2:6a:23:67:52:af:e3:c4:a3:3b: 8c:b1:89:8f:bc:33:f8:0c:67:f4:98:32:a3:07:f9:ff:e8:3b: 55:d4:62:f2:d0:ff:e0:11:01:36:e0:73:76:e4:d4:21:37:7c: e8:78:e2:88:65:ea:9c:0d:11:1a:7a:ac:ba:c0:c2:4d:63:57: 1e:16:0a:65:ca:ea:d4:d0:69:b7:df:7d:88:1a:55:65:49:90: 9d:e7:9d:13:dc:37:d1:65:c5:7d:92:77:2f:b4:df:68:f4:4b: 0d:7f:43:39:5d:c9:07:89:e9:5f:69:8d:7b:b7:73:ac:f8:5b: df:02:a6:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjYwNDA0MjMwNTE1WhcNMjYwNDExMjMwNTE1WjAYMRYwFAYD VQQDEw02OWQxOTkyYi1hZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ1/pVQsOhlztcAj7s0f1HL9Q7dc2XxkoifpQTzqNxtYyKYJxdP3MBJQf+1R NKULmncx3GWSc4H/ax2WwV3sl6Ra5QZSG3OqzrBH17v5ZVkU6C/fDC3bMEuCIx/j SYMmwkD2hHikFDfFEBwJTKTP8EZh7sZngTxpvRi+Lwb1x9rf+KFZfFPFZQF3T3zf EHbGyBJLpi/EXMjsCq3Ha6DSVqiMr/F3+j5go2FCDwwjAwmK8GBKVAIshqCopTZz FqeRoQ2oruLDzp3G4k8ytrQ4z91YOTtXO66UAhP93MJl9NEmYpgUcaAzcO8VyheL wy0qg87rXqF7ZXb2L1MoOzv3xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFExlmMda 9zZ82fhUrVbvM7DFqtIcMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeX0g1X50fA6baJqWiW7x4W5vho7wvULqdhBthnxn1IDrpNh2yTD7i3Yk4ANj BalID+ptgSms0d3vD7KI5cPs3NFzu6l5KBMbqgfMoUiTn5jBwUq2l3kj1wlkZlVY aYz42xLWbDHlIF11Ka8OkC+agdEUssoojrqKu3IE6pgIrWkvHxQxzqeyaiNnUq/j xKM7jLGJj7wz+Axn9Jgyowf5/+g7VdRi8tD/4BEBNuBzduTUITd86HjiiGXqnA0R GnqsusDCTWNXHhYKZcrq1NBpt999iBpVZUmQneedE9w30WXFfZJ3L7TfaPRLDX9D OV3JB4npX2mNe7dzrPhb3wKmjw== -----END CERTIFICATE-----Generated at Mon Apr 6 11:20:36 2026 by rpki-client