$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft File: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft (raw, json) Hash identifier: I8SJ9JtZwTIJCiGDY49xF7k6WbayTHBVvoUZ2pXMokE= Subject key identifier: 2D:98:0C:FD:20:B9:7B:97:BA:7F:0C:EA:06:DC:2C:9C:FB:D9:DF:9C Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 089C31854BFC04F9DD857DD06D747F7393027A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft Manifest number: 017F Signing time: Wed 24 Jun 2026 02:01:41 +0000 Manifest this update: Wed 24 Jun 2026 01:56:41 +0000 Manifest next update: Thu 25 Jun 2026 05:28:41 +0000 Files and hashes: 1: 3230332e33312e3131302e302f32342d3234203d3e2039393133.roa (hash: /zSQzqTydH2+pkmO1iK1Kwm8hfUZxAJtGdbzfN4QbwM=) 2: 3230322e31342e3134382e302f32342d3234203d3e2039393133.roa (hash: ND9xLQI8Vy8JA2jtUa6aYRzvXLnRH0xjgm4vmCRNG9o=) 3: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl (hash: U+eBlCQQKbMs2fGjODkc7+mSHWcsUL4TBYeuqK5vdZA=) 4: 3230332e35372e32332e302f32342d3234203d3e2039393133.roa (hash: rW0FmeSZuAkFdgzjWN69hruCSHp62G5GuOISvj+nn7Y=) 5: 3230332e312e36382e302f32342d3234203d3e2039393133.roa (hash: i4MOXpZ+JJO1Ou/5KA98cmmyul9itGAIk/VXC8WVFIw=) 6: 3230332e302e38302e302f32342d3234203d3e2039393133.roa (hash: R7Xxtkh+I8I5SM+RNqD6t39Ei7w+LcPfWR//Yn+T4e4=) 7: 3230332e312e36392e302f32342d3234203d3e2039393133.roa (hash: dO5yl6c5PpbhT8VJ6Gr4SbudCYxk8yUDmtlBjVa4pe8=) 8: 3130332e3233332e3230382e302f32322d3234203d3e2039393133.roa (hash: 9lGWz7w8c/R5ruJGuzTNaIgTzYgfFa8S2t6e2U1YuXY=) 9: 3230332e33312e3131312e302f32342d3234203d3e2039393133.roa (hash: dtJRARG5+BtRZcmiFZ9zHEYQh6J1meTmlcz69DUCY8E=) 10: 3230332e302e38302e302f32342d3234203d3e20313334303930.roa (hash: kdx3CUTNv+VjeEs6W9tudB6rNQZmlJL2ExzD6LblsT4=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 05:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:9c:31:85:4b:fc:04:f9:dd:85:7d:d0:6d:74:7f:73:93:02:7a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Jun 24 01:56:41 2026 GMT Not After : Jun 25 05:28:41 2026 GMT Subject: CN=2D980CFD20B97B97BA7F0CEA06DC2C9CFBD9DF9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:38:7a:87:f2:4d:0c:a6:67:93:07:2a:00:82: df:07:61:fb:3b:f6:9d:7c:5d:4d:b6:ad:35:bf:ab: 7d:82:e8:6a:d3:6a:0b:d7:25:bb:ac:6f:9f:9d:16: fc:f4:24:29:c9:14:29:77:54:56:18:4e:ae:b6:d1: fa:cf:7e:09:8c:a7:ec:35:2c:a5:10:90:1c:e7:e5: eb:75:7e:22:cd:e3:b9:3f:af:e9:2a:21:5e:7c:58: dd:53:4b:4f:db:9c:30:e4:ae:42:aa:0d:c4:d8:54: de:e9:b7:ee:f3:9f:60:10:0b:49:7b:ef:a6:45:eb: c7:33:05:30:c3:22:9a:b7:94:9d:14:c0:e8:a5:d8: c3:f8:dc:b6:d5:1d:e0:eb:c0:38:7c:d9:26:c4:4c: df:91:2e:a0:8a:60:68:26:15:cd:7d:0d:9b:cb:d1: 6f:79:d4:80:ba:8f:e5:e0:0f:d8:c3:ac:64:fc:f5: aa:ec:72:67:94:e3:22:9c:00:3c:10:c6:ec:fe:b2: c7:eb:9d:d4:8a:1e:84:72:86:d4:7e:48:5d:55:e8: 80:48:97:00:aa:a6:f7:a5:91:e7:19:c4:96:5d:f1: 52:fb:3a:66:62:d7:8e:b5:66:87:86:ee:8f:71:57: 05:5e:92:04:69:88:00:d1:57:22:e8:b5:48:86:74: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:98:0C:FD:20:B9:7B:97:BA:7F:0C:EA:06:DC:2C:9C:FB:D9:DF:9C X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:1f:1e:18:2d:f2:53:3d:11:b0:54:12:45:50:ae:85:dd:a9: 06:56:62:62:67:f0:0c:c6:bc:e4:22:8b:17:7c:e6:a8:6d:cd: 25:7c:12:ed:83:4e:60:0a:ea:6c:e1:f0:41:86:c1:46:55:90: a1:91:44:9a:3f:d5:6b:37:2b:ec:1b:46:57:cc:1f:70:d5:2c: 12:58:b9:cb:a0:5f:c2:c8:a7:18:f5:6e:43:78:45:8d:5c:9d: 0d:8d:2b:85:e3:93:9b:f9:6c:f0:78:1b:64:54:24:d8:45:a7: 05:3c:1a:ee:a3:16:29:f0:a8:22:53:80:3e:8a:b5:0c:1c:b9: 56:d0:96:86:c8:3e:0a:64:97:e4:dc:5a:48:a1:ab:39:fe:b7: 63:3d:90:4c:fc:2b:35:7d:5d:d7:cf:2d:66:33:23:69:b1:50: 9d:85:99:ec:ab:32:c4:9d:4e:84:2b:5a:f3:b2:dd:94:bd:34: c6:c3:08:45:46:10:21:1c:5f:38:9a:5a:16:2c:9b:c2:7e:e3: df:aa:25:5a:e7:79:ff:aa:0b:4c:33:c2:84:de:af:01:3b:5b: 86:cf:c0:a3:27:f3:a4:86:3a:88:92:ed:a9:5b:b5:23:64:93: c7:30:76:45:e7:9e:4f:f3:95:94:49:ee:a0:be:67:09:ee:3c: 80:59:f9:ef -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCJwxhUv8BPndhX3QbXR/c5MCenQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI2MDYyNDAxNTY0MVoX DTI2MDYyNTA1Mjg0MVowMzExMC8GA1UEAxMoMkQ5ODBDRkQyMEI5N0I5N0JBN0Yw Q0VBMDZEQzJDOUNGQkQ5REY5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJI4eofyTQymZ5MHKgCC3wdh+zv2nXxdTbatNb+rfYLoatNqC9clu6xvn50W /PQkKckUKXdUVhhOrrbR+s9+CYyn7DUspRCQHOfl63V+Is3juT+v6SohXnxY3VNL T9ucMOSuQqoNxNhU3um37vOfYBALSXvvpkXrxzMFMMMimreUnRTA6KXYw/jcttUd 4OvAOHzZJsRM35EuoIpgaCYVzX0Nm8vRb3nUgLqP5eAP2MOsZPz1quxyZ5TjIpwA PBDG7P6yx+ud1IoehHKG1H5IXVXogEiXAKqm96WR5xnEll3xUvs6ZmLXjrVmh4bu j3FXBV6SBGmIANFXIui1SIZ0s/UCAwEAAaOCAhswggIXMB0GA1UdDgQWBBQtmAz9 ILl7l7p/DOoG3Cyc+9nfnDAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUz MDAwMDAvOS8zM0Y0MDgyMTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAHR8eGC3yUz0RsFQSRVCuhd2pBlZiYmfwDMa85CKLF3zmqG3N JXwS7YNOYArqbOHwQYbBRlWQoZFEmj/Vazcr7BtGV8wfcNUsEli5y6BfwsinGPVu Q3hFjVydDY0rheOTm/ls8HgbZFQk2EWnBTwa7qMWKfCoIlOAPoq1DBy5VtCWhsg+ CmSX5NxaSKGrOf63Yz2QTPwrNX1d188tZjMjabFQnYWZ7KsyxJ1OhCta87LdlL00 xsMIRUYQIRxfOJpaFiybwn7j36olWud5/6oLTDPChN6vATtbhs/AoyfzpIY6iJLt qVu1I2STxzB2ReeeT/OVlEnuoL5nCe48gFn57w== -----END CERTIFICATE-----Generated at Wed Jun 24 11:13:31 2026 by rpki-client