$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft File: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft (raw, json) Hash identifier: 6UQBaTK+Pg0bPVv9SheP9xM+KEXBfWvQT8ZYH6Sf71U= Subject key identifier: F0:47:B6:68:7E:EE:E3:90:52:31:91:F4:49:AE:4D:39:08:A8:27:AB Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 4AABFE602AFDA3F6353166257C6738C1D30390E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft Manifest number: 41 Signing time: Mon 03 Nov 2025 02:42:25 +0000 Manifest this update: Mon 03 Nov 2025 02:37:25 +0000 Manifest next update: Tue 04 Nov 2025 05:06:25 +0000 Files and hashes: 1: 3130332e3233332e3230382e302f32322d3234203d3e2039393133.roa (hash: gjG1OZMW5faujAfknl/AsEqIEMo1X4J8rMD0eZTWBDg=) 2: 3230332e35372e32332e302f32342d3234203d3e2039393133.roa (hash: 9vPoyR5h4XW7VzKPshTgyqTHm+x238aD7PNshnOSJtk=) 3: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl (hash: lbMOJc2dK65yVaIVx8ucU72nOoCPCzoHmDp7O2GNej8=) 4: 3230322e31342e3134382e302f32342d3234203d3e2039393133.roa (hash: jEqn8jELxuDQMwvht+ON+P9QmjrSbE+0mwwGAYlItGo=) 5: 3230332e302e38302e302f32342d3234203d3e2039393133.roa (hash: 5CEE0bOW0MgpOlLO8lN9+nz4tABxvncSgkR6y2kvmq4=) 6: 3230332e33312e3131302e302f32342d3234203d3e2039393133.roa (hash: Th3RG2y4VUTKhfMzlUUSBpKBps2IwB4thNo9+TULNBQ=) 7: 3230332e33312e3131312e302f32342d3234203d3e2039393133.roa (hash: YlAvV8ZZuoYsPDhwbCWgqa9GkyYRu/NKCURMzPqa7q4=) 8: 3230332e312e36382e302f32342d3234203d3e2039393133.roa (hash: sf6xpmLBwwFxYc5zLhbA2o5zERE4ANPwwQpcoFqWw9Y=) 9: 3230332e312e36392e302f32342d3234203d3e2039393133.roa (hash: HYKqNuiBE/DUFFDQyKmuMZ6wkcvhITNaHWFYsHIuJlA=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 05:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ab:fe:60:2a:fd:a3:f6:35:31:66:25:7c:67:38:c1:d3:03:90:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Nov 3 02:37:25 2025 GMT Not After : Nov 4 05:06:25 2025 GMT Subject: CN=F047B6687EEEE390523191F449AE4D3908A827AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:08:62:15:c9:8e:a5:d2:8b:5d:14:bf:7c:9e: fa:f5:24:81:b3:d8:a6:4a:15:16:a3:57:78:60:5b: c5:40:8c:c7:50:38:95:7c:17:f4:43:a1:80:8e:dd: f0:aa:84:12:5a:0f:e2:6d:71:30:9a:2e:b8:03:e2: 57:cf:d3:76:8b:96:ee:39:3d:f7:80:87:4f:66:52: 24:5b:36:6b:f1:87:c9:fa:e7:13:8c:13:9c:92:9f: c8:90:28:93:b2:1d:f9:f6:1e:49:f4:5f:fb:89:14: 24:94:d6:5b:e8:2b:a7:ff:b1:a2:b7:43:f7:f3:d0: 6d:b8:f6:e3:16:fc:9e:4e:10:b9:77:da:66:db:98: f6:e6:db:1b:cd:1b:9e:b7:44:d7:81:55:84:92:2f: 79:e4:10:e0:13:04:d9:70:8c:58:72:8f:7d:6a:ec: 46:f0:15:af:22:70:1f:7d:a6:24:2a:8d:94:42:de: b6:66:07:38:14:bc:87:48:e7:0c:a8:f8:5e:ba:0a: 87:7e:29:ad:b5:d8:d3:89:b4:b3:59:41:0f:07:11: 11:60:a0:a2:1b:48:b6:b8:56:e4:41:2e:c1:0a:81: a0:35:ba:63:75:8f:19:04:44:3c:1a:0d:97:07:cb: 41:c2:31:e9:92:2d:2a:00:54:65:15:d9:80:4e:4b: 80:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:47:B6:68:7E:EE:E3:90:52:31:91:F4:49:AE:4D:39:08:A8:27:AB X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:80:04:a8:fb:1e:50:7f:25:f8:3a:04:68:1f:f1:65:a0:9b: c2:1a:58:db:21:94:30:d7:fc:f5:06:7b:c8:17:72:50:e8:bb: 53:36:8b:af:d5:da:64:3d:fe:5c:45:eb:d7:92:2d:ba:1d:08: 02:90:75:8c:7e:08:23:83:62:10:fd:97:fc:e0:9e:bd:bc:ed: af:79:31:3d:a5:7e:b4:d0:e8:5c:ef:0d:21:b7:a0:9a:3d:1e: 0f:eb:00:8c:5b:73:37:37:33:9b:54:06:9c:28:e0:ab:db:59: 74:55:7c:da:5b:fb:dc:1d:02:05:2c:22:a7:6c:81:98:31:9e: 94:e2:d2:c7:6c:94:08:13:0c:1b:f2:ee:64:7d:e0:6d:53:92: 8a:ff:c8:15:b2:d6:af:2b:49:7a:f7:13:bd:f2:81:9d:3d:2a: a4:61:f0:8c:74:2e:f7:3e:31:3d:54:e5:c0:18:e2:9c:ca:be: 74:9c:44:64:25:23:0c:0b:1a:bd:02:36:35:67:04:cf:df:05: e1:cc:d3:ad:82:10:f4:0f:9b:d2:52:46:e5:78:e6:76:ff:78: 36:c1:84:d8:6f:dc:a6:14:74:d9:26:65:40:be:bf:61:19:c6: c7:c3:cb:ef:3d:f9:54:8f:31:c5:a6:64:d2:5c:71:01:93:79: d6:0f:8b:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSqv+YCr9o/Y1MWYlfGc4wdMDkOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI1MTEwMzAyMzcyNVoX DTI1MTEwNDA1MDYyNVowMzExMC8GA1UEAxMoRjA0N0I2Njg3RUVFRTM5MDUyMzE5 MUY0NDlBRTREMzkwOEE4MjdBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEIYhXJjqXSi10Uv3ye+vUkgbPYpkoVFqNXeGBbxUCMx1A4lXwX9EOhgI7d 8KqEEloP4m1xMJouuAPiV8/TdouW7jk994CHT2ZSJFs2a/GHyfrnE4wTnJKfyJAo k7Id+fYeSfRf+4kUJJTWW+grp/+xordD9/PQbbj24xb8nk4QuXfaZtuY9ubbG80b nrdE14FVhJIveeQQ4BME2XCMWHKPfWrsRvAVryJwH32mJCqNlELetmYHOBS8h0jn DKj4XroKh34prbXY04m0s1lBDwcREWCgohtItrhW5EEuwQqBoDW6Y3WPGQREPBoN lwfLQcIx6ZItKgBUZRXZgE5LgH0CAwEAAaOCAhswggIXMB0GA1UdDgQWBBTwR7Zo fu7jkFIxkfRJrk05CKgnqzAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUz MDAwMDAvOS8zM0Y0MDgyMTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAWIAEqPseUH8l+DoEaB/xZaCbwhpY2yGUMNf89QZ7yBdyUOi7 UzaLr9XaZD3+XEXr15Ituh0IApB1jH4II4NiEP2X/OCevbztr3kxPaV+tNDoXO8N Ibegmj0eD+sAjFtzNzczm1QGnCjgq9tZdFV82lv73B0CBSwip2yBmDGelOLSx2yU CBMMG/LuZH3gbVOSiv/IFbLWrytJevcTvfKBnT0qpGHwjHQu9z4xPVTlwBjinMq+ dJxEZCUjDAsavQI2NWcEz98F4czTrYIQ9A+b0lJG5Xjmdv94NsGE2G/cphR02SZl QL6/YRnGx8PL7z35VI8xxaZk0lxxAZN51g+LtA== -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:13 2025 by rpki-client