$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft File: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft (raw, json) Hash identifier: hTEU+WPWXAylDdAVNNffK4W5/qkdSkkLGoHtk8csX9I= Subject key identifier: A0:DE:37:2E:57:99:B5:2C:D5:C0:02:F7:C5:13:91:67:A5:C3:54:61 Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 77577DD15817D0DBB592E2DA56399AF87E3555AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft Manifest number: 0110 Signing time: Sun 05 Apr 2026 13:02:59 +0000 Manifest this update: Sun 05 Apr 2026 12:57:59 +0000 Manifest next update: Mon 06 Apr 2026 15:22:59 +0000 Files and hashes: 1: 3230332e312e36382e302f32342d3234203d3e2039393133.roa (hash: sf6xpmLBwwFxYc5zLhbA2o5zERE4ANPwwQpcoFqWw9Y=) 2: 3230332e33312e3131302e302f32342d3234203d3e2039393133.roa (hash: Th3RG2y4VUTKhfMzlUUSBpKBps2IwB4thNo9+TULNBQ=) 3: 3230332e35372e32332e302f32342d3234203d3e2039393133.roa (hash: 9vPoyR5h4XW7VzKPshTgyqTHm+x238aD7PNshnOSJtk=) 4: 3230332e33312e3131312e302f32342d3234203d3e2039393133.roa (hash: YlAvV8ZZuoYsPDhwbCWgqa9GkyYRu/NKCURMzPqa7q4=) 5: 3130332e3233332e3230382e302f32322d3234203d3e2039393133.roa (hash: gjG1OZMW5faujAfknl/AsEqIEMo1X4J8rMD0eZTWBDg=) 6: 3230332e312e36392e302f32342d3234203d3e2039393133.roa (hash: HYKqNuiBE/DUFFDQyKmuMZ6wkcvhITNaHWFYsHIuJlA=) 7: 3230332e302e38302e302f32342d3234203d3e2039393133.roa (hash: 5CEE0bOW0MgpOlLO8lN9+nz4tABxvncSgkR6y2kvmq4=) 8: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl (hash: R2MP7WDWc87X8lqBL/PoCV2E4AVLFr9jwaydzcg0r1k=) 9: 3230322e31342e3134382e302f32342d3234203d3e2039393133.roa (hash: jEqn8jELxuDQMwvht+ON+P9QmjrSbE+0mwwGAYlItGo=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Apr 2026 15:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:57:7d:d1:58:17:d0:db:b5:92:e2:da:56:39:9a:f8:7e:35:55:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Apr 5 12:57:59 2026 GMT Not After : Apr 6 15:22:59 2026 GMT Subject: CN=A0DE372E5799B52CD5C002F7C5139167A5C35461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3e:a0:b8:6d:f5:5e:25:a4:8b:d0:e9:5c:1c: 9d:80:3d:41:95:ba:92:e9:b6:4f:24:26:c7:d2:b7: 3d:60:19:1a:e7:36:af:4f:83:fa:75:88:ea:73:ac: ff:ac:da:6c:05:6c:89:08:de:31:bd:4c:6e:e1:c4: 96:5f:35:32:4c:39:8b:ac:7f:60:6d:bf:dd:c7:8d: e5:63:fc:70:3a:97:e1:79:70:cc:91:cb:d8:ae:18: 81:68:e3:f0:4a:7a:13:71:a6:ab:b9:76:7c:53:92: b3:e1:97:24:78:b0:42:93:98:72:8c:0d:06:90:e1: be:48:0c:57:3f:c1:65:64:33:38:b5:ac:d8:61:ef: 4c:ed:5f:61:af:e3:5a:4f:fe:34:99:6a:0d:46:a7: 47:18:23:c8:cb:4d:40:86:ff:9e:37:3d:20:8c:04: 89:50:ff:5f:a0:b1:00:ca:83:d3:fd:38:ca:83:e0: 4b:f0:6b:1a:1b:0a:43:cd:5f:c6:5c:5c:ad:d8:d7: b0:70:56:c4:91:22:41:f7:03:8b:d9:cd:91:ca:fa: d9:34:ce:5e:35:22:46:9e:86:57:4d:74:62:4d:02: 86:10:4c:f3:33:92:d4:98:e0:21:13:dd:cc:ad:75: 8b:f8:ee:e6:c6:89:5c:70:7f:e2:1a:73:55:4b:62: 09:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:DE:37:2E:57:99:B5:2C:D5:C0:02:F7:C5:13:91:67:A5:C3:54:61 X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:35:2b:0f:31:37:34:c9:44:99:fb:f3:3d:06:40:99:0d:04: 23:32:1b:d8:95:e7:a6:aa:cf:69:89:21:57:6c:1d:2e:e1:61: 1f:70:6c:9d:89:91:b6:e3:f3:b4:b5:ec:fa:3f:12:06:ae:66: 10:2f:ad:95:88:f1:60:5a:6f:ba:c5:9b:19:47:2e:d3:1f:02: ed:1b:4d:40:8e:46:bf:65:df:c1:70:50:e5:5d:48:fd:fe:8c: ca:b5:1d:37:d1:3a:01:fc:e2:73:8b:c7:6d:63:60:41:cc:12: 5c:81:45:d7:33:9b:b2:28:ea:ee:49:b6:16:fb:94:a9:db:04: dd:4f:f6:04:b1:ca:0e:1c:52:c7:74:6f:7c:6a:13:41:77:5f: 0d:39:cb:c1:bc:2b:09:89:69:48:22:4f:ce:0b:95:42:1e:4c: f2:22:8a:3b:93:65:c8:ca:4a:62:13:5f:3d:0e:82:a2:a6:f1: 16:5d:14:07:e0:c0:40:ec:6a:d1:97:7e:a5:00:08:74:03:44: 89:a8:5d:72:96:ac:9a:33:16:55:c2:11:c7:b8:16:94:d1:c3: cb:ac:3f:a6:1c:3a:70:3e:81:d5:49:29:8f:87:e9:34:9b:08: 15:14:10:6e:46:bc:cf:3e:ec:71:26:1d:74:18:98:8e:f5:a7: 87:dd:a5:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd1d90VgX0Nu1kuLaVjma+H41Va0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI2MDQwNTEyNTc1OVoX DTI2MDQwNjE1MjI1OVowMzExMC8GA1UEAxMoQTBERTM3MkU1Nzk5QjUyQ0Q1QzAw MkY3QzUxMzkxNjdBNUMzNTQ2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALM+oLht9V4lpIvQ6VwcnYA9QZW6kum2TyQmx9K3PWAZGuc2r0+D+nWI6nOs /6zabAVsiQjeMb1MbuHEll81Mkw5i6x/YG2/3ceN5WP8cDqX4XlwzJHL2K4YgWjj 8Ep6E3Gmq7l2fFOSs+GXJHiwQpOYcowNBpDhvkgMVz/BZWQzOLWs2GHvTO1fYa/j Wk/+NJlqDUanRxgjyMtNQIb/njc9IIwEiVD/X6CxAMqD0/04yoPgS/BrGhsKQ81f xlxcrdjXsHBWxJEiQfcDi9nNkcr62TTOXjUiRp6GV010Yk0ChhBM8zOS1JjgIRPd zK11i/ju5saJXHB/4hpzVUtiCYcCAwEAAaOCAhswggIXMB0GA1UdDgQWBBSg3jcu V5m1LNXAAvfFE5FnpcNUYTAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUz MDAwMDAvOS8zM0Y0MDgyMTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEACjUrDzE3NMlEmfvzPQZAmQ0EIzIb2JXnpqrPaYkhV2wdLuFh H3BsnYmRtuPztLXs+j8SBq5mEC+tlYjxYFpvusWbGUcu0x8C7RtNQI5Gv2XfwXBQ 5V1I/f6MyrUdN9E6Afzic4vHbWNgQcwSXIFF1zObsijq7km2FvuUqdsE3U/2BLHK DhxSx3RvfGoTQXdfDTnLwbwrCYlpSCJPzguVQh5M8iKKO5NlyMpKYhNfPQ6Coqbx Fl0UB+DAQOxq0Zd+pQAIdANEiahdcpasmjMWVcIRx7gWlNHDy6w/phw6cD6B1Ukp j4fpNJsIFRQQbka8zz7scSYddBiYjvWnh92l1w== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:05 2026 by rpki-client