$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: 0LNnCzb6mFp7LdZW964vjxHuP5TIsyBHYNH4FyCqB2M= Subject key identifier: 0B:FD:19:50:44:7C:80:81:7D:4A:00:40:54:3F:58:FB:CA:8A:65:8E Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 0219 Signing time: Wed 25 Mar 2026 02:20:59 +0000 Manifest this update: Wed 25 Mar 2026 02:20:58 +0000 Manifest next update: Wed 01 Apr 2026 02:20:58 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: tPMH2JjobDXY4+ZR+PYqdvzWDdJ+60T6QkfvCTsh/Es=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: jQDpwo+QqLU/lJ9etJ9XrTrIVILmvaXnCVSDMxtlPro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Mar 25 02:20:58 2026 GMT Not After : Apr 1 02:20:58 2026 GMT Subject: CN=69c3468a-a6eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c3:56:63:0d:08:b4:09:5f:60:41:2c:4b:07: 75:f8:13:f6:5d:fa:1d:fe:0b:db:3e:d7:d1:fe:2f: 1f:a4:c6:6c:91:b8:d6:e3:f8:f4:2b:7e:33:f4:8c: 04:c4:c6:aa:87:42:74:33:09:96:79:85:fa:87:0b: be:40:80:ea:ab:55:25:97:e5:5b:68:3a:3a:81:f1: da:df:38:7e:b3:80:64:9d:53:07:ae:af:fe:b9:bd: f9:bd:26:76:8c:e3:46:39:f6:82:d1:62:8d:a7:9d: da:8c:d9:5c:49:52:91:a4:61:8d:01:98:78:11:52: 00:5d:ee:8b:59:5b:a5:81:75:79:df:0f:9d:e3:59: e1:ab:3c:34:f4:44:46:97:9f:bb:cb:56:12:32:51: 4a:c0:9e:a0:0a:86:c5:41:fd:db:6b:dd:7f:62:18: ca:7d:a9:07:99:1e:ee:c7:cb:2e:ea:9e:65:60:1e: f4:2b:e4:3f:d0:5e:db:14:a4:83:fe:0f:86:d3:b1: 9f:f7:ec:5e:90:a0:7d:46:fe:77:dd:e7:05:d8:5c: d9:2d:82:d5:69:fb:d4:9e:ab:81:ab:e2:f5:b6:60: cd:e4:d3:d3:eb:d6:3b:73:f3:e9:8b:7f:d0:97:af: e7:2b:0b:da:6d:1f:95:6a:12:3b:bd:55:b9:2c:30: e4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FD:19:50:44:7C:80:81:7D:4A:00:40:54:3F:58:FB:CA:8A:65:8E X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a8:e9:6e:11:eb:5d:41:b7:60:0b:12:42:75:60:21:33:64: c9:13:b6:40:fb:21:f8:cb:8d:3d:8a:88:8e:be:a3:df:c7:7c: dd:25:35:40:ab:8b:c3:9b:83:86:70:7c:be:7e:68:cc:49:d2: 63:ae:6d:fb:25:2f:15:a3:2d:33:4f:d7:fe:08:64:93:65:8f: 3c:ca:63:1a:0a:7e:77:7b:61:14:5e:3e:14:77:19:4e:cc:33: e7:af:58:dc:1e:59:80:0e:46:3f:f9:b2:18:5a:bf:65:20:49: b3:33:ce:d4:02:51:42:b6:be:bb:cb:73:5f:bc:e0:54:58:da: 18:6d:55:0c:de:1e:4d:7a:03:f4:65:aa:d7:30:89:42:d7:05: 7c:14:ae:63:3d:22:22:42:8e:af:96:18:c9:81:d6:82:0f:d9: be:b6:77:73:52:0e:fc:85:09:86:35:c8:ef:1d:a2:18:b2:f2: 89:3d:f2:d0:20:9c:1f:29:dd:16:76:f4:31:5c:14:06:be:81: d1:8d:cb:53:e8:af:10:24:88:f4:6b:b7:5f:cb:a3:0e:cc:3b: 03:f1:77:e9:ff:7a:18:b2:62:76:d2:fc:9e:a0:19:89:c6:c1: 2a:9e:75:0d:b8:f0:94:b1:32:c7:f4:9d:78:4d:27:71:94:79: d6:04:c9:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjYwMzI1MDIyMDU4WhcNMjYwNDAxMDIyMDU4WjAYMRYwFAYD VQQDEw02OWMzNDY4YS1hNmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MNWYw0ItAlfYEEsSwd1+BP2Xfod/gvbPtfR/i8fpMZskbjW4/j0K34z9IwE xMaqh0J0MwmWeYX6hwu+QIDqq1Ull+VbaDo6gfHa3zh+s4BknVMHrq/+ub35vSZ2 jONGOfaC0WKNp53ajNlcSVKRpGGNAZh4EVIAXe6LWVulgXV53w+d41nhqzw09ERG l5+7y1YSMlFKwJ6gCobFQf3ba91/YhjKfakHmR7ux8su6p5lYB70K+Q/0F7bFKSD /g+G07Gf9+xekKB9Rv533ecF2FzZLYLVafvUnquBq+L1tmDN5NPT69Y7c/Ppi3/Q l6/nKwvabR+VahI7vVW5LDDk2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAv9GVBE fICBfUoAQFQ/WPvKimWOMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPKjpbhHrXUG3YAsSQnVgITNkyRO2QPsh+MuNPYqIjr6j38d83SU1QKuLw5uD hnB8vn5ozEnSY65t+yUvFaMtM0/X/ghkk2WPPMpjGgp+d3thFF4+FHcZTswz569Y 3B5ZgA5GP/myGFq/ZSBJszPO1AJRQra+u8tzX7zgVFjaGG1VDN4eTXoD9GWq1zCJ QtcFfBSuYz0iIkKOr5YYyYHWgg/ZvrZ3c1IO/IUJhjXI7x2iGLLyiT3y0CCcHynd Fnb0MVwUBr6B0Y3LU+ivECSI9Gu3X8ujDsw7A/F36f96GLJidtL8nqAZicbBKp51 DbjwlLEyx/SdeE0ncZR51gTJxw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:23 2026 by rpki-client