$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: dOMucXZPtWcdJqOy3MUGfIFEaoEwANUIfxtvQ4wRXho= Subject key identifier: 4C:A3:6E:4A:BB:5E:58:DD:CC:9E:02:5F:47:29:65:77:F1:56:D0:1D Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 0232 Signing time: Wed 13 May 2026 02:49:06 +0000 Manifest this update: Wed 13 May 2026 02:49:05 +0000 Manifest next update: Wed 20 May 2026 02:49:05 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: qAAUtxFoMpNNcSfL6VFUpd9rMIdyTCDhu7UHtAa8Mhw=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: jQDpwo+QqLU/lJ9etJ9XrTrIVILmvaXnCVSDMxtlPro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: May 13 02:49:05 2026 GMT Not After : May 20 02:49:05 2026 GMT Subject: CN=6a03e6a2-ea42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:25:52:97:28:c1:09:91:d2:50:9e:5f:4f:5e: ce:b3:e5:cf:3f:a1:dd:e1:7c:c6:4a:ac:ec:24:97: 77:8d:f2:d0:1d:7b:fe:81:06:ee:43:a7:dc:71:db: ae:ad:88:68:01:88:c3:c3:5b:9d:00:ec:52:5d:29: 57:6d:0e:52:b3:57:eb:56:6d:16:5c:49:de:f0:3e: a5:de:81:87:73:00:37:22:4f:90:a5:aa:f9:27:65: 88:1b:ce:fc:27:02:36:32:70:4b:db:8f:a9:1b:52: d3:96:85:3b:7f:90:f6:08:fc:d7:b1:b8:a0:8a:12: 4e:63:06:ea:9d:ee:8e:55:7c:e3:0d:eb:3c:8b:74: f2:35:93:f5:54:dd:15:b8:86:e7:80:57:1e:74:d2: fa:4e:a0:45:bc:f3:3d:cd:07:48:7c:f6:fd:79:66: 62:f6:c4:db:28:c8:fe:a2:20:a0:80:55:5e:6a:4f: 9f:1c:b7:62:c4:2c:49:29:a2:5c:84:93:66:4d:99: c2:81:36:a2:cd:f4:17:9e:3a:9b:d4:d6:48:2f:db: 89:e5:b6:bf:ac:cb:6a:dd:f1:b5:72:8c:81:37:a4: 72:3e:eb:92:2d:60:2d:1f:75:3a:71:2e:50:44:c7: ec:37:3d:1e:8a:c9:32:88:c4:d4:01:97:59:77:d5: b0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A3:6E:4A:BB:5E:58:DD:CC:9E:02:5F:47:29:65:77:F1:56:D0:1D X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:1a:8f:b3:43:1a:34:56:ae:c2:cd:41:f2:f9:dc:20:bb:57: f7:42:10:73:d8:ba:c5:b5:d7:8d:e0:75:f6:ca:23:31:e7:b4: 08:ed:cc:be:2a:78:72:64:2b:02:aa:e9:f6:5c:db:27:86:b0: c8:6b:10:eb:84:6a:31:01:9b:07:66:bc:fd:e0:1b:2e:9e:ea: 58:06:90:3c:ac:23:bf:09:54:7f:3e:2e:16:c4:47:10:be:c9: b3:31:ad:5d:e6:b4:90:e5:52:ff:bc:26:5a:a4:ef:8d:e5:7a: 80:79:0d:0c:6d:86:2e:3b:54:6f:ba:f1:80:df:ef:b7:d8:fb: 34:58:8c:e4:b5:04:0c:92:e8:31:88:4a:32:0b:9b:c6:2c:05: 3a:3b:48:d3:6f:0a:d9:b8:af:ff:ac:6d:f4:f2:21:db:0a:de: 85:13:ed:bf:01:21:59:7a:48:49:16:1a:1b:10:11:90:ed:fb: e7:a6:36:7d:40:93:35:18:35:6b:64:fa:23:f7:da:2a:33:26: aa:00:39:40:f7:f8:7a:86:13:24:e5:3d:49:00:18:3d:0c:df: 5f:5f:69:80:57:f8:ef:a4:ea:86:dc:a8:08:eb:1e:c1:73:82: 4a:2b:04:64:5d:b7:74:6e:46:89:17:fe:96:f8:9c:0d:49:20: 20:5d:fe:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjYwNTEzMDI0OTA1WhcNMjYwNTIwMDI0OTA1WjAYMRYwFAYD VQQDEw02YTAzZTZhMi1lYTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiVSlyjBCZHSUJ5fT17Os+XPP6Hd4XzGSqzsJJd3jfLQHXv+gQbuQ6fccduu rYhoAYjDw1udAOxSXSlXbQ5Ss1frVm0WXEne8D6l3oGHcwA3Ik+Qpar5J2WIG878 JwI2MnBL24+pG1LTloU7f5D2CPzXsbigihJOYwbqne6OVXzjDes8i3TyNZP1VN0V uIbngFcedNL6TqBFvPM9zQdIfPb9eWZi9sTbKMj+oiCggFVeak+fHLdixCxJKaJc hJNmTZnCgTaizfQXnjqb1NZIL9uJ5ba/rMtq3fG1coyBN6RyPuuSLWAtH3U6cS5Q RMfsNz0eiskyiMTUAZdZd9WwNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEyjbkq7 XljdzJ4CX0cpZXfxVtAdMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhxqPs0MaNFauws1B8vncILtX90IQc9i6xbXXjeB19sojMee0CO3Mvip4cmQr Aqrp9lzbJ4awyGsQ64RqMQGbB2a8/eAbLp7qWAaQPKwjvwlUfz4uFsRHEL7JszGt Xea0kOVS/7wmWqTvjeV6gHkNDG2GLjtUb7rxgN/vt9j7NFiM5LUEDJLoMYhKMgub xiwFOjtI028K2biv/6xt9PIh2wrehRPtvwEhWXpISRYaGxARkO3756Y2fUCTNRg1 a2T6I/faKjMmqgA5QPf4eoYTJOU9SQAYPQzfX19pgFf476TqhtyoCOsewXOCSisE ZF23dG5GiRf+lvicDUkgIF3+ow== -----END CERTIFICATE-----Generated at Wed May 13 18:05:11 2026 by rpki-client