$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: zPH5SNVkik9NRG6zdpIyIA1ao/MHjZU0m1riHQeK4Ew= Subject key identifier: F3:FF:A6:E2:23:37:FF:BD:42:B8:9A:D8:F0:D7:5D:02:DB:E0:26:93 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0570 Signing time: Tue 24 Mar 2026 23:00:36 +0000 Manifest this update: Tue 24 Mar 2026 23:00:35 +0000 Manifest next update: Tue 31 Mar 2026 23:00:35 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: 3sNPD5nL6JsEki4exZZUPVOucekQRRCsIa6qclE/mE8=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: 1OTKEgqlZnaKGpmz6oNBNrSZubeFhZS/c5pM2HU9abQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Mar 24 23:00:35 2026 GMT Not After : Mar 31 23:00:35 2026 GMT Subject: CN=69c31794-b2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d2:41:a9:37:24:52:37:d5:4d:74:ee:88:8d: 9b:9a:b9:88:f4:2c:4a:63:a1:9a:f4:fc:cc:48:33: f2:26:0c:0f:71:b8:50:54:25:64:16:b4:c3:91:bd: 66:24:e3:82:46:a3:a3:80:d1:d2:69:dd:fb:2f:58: 73:5e:77:68:a8:0a:54:16:45:9b:f2:f3:3a:32:75: 3f:b5:0b:7c:74:0e:c4:b5:8f:fe:e9:3e:9a:27:8b: cd:b3:b4:1f:83:77:40:b9:8e:05:b1:e1:42:68:e8: 60:21:ae:07:dc:73:67:8d:52:b7:05:dd:d1:59:7c: ad:cd:f5:cf:14:fc:b4:10:68:b8:27:8a:02:51:3c: 88:b3:22:5c:8f:bc:8a:b1:5c:0b:b7:35:a0:ad:85: 74:80:9b:b1:f9:e9:ed:04:67:0c:91:da:77:5a:86: 9e:60:04:d9:b4:ac:f5:9e:64:de:37:bc:95:16:34: 58:46:1f:ba:19:8a:ca:0a:c8:48:52:c6:48:f2:41: 8b:09:1d:70:5d:2b:05:03:8e:fd:68:c3:d7:4c:9d: 34:a3:98:8b:8c:4f:5f:89:ff:0c:63:c8:94:01:6e: 5f:41:1e:be:65:6f:8b:c4:c8:99:d3:1e:c0:41:b2: 90:23:e3:37:bc:a8:2b:fe:08:86:9e:1b:df:40:ac: c5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:FF:A6:E2:23:37:FF:BD:42:B8:9A:D8:F0:D7:5D:02:DB:E0:26:93 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:72:09:bb:d3:97:33:1d:37:a0:0e:2b:8d:80:09:d5:79:9e: 60:6b:f0:02:d3:e6:35:fb:e1:79:61:c4:b6:7e:f5:66:63:ea: d1:a9:52:46:ef:0d:18:66:2d:5b:e8:b4:9b:b6:b5:5c:1b:7b: e7:af:8b:a6:05:d5:1b:2f:86:aa:3c:28:ee:28:99:8f:7f:a9: 14:d2:6c:2a:81:83:a6:a0:55:50:da:a5:e1:95:47:ae:ec:b3: 52:c5:c8:4e:3c:2c:41:ec:1f:90:3d:8c:d5:31:11:13:5d:e6: d8:60:87:a9:fe:d8:36:f6:fe:39:fc:8e:ea:ad:e2:e6:2e:f2: 30:7b:26:8d:e3:49:a1:03:35:fd:87:2e:24:7c:ed:cd:28:46: 82:e6:04:ca:84:27:9d:06:50:2b:bf:1d:74:dc:91:35:d7:7b: 66:eb:3e:66:bc:b3:56:19:a9:12:93:20:14:e8:56:0f:68:c2: 9a:04:0a:eb:cb:a1:33:56:3e:4d:b5:e2:ad:7b:0d:c4:45:0e: 5c:00:44:02:92:bb:3f:5b:41:5f:1c:bd:2f:07:e8:26:95:8e: 1b:31:c1:6a:97:16:a8:00:bd:94:9d:bc:2d:01:94:60:40:91: c7:cd:92:45:c9:f4:ab:97:4e:e1:1f:5e:b6:7e:cc:60:8a:2a: 90:28:1f:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjYwMzI0MjMwMDM1WhcNMjYwMzMxMjMwMDM1WjAYMRYwFAYD VQQDEw02OWMzMTc5NC1iMmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09JBqTckUjfVTXTuiI2bmrmI9CxKY6Ga9PzMSDPyJgwPcbhQVCVkFrTDkb1m JOOCRqOjgNHSad37L1hzXndoqApUFkWb8vM6MnU/tQt8dA7EtY/+6T6aJ4vNs7Qf g3dAuY4FseFCaOhgIa4H3HNnjVK3Bd3RWXytzfXPFPy0EGi4J4oCUTyIsyJcj7yK sVwLtzWgrYV0gJux+entBGcMkdp3WoaeYATZtKz1nmTeN7yVFjRYRh+6GYrKCshI UsZI8kGLCR1wXSsFA479aMPXTJ00o5iLjE9fif8MY8iUAW5fQR6+ZW+LxMiZ0x7A QbKQI+M3vKgr/giGnhvfQKzFjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPP/puIj N/+9Qria2PDXXQLb4CaTMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASnIJu9OXMx03oA4rjYAJ1XmeYGvwAtPmNfvheWHEtn71ZmPq0alSRu8NGGYt W+i0m7a1XBt756+LpgXVGy+Gqjwo7iiZj3+pFNJsKoGDpqBVUNql4ZVHruyzUsXI TjwsQewfkD2M1TERE13m2GCHqf7YNvb+OfyO6q3i5i7yMHsmjeNJoQM1/YcuJHzt zShGguYEyoQnnQZQK78ddNyRNdd7Zus+ZryzVhmpEpMgFOhWD2jCmgQK68uhM1Y+ TbXirXsNxEUOXABEApK7P1tBXxy9LwfoJpWOGzHBapcWqAC9lJ28LQGUYECRx82S Rcn0q5dO4R9etn7MYIoqkCgfZg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:00 2026 by rpki-client