$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: VH468HtYuTeRVj2qvri9pGosQ10dPokyAOu3S60iuFY= Subject key identifier: AA:DB:A9:69:ED:47:29:CD:EE:5A:18:1D:EA:70:52:72:E9:4F:2E:E4 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 0213 Signing time: Fri 17 Apr 2026 02:43:50 +0000 Manifest this update: Fri 17 Apr 2026 02:43:49 +0000 Manifest next update: Fri 24 Apr 2026 02:43:49 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: 1ckomeVk1ZkWYyaXNM3hcXycS2GuCzMRAfB9SbtWd/0=) 2: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: gZLmgQL8Id/ZC97jwL0iGOj/66jYcGItOBO3dCFihUg=) 3: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: VGPzKMnPimSMI2CiaOjVgyPC7/IcbTH85rF5mJCg2Ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Apr 17 02:43:49 2026 GMT Not After : Apr 24 02:43:49 2026 GMT Subject: CN=69e19e65-2406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:21:76:4d:49:82:53:4f:34:26:ea:41:83:65: f3:6c:ad:ad:b1:18:52:c8:ef:94:f8:21:15:0b:9e: 59:41:67:7c:9e:5a:be:02:9f:77:5b:df:ee:bb:ad: 16:8a:11:f2:09:da:50:97:63:96:70:f4:38:04:65: 8d:f9:2e:ed:b9:60:96:75:ba:fc:e6:38:2c:d7:5d: c3:44:ec:8e:f8:63:ee:cb:65:62:80:a3:0a:71:4a: 6e:63:53:6b:91:70:8c:32:cb:50:ac:6a:eb:d8:2e: b7:8f:33:7c:d3:c6:ca:de:0a:11:44:8f:e1:86:6d: db:ad:70:3a:44:a8:4f:a7:86:68:1f:c7:c1:3f:73: 3b:a1:2e:ff:4b:be:45:c1:e1:af:62:2a:7b:41:65: be:8a:af:6e:49:49:fe:7f:f2:b5:aa:3c:ae:86:ff: 8b:32:c5:31:67:73:b6:0d:bd:a1:69:6a:a0:8c:99: b6:2c:90:bf:a0:81:27:5c:58:69:2b:27:18:0c:69: 21:1e:2f:5d:11:09:ac:0a:8e:04:4a:ad:b3:ad:86: cb:67:9f:93:63:c9:46:05:35:a5:ed:59:b2:ba:b9: 5f:82:d1:a2:f7:aa:35:24:38:61:92:2e:dc:9d:c6: b0:e4:8f:18:3d:65:7d:fd:fb:bd:b2:61:56:f0:c4: 33:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DB:A9:69:ED:47:29:CD:EE:5A:18:1D:EA:70:52:72:E9:4F:2E:E4 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:99:4c:3e:a3:35:88:76:4e:ce:20:bf:5e:5b:8f:3f:0b:a9: e2:0d:cc:52:a4:1a:57:df:4a:5b:5f:e2:7d:06:e0:ff:5a:e3: 4e:45:d6:a3:90:a0:38:ce:e7:03:30:30:a4:5c:22:f7:c9:8d: 4d:1f:b6:7b:c2:8b:30:38:14:8a:be:be:16:08:28:a3:f3:0e: 59:e6:db:bc:97:00:d1:ea:74:61:1c:9f:b8:86:dd:10:6d:87: 12:ee:c8:9e:97:72:d9:bc:d2:4a:bb:d4:ac:44:18:bc:20:53: 69:92:3b:a5:5d:c2:9a:4d:d2:a1:43:a3:51:a7:59:1e:0b:4d: c5:b0:09:37:dd:41:ef:d8:18:53:a5:45:7d:3c:f4:e4:f7:16: 59:4f:2c:39:92:d4:25:29:e9:29:1d:30:d3:ec:b5:d0:72:1f: fb:ea:e5:bd:c0:63:e2:8f:16:57:66:6f:b9:bb:b8:77:0a:db: 15:8d:2c:71:16:57:ca:28:56:a6:06:fd:a4:9a:26:ed:c5:e4: b9:28:bb:d8:8f:95:d6:89:5b:a9:d6:e0:e7:6e:e0:ee:a8:ef: fa:c6:67:1e:68:d2:46:70:65:44:fd:f0:fc:f6:87:f1:4a:29: 99:b8:e0:7c:74:75:00:48:9c:2a:ae:d0:cb:24:58:c8:11:38: 6e:9a:e8:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjYwNDE3MDI0MzQ5WhcNMjYwNDI0MDI0MzQ5WjAYMRYwFAYD VQQDEw02OWUxOWU2NS0yNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SF2TUmCU080JupBg2XzbK2tsRhSyO+U+CEVC55ZQWd8nlq+Ap93W9/uu60W ihHyCdpQl2OWcPQ4BGWN+S7tuWCWdbr85jgs113DROyO+GPuy2VigKMKcUpuY1Nr kXCMMstQrGrr2C63jzN808bK3goRRI/hhm3brXA6RKhPp4ZoH8fBP3M7oS7/S75F weGvYip7QWW+iq9uSUn+f/K1qjyuhv+LMsUxZ3O2Db2haWqgjJm2LJC/oIEnXFhp KycYDGkhHi9dEQmsCo4ESq2zrYbLZ5+TY8lGBTWl7VmyurlfgtGi96o1JDhhki7c ncaw5I8YPWV9/fu9smFW8MQzbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrbqWnt RynN7loYHepwUnLpTy7kMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq5lMPqM1iHZOziC/XluPPwup4g3MUqQaV99KW1/ifQbg/1rjTkXWo5CgOM7n AzAwpFwi98mNTR+2e8KLMDgUir6+Fggoo/MOWebbvJcA0ep0YRyfuIbdEG2HEu7I npdy2bzSSrvUrEQYvCBTaZI7pV3Cmk3SoUOjUadZHgtNxbAJN91B79gYU6VFfTz0 5PcWWU8sOZLUJSnpKR0w0+y10HIf++rlvcBj4o8WV2Zvubu4dwrbFY0scRZXyihW pgb9pJom7cXkuSi72I+V1olbqdbg527g7qjv+sZnHmjSRnBlRP3w/PaH8Uopmbjg fHR1AEicKq7QyyRYyBE4bprobQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:01:03 2026 by rpki-client