$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: 7DSXHNS7OlVcVp0992qGBogi6RecsxJ2SYbB1ci4VPg= Subject key identifier: 92:3E:15:17:DC:E4:45:B3:96:BC:12:96:FB:44:8F:F1:2C:35:13:24 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 01FB Signing time: Sun 01 Mar 2026 23:23:42 +0000 Manifest this update: Sun 01 Mar 2026 23:23:40 +0000 Manifest next update: Sun 08 Mar 2026 23:23:40 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: b0knFqibxAPO50+iOavnhpkebuFhXNnphbS00pPG0fs=) 2: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: gZLmgQL8Id/ZC97jwL0iGOj/66jYcGItOBO3dCFihUg=) 3: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: VGPzKMnPimSMI2CiaOjVgyPC7/IcbTH85rF5mJCg2Ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Mar 1 23:23:40 2026 GMT Not After : Mar 8 23:23:40 2026 GMT Subject: CN=69a4ca7d-0941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:a5:65:99:9d:7d:06:56:48:f9:f2:be:ea: 92:ee:cc:2f:5b:57:d0:15:c1:2f:ca:69:f1:01:45: 00:e3:8b:f9:0b:5a:2a:50:24:57:0f:b9:f2:79:c0: 9e:2a:64:28:0c:52:46:b4:99:0b:3d:44:74:d0:0e: 88:73:ec:e3:3e:72:66:26:46:a9:a1:d2:58:13:7e: b1:60:a9:c9:d1:7a:52:b9:0c:8c:7b:4c:79:cd:f3: ed:f2:c7:83:f5:55:b9:92:40:b0:9c:72:c1:42:f9: ad:2f:7d:6f:b4:66:81:6c:da:9d:93:19:97:54:f2: 20:df:66:d8:49:6f:e9:62:f3:82:15:f0:da:78:01: 04:01:17:ac:4a:38:9e:c4:1e:19:79:51:60:8b:b1: a4:b7:37:10:d4:a6:ef:0f:36:18:57:32:59:d5:5e: 4b:b1:dc:04:2b:25:5c:7b:0b:9b:46:cc:dd:1a:40: 31:cd:c5:cc:03:66:2c:18:73:01:22:6b:5c:78:50: e5:e8:84:6c:59:84:a5:23:18:5b:88:a1:55:ae:43: 99:c0:fe:9b:0c:cd:7b:39:6c:a5:e3:0e:6e:26:f8: 47:f1:03:57:5a:9c:f7:b1:4e:ef:f9:2a:f4:61:76: ef:94:8f:d6:11:72:88:15:6a:73:40:c1:45:af:06: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3E:15:17:DC:E4:45:B3:96:BC:12:96:FB:44:8F:F1:2C:35:13:24 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:47:42:09:22:95:c8:a7:fc:76:90:7c:5b:91:50:91:d0:33: b3:0e:74:88:89:9a:f2:fd:76:9b:02:6d:fe:75:74:0a:d4:56: f0:2b:86:10:03:10:e1:c8:e5:e2:bd:4c:fd:be:60:8b:1a:aa: b1:09:38:cb:fb:b0:64:0a:1f:c1:73:ac:4a:43:ab:1a:c5:b3: e7:a6:29:25:a3:25:05:e8:ec:03:cf:0c:ee:4c:ed:1f:a9:7a: 9b:01:f4:57:20:21:b0:c7:6a:fc:6d:b6:0e:da:67:40:c6:6a: ee:60:72:a6:ed:89:f4:0e:bd:33:af:0e:65:8c:22:49:6c:92: 6d:bd:43:6c:2e:ff:96:1d:8f:0f:22:00:00:dc:60:d9:fe:96: a8:5b:80:bf:7b:1a:5e:34:d3:56:ec:12:58:fa:d1:7b:1f:8a: 22:83:be:79:8d:d9:4c:f5:d1:d4:ed:02:97:78:41:ca:68:39: 0e:4f:61:45:aa:66:e1:85:f4:7d:67:e5:3e:9c:9b:b1:3a:dc: f8:1d:f7:37:52:23:ea:64:fb:5f:6e:c7:10:9a:63:ee:ec:ed: 56:a4:c2:6d:a5:75:3c:a7:0d:a5:1e:fc:5c:50:69:d5:fc:d9: d3:48:58:fc:97:d7:13:bf:da:2f:3d:64:6c:29:c9:46:3e:08: c3:24:c2:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjYwMzAxMjMyMzQwWhcNMjYwMzA4MjMyMzQwWjAYMRYwFAYD VQQDEw02OWE0Y2E3ZC0wOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGelZZmdfQZWSPnyvuqS7swvW1fQFcEvymnxAUUA44v5C1oqUCRXD7nyecCe KmQoDFJGtJkLPUR00A6Ic+zjPnJmJkapodJYE36xYKnJ0XpSuQyMe0x5zfPt8seD 9VW5kkCwnHLBQvmtL31vtGaBbNqdkxmXVPIg32bYSW/pYvOCFfDaeAEEAResSjie xB4ZeVFgi7GktzcQ1KbvDzYYVzJZ1V5LsdwEKyVcewubRszdGkAxzcXMA2YsGHMB ImtceFDl6IRsWYSlIxhbiKFVrkOZwP6bDM17OWyl4w5uJvhH8QNXWpz3sU7v+Sr0 YXbvlI/WEXKIFWpzQMFFrwb5VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJI+FRfc 5EWzlrwSlvtEj/EsNRMkMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApEdCCSKVyKf8dpB8W5FQkdAzsw50iIma8v12mwJt/nV0CtRW8CuGEAMQ4cjl 4r1M/b5gixqqsQk4y/uwZAofwXOsSkOrGsWz56YpJaMlBejsA88M7kztH6l6mwH0 VyAhsMdq/G22DtpnQMZq7mBypu2J9A69M68OZYwiSWySbb1DbC7/lh2PDyIAANxg 2f6WqFuAv3saXjTTVuwSWPrRex+KIoO+eY3ZTPXR1O0Cl3hBymg5Dk9hRapm4YX0 fWflPpybsTrc+B33N1Ij6mT7X27HEJpj7uztVqTCbaV1PKcNpR78XFBp1fzZ00hY /JfXE7/aLz1kbCnJRj4IwyTCCQ== -----END CERTIFICATE-----Generated at Mon Mar 2 20:37:56 2026 by rpki-client