$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: GPkVDULUDwxdgrhcXMRnR5BluLtlHjRnYp1n0Eg8AZ0= Subject key identifier: 4C:51:C9:C2:CC:5A:FA:F5:21:A1:16:9C:00:BD:FA:E2:30:09:A2:27 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 020B Signing time: Sun 01 Mar 2026 03:52:51 +0000 Manifest this update: Sun 01 Mar 2026 03:52:51 +0000 Manifest next update: Sun 08 Mar 2026 03:52:51 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: UZWVeTf5KHhbnVD38Pm9tzAPijqDAUOl4KB+7o9YqQs=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: p/oubbOjEb8Zn+B8haVjlomp+846cFby5ixQFCvfJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Mar 1 03:52:51 2026 GMT Not After : Mar 8 03:52:51 2026 GMT Subject: CN=69a3b813-3b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:c2:69:cd:32:43:3a:aa:7f:e9:c7:2e:cc: 51:d9:36:b1:87:ff:ea:3f:f6:35:c5:11:18:5e:8a: 1d:f3:be:ad:7c:01:17:85:ce:40:90:4c:e4:61:73: 22:30:20:99:c3:0a:aa:f5:58:b2:76:64:c6:5b:a8: bc:7c:08:80:fc:ce:fa:36:08:02:e9:88:c3:a5:2b: 2f:00:9b:9d:a6:28:47:e7:a9:4f:33:65:95:75:e2: 93:6e:55:8b:7f:a4:a2:57:6b:41:44:4c:71:04:57: ff:94:ef:21:40:de:f7:ee:be:df:07:93:6f:fe:f7: 05:27:50:2c:c8:5d:44:b5:ec:92:1c:f6:6b:8a:55: 4a:12:bc:5b:4d:eb:21:e1:84:37:ab:09:68:3e:05: 0c:77:0a:c8:f4:6a:e6:a1:24:08:22:47:d3:27:49: f8:33:39:40:61:90:c2:33:77:06:96:79:69:a5:50: 04:d6:e8:12:a6:a8:e8:7d:ff:eb:cd:bc:3f:93:03: df:78:c4:88:cc:93:67:c1:be:51:94:9f:a8:2c:b3: 6d:d0:3e:ae:1c:94:28:9b:15:d0:3a:c3:02:0d:4e: af:e8:cd:fb:61:b9:4c:37:fb:a9:38:ac:91:96:96: 5f:20:b1:5e:7f:b6:dd:1a:6a:96:fe:2f:50:df:79: ba:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:51:C9:C2:CC:5A:FA:F5:21:A1:16:9C:00:BD:FA:E2:30:09:A2:27 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:9e:3f:3d:7d:7c:10:56:97:27:2e:6e:14:e6:5d:6a:cf:5c: 63:52:76:f4:d9:d4:14:19:fa:6a:22:74:76:d7:d8:3f:c5:a7: 89:72:cc:85:52:50:b7:fa:54:30:4b:a7:54:33:81:52:0b:93: 93:29:4c:57:b4:53:f5:4f:8d:f9:51:df:de:1d:8c:01:b1:fd: ff:a6:79:97:7a:a8:0d:38:2d:ad:32:3e:08:de:4f:e8:96:d4: 75:1d:f2:ec:29:4a:c1:7f:e5:07:ec:1d:f6:f0:7d:68:be:c1: a6:3e:3b:8d:06:47:11:a3:d2:f4:7b:cd:7b:e7:09:c6:3b:2f: eb:24:5f:d4:f6:0d:01:80:a5:95:9e:03:90:35:6f:56:a2:8d: 9e:60:c8:ba:6c:eb:42:1d:06:54:7d:fa:6d:a1:ae:bb:dc:90: f5:32:07:f8:01:18:15:3e:d3:18:8c:15:48:6c:0d:71:2b:54: 2e:35:71:e0:05:a4:da:b6:0e:1a:0c:fb:8e:2a:d2:f4:05:0e: 5f:f1:cb:91:1f:5b:fe:94:f2:b7:34:04:bf:e0:99:92:d0:a5: 97:16:3d:92:fc:e7:70:28:6f:93:a1:e4:4e:8d:d9:34:87:52: 72:1e:43:1b:08:ab:6e:e2:83:8e:7a:3d:d0:ec:45:4f:61:55: 2c:a0:bb:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjYwMzAxMDM1MjUxWhcNMjYwMzA4MDM1MjUxWjAYMRYwFAYD VQQDDA02OWEzYjgxMy0zYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsibCac0yQzqqf+nHLsxR2Taxh//qP/Y1xREYXood876tfAEXhc5AkEzkYXMi MCCZwwqq9ViydmTGW6i8fAiA/M76NggC6YjDpSsvAJudpihH56lPM2WVdeKTblWL f6SiV2tBRExxBFf/lO8hQN737r7fB5Nv/vcFJ1AsyF1EteySHPZrilVKErxbTesh 4YQ3qwloPgUMdwrI9GrmoSQIIkfTJ0n4MzlAYZDCM3cGlnlppVAE1ugSpqjoff/r zbw/kwPfeMSIzJNnwb5RlJ+oLLNt0D6uHJQomxXQOsMCDU6v6M37YblMN/upOKyR lpZfILFef7bdGmqW/i9Q33m6LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFExRycLM Wvr1IaEWnAC9+uIwCaInMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe54/PX18EFaXJy5uFOZdas9cY1J29NnUFBn6aiJ0dtfYP8WniXLMhVJQt/pU MEunVDOBUguTkylMV7RT9U+N+VHf3h2MAbH9/6Z5l3qoDTgtrTI+CN5P6JbUdR3y 7ClKwX/lB+wd9vB9aL7Bpj47jQZHEaPS9HvNe+cJxjsv6yRf1PYNAYCllZ4DkDVv VqKNnmDIumzrQh0GVH36baGuu9yQ9TIH+AEYFT7TGIwVSGwNcStULjVx4AWk2rYO Ggz7jirS9AUOX/HLkR9b/pTytzQEv+CZktCllxY9kvzncChvk6HkTo3ZNIdSch5D GwirbuKDjno90OxFT2FVLKC72Q== -----END CERTIFICATE-----Generated at Mon Mar 2 02:25:45 2026 by rpki-client