$ rpki-client -vvf rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft File: 0ATM-ubwekS9796TeAatucMyn_o.mft (raw, json) Hash identifier: bB7450qexm5NTsFn8dsYBZJ192ryyZDkzUkJTd6ZuX8= Subject key identifier: 32:06:F9:56:A4:20:F9:15:76:F2:31:9E:2E:03:CC:D1:79:95:97:3E Authority key identifier: D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA Certificate issuer: /CN=A91E116E/serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Certificate serial: 17B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft Manifest number: 17A7 Signing time: Fri 04 Apr 2025 16:39:41 +0000 Manifest this update: Fri 04 Apr 2025 16:39:40 +0000 Manifest next update: Fri 11 Apr 2025 16:39:40 +0000 Files and hashes: 1: 0ATM-ubwekS9796TeAatucMyn_o.crl (hash: vf7VLJtFpsaBMlUQBTjoogFKLGIt0FAY/6MQDuywaIM=) 2: A1021498C53311E7B0B0744BC4F9AE02.roa (hash: Ns6MCGMpSR+zeyD0qeQ8GuU0GoV9G94RijEmcRmZDOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6067 (0x17b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E116E Validity Not Before: Apr 4 16:39:40 2025 GMT Not After : Apr 11 16:39:40 2025 GMT Subject: CN=67f00b4c-2128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cf:8e:09:37:00:fd:f5:8d:a1:ce:5f:6b:65: b7:76:91:5f:4e:d1:24:db:43:2c:e0:7f:84:0e:6d: 73:a7:fd:c7:8e:bf:af:a8:72:ae:e0:f7:54:03:bd: d6:d9:53:2e:66:1d:b9:fc:b5:a4:99:81:02:43:61: a7:72:9d:86:17:4e:c8:e5:bd:ec:87:e9:4a:d5:fa: f1:ee:d4:3a:ca:33:9e:d3:20:72:e7:89:35:9a:f1: 40:c5:5a:4a:6c:40:57:e5:92:77:17:fa:41:65:b1: c6:a5:d9:84:5e:6c:d5:9c:bb:dd:ba:54:fc:aa:0a: e3:ce:7a:58:69:28:61:33:55:e9:1a:3f:ac:4d:98: 2d:f6:a7:d1:19:e0:87:48:db:35:68:e4:68:fa:71: 33:d0:d1:83:ad:1d:84:a7:16:80:a4:76:9a:65:74: 64:78:c2:b2:cc:b9:77:d3:57:0e:9f:ea:f3:bc:f8: c8:d7:ff:c6:f3:77:55:21:74:88:cd:67:2d:27:e8: 41:0d:e6:b6:ff:46:5c:0d:12:5e:18:5f:c4:60:82: 96:e9:6a:96:60:b8:2c:bb:c2:9e:32:bd:71:d7:46: 9e:e7:c1:7f:9f:b1:1b:cd:64:55:71:1a:05:9b:0a: b1:61:0d:bd:a5:02:63:37:78:8a:b2:13:4b:82:ca: aa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:06:F9:56:A4:20:F9:15:76:F2:31:9E:2E:03:CC:D1:79:95:97:3E X509v3 Authority Key Identifier: keyid:D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:a5:bc:9f:6e:09:71:28:66:47:6a:33:e8:3c:ab:0c:aa:5c: b1:c9:e0:e8:98:f2:6c:dd:e1:d1:2c:78:a2:00:84:71:f7:3f: f4:f4:e7:12:6e:a8:84:90:33:9c:43:99:4a:ab:a2:11:92:d8: a7:d2:9d:65:db:cc:95:d1:06:da:fd:ff:c5:0b:92:a5:56:e8: 37:83:b3:fa:37:3b:0a:4a:38:45:e7:e0:4c:b4:df:0b:00:9a: d6:92:fa:c1:fa:1c:09:a8:ef:1e:59:08:3d:9c:c7:22:f7:9d: da:12:f1:62:74:1e:11:04:5d:41:88:5a:e8:04:ea:d2:4b:5b: 04:80:ef:0e:ff:06:a9:f5:52:ee:94:1c:19:d3:fb:b5:c9:df: 1b:56:66:3d:c4:c5:00:ba:2e:bb:3e:88:a9:f2:a4:6f:96:b6: 8a:4e:95:ca:0f:bb:6a:65:b2:7a:cd:f9:46:7a:2f:91:4d:d8: 10:c4:a2:55:e9:2c:38:8d:b7:63:17:d4:e9:9b:b6:36:01:07: 34:db:24:a7:64:1a:e5:94:24:71:0e:63:fe:e9:2e:ba:98:3a: ed:f5:db:8b:23:60:1d:87:d9:05:d1:2f:cd:66:0b:8f:aa:6e: 3e:27:66:3a:b8:f3:bb:95:b6:00:d9:e6:5f:d4:78:2f:b0:7e: 58:bd:cd:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNkUxMTAvBgNVBAUTKEQwMDRDQ0ZBRTZGMDdBNDRCREVGREU5Mzc4MDZBREI5 QzMzMjlGRkEwHhcNMjUwNDA0MTYzOTQwWhcNMjUwNDExMTYzOTQwWjAYMRYwFAYD VQQDEw02N2YwMGI0Yy0yMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAus+OCTcA/fWNoc5fa2W3dpFfTtEk20Ms4H+EDm1zp/3Hjr+vqHKu4PdUA73W 2VMuZh25/LWkmYECQ2Gncp2GF07I5b3sh+lK1frx7tQ6yjOe0yBy54k1mvFAxVpK bEBX5ZJ3F/pBZbHGpdmEXmzVnLvdulT8qgrjznpYaShhM1XpGj+sTZgt9qfRGeCH SNs1aORo+nEz0NGDrR2EpxaApHaaZXRkeMKyzLl301cOn+rzvPjI1//G83dVIXSI zWctJ+hBDea2/0ZcDRJeGF/EYIKW6WqWYLgsu8KeMr1x10ae58F/n7EbzWRVcRoF mwqxYQ29pQJjN3iKshNLgsqqtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIG+Vak IPkVdvIxni4DzNF5lZc+MB8GA1UdIwQYMBaAFNAEzPrm8HpEve/ek3gGrbnDMp/6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE2RS83NDU2Qzc1QUM1 MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2VrUzk3OTZUZUFhdHVjTXlu X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBVE0tdWJ3ZWtTOTc5NlRlQWF0dWNNeW5fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTE2RS83NDU2Qzc1QUM1MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2Vr Uzk3OTZUZUFhdHVjTXluX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCApbyfbglxKGZHajPoPKsMqlyxyeDomPJs3eHRLHiiAIRx9z/09OcS bqiEkDOcQ5lKq6IRktin0p1l28yV0Qba/f/FC5KlVug3g7P6NzsKSjhF5+BMtN8L AJrWkvrB+hwJqO8eWQg9nMci953aEvFidB4RBF1BiFroBOrSS1sEgO8O/wap9VLu lBwZ0/u1yd8bVmY9xMUAui67Poip8qRvlraKTpXKD7tqZbJ6zflGei+RTdgQxKJV 6Sw4jbdjF9Tpm7Y2AQc02ySnZBrllCRxDmP+6S66mDrt9duLI2Adh9kF0S/NZguP qm4+J2Y6uPO7lbYA2eZf1HgvsH5Yvc26 -----END CERTIFICATE-----Generated at Sat Apr 5 19:27:20 2025 by rpki-client