$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: 8IjbQIaxL+34VK+/+ec4zXI1JZu4poPzIsyzEgofSDs= Subject key identifier: 0C:D4:C6:A1:50:D0:33:8E:C3:C9:D7:61:0E:F3:4B:1F:D2:2A:FE:71 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 0168 Signing time: Sat 31 May 2025 03:36:36 +0000 Manifest this update: Sat 31 May 2025 03:36:36 +0000 Manifest next update: Sat 07 Jun 2025 03:36:36 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: v+7t7uoLvfoifVVYP+d7lEh4SRukii2EyAE5947nt7M=) 2: AFF53F96556211EE9C34E435C4F9AE02.roa (hash: LM315PXaZ9khTUzGflBEPkGQjhCerawkLIiZZc3Qylg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: May 31 03:36:36 2025 GMT Not After : Jun 7 03:36:36 2025 GMT Subject: CN=683a7944-221b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:c6:4c:3c:4a:a3:a1:97:7f:00:6c:73:42: db:68:99:35:c1:2f:7e:2f:89:35:ab:03:1c:48:51: 05:bf:d6:d8:de:44:34:36:68:b1:33:66:b6:2a:d3: e1:c5:61:50:46:7e:83:74:e1:a0:7e:cc:63:1d:fe: 45:0e:12:bf:04:a4:d8:1c:c3:87:a0:db:55:88:8b: 40:57:0c:6f:f1:a0:eb:0f:e9:1e:04:22:20:2b:79: ea:0d:7c:b5:ca:52:98:84:96:ab:1b:98:2a:8e:fc: 70:f9:28:08:5d:6b:20:55:d7:28:d8:13:c3:c8:1c: 3b:17:23:e3:6b:b1:56:a7:37:09:71:fa:37:8d:ec: 1f:0e:5d:fa:66:11:d7:0c:25:ae:44:4a:46:3e:22: 41:af:6a:75:b7:79:64:8b:bb:57:b7:01:39:69:b2: 8c:f8:d6:ca:a9:d1:c1:5b:59:4c:b1:95:82:9a:b1: b6:f9:66:4d:76:b8:e6:92:7b:4b:bf:3a:f0:d2:45: 50:02:a5:b0:78:f9:6a:cd:10:d8:35:9e:9a:b0:20: d6:3b:15:87:1b:05:19:6d:72:6f:cf:e6:81:ac:8a: 94:b1:70:94:ec:41:a9:84:7f:55:ea:00:e6:79:1c: 7b:f2:25:31:ac:66:57:dc:a6:85:a1:b4:ae:5d:83: a2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D4:C6:A1:50:D0:33:8E:C3:C9:D7:61:0E:F3:4B:1F:D2:2A:FE:71 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4f:b8:30:d1:46:39:da:45:4b:6f:c2:0f:82:21:49:90:a5: 04:91:9e:f4:f5:a9:3c:0f:8a:25:15:ff:de:11:36:93:25:c8: df:3c:23:18:a6:b7:45:84:c8:04:06:72:b6:b5:fc:97:7b:bc: b0:07:f7:60:ea:07:39:5e:6d:ba:c4:93:ef:b0:fa:70:55:d1: dd:97:84:36:33:7c:f5:c6:95:a2:18:86:18:ab:5e:73:bb:15: db:54:4b:5a:bd:dd:bd:54:de:46:b1:3c:75:83:61:fe:74:3d: ec:93:70:92:26:5c:d5:a8:aa:d1:1c:62:c2:84:31:b2:8f:1b: 8f:e1:b8:29:51:58:34:46:69:d5:87:fc:24:fd:95:12:a5:76: 7e:03:1d:12:6f:a3:e3:f8:45:be:96:45:52:06:83:47:2c:93: 65:be:0c:7d:32:8c:c5:99:c3:51:81:2a:6b:45:97:2d:46:ca: aa:30:11:70:ca:88:27:74:db:f4:25:36:38:5b:a4:4b:04:e1: 0c:55:d4:91:09:9c:26:c0:aa:6b:2b:02:6b:f3:83:58:3d:6f: d1:6f:92:fb:52:8d:ac:9f:e1:a0:01:f2:60:b3:de:2f:18:8f: 20:e1:37:6c:96:98:b6:cc:6d:35:d6:99:48:14:d4:15:ae:10: 8d:c5:cf:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjUwNTMxMDMzNjM2WhcNMjUwNjA3MDMzNjM2WjAYMRYwFAYD VQQDEw02ODNhNzk0NC0yMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvXGTDxKo6GXfwBsc0LbaJk1wS9+L4k1qwMcSFEFv9bY3kQ0NmixM2a2KtPh xWFQRn6DdOGgfsxjHf5FDhK/BKTYHMOHoNtViItAVwxv8aDrD+keBCIgK3nqDXy1 ylKYhJarG5gqjvxw+SgIXWsgVdco2BPDyBw7FyPja7FWpzcJcfo3jewfDl36ZhHX DCWuREpGPiJBr2p1t3lki7tXtwE5abKM+NbKqdHBW1lMsZWCmrG2+WZNdrjmkntL vzrw0kVQAqWwePlqzRDYNZ6asCDWOxWHGwUZbXJvz+aBrIqUsXCU7EGphH9V6gDm eRx78iUxrGZX3KaFobSuXYOigQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzUxqFQ 0DOOw8nXYQ7zSx/SKv5xMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbT7gw0UY52kVLb8IPgiFJkKUEkZ709ak8D4olFf/eETaTJcjfPCMY prdFhMgEBnK2tfyXe7ywB/dg6gc5Xm26xJPvsPpwVdHdl4Q2M3z1xpWiGIYYq15z uxXbVEtavd29VN5GsTx1g2H+dD3sk3CSJlzVqKrRHGLChDGyjxuP4bgpUVg0RmnV h/wk/ZUSpXZ+Ax0Sb6Pj+EW+lkVSBoNHLJNlvgx9MozFmcNRgSprRZctRsqqMBFw yogndNv0JTY4W6RLBOEMVdSRCZwmwKprKwJr84NYPW/Rb5L7Uo2sn+GgAfJgs94v GI8g4Tdslpi2zG011plIFNQVrhCNxc8g -----END CERTIFICATE-----Generated at Sat May 31 16:59:28 2025 by rpki-client