$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: 2pytAXPC9QZ2cIY/jaUIJ1prvQka6SzFSzk8Dq/C6N4= Subject key identifier: 36:9C:6F:2F:F9:50:42:07:5D:FA:8D:CF:C4:DE:A9:96:98:27:36:66 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 01BD Signing time: Mon 03 Nov 2025 03:05:18 +0000 Manifest this update: Mon 03 Nov 2025 03:05:17 +0000 Manifest next update: Mon 10 Nov 2025 03:05:17 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: aWjJoaWbNQwSTc/ReqfRGtGAc4BWccZ6rJ2G/ytBtOA=) 2: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: WOumHbGuRSNgmsYtI00tvSXAxwcM6RyoYIB+0smW1tg=) 3: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: RFN9XfhuOWaOWLmVZsn6IOgv5uTZS/Q7mdXLAZI6MYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Nov 3 03:05:17 2025 GMT Not After : Nov 10 03:05:17 2025 GMT Subject: CN=69081bee-e9b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:46:4c:73:0b:eb:9c:1f:34:d3:3b:df:fa:cf: 9e:de:0b:92:3c:b7:d6:c0:71:c2:c3:91:51:15:86: 46:d3:67:33:43:0f:63:fc:12:f3:72:d7:94:24:a2: 1a:05:0b:33:ed:b4:5d:df:bb:7b:c8:75:72:71:df: bb:a4:9e:39:78:0d:5e:a1:f8:6e:ab:b2:e5:ff:83: c5:7b:fb:8d:d7:ef:2c:51:f9:fe:8d:70:88:76:92: 88:b7:0a:be:2f:d4:1a:1d:3b:11:cf:e2:fc:7b:6f: 5b:5b:19:38:19:ec:a4:57:96:82:4e:14:a9:96:97: 70:e7:09:4a:b7:e9:ea:73:d1:4e:70:e1:49:09:19: 3c:fc:15:43:fa:70:2f:83:5c:cb:61:b6:c1:e3:bf: ad:09:47:cf:8a:5a:e7:5d:3c:ab:d3:42:4d:94:bc: 77:c5:6d:56:a8:2c:ea:7f:5e:21:ce:02:89:48:d3: 2b:15:0d:ea:58:0c:2c:48:6e:b8:72:f9:13:10:6c: cf:21:0d:95:20:19:ae:c3:a5:05:7c:66:ae:1b:73: 5c:69:49:e6:ff:24:45:b4:c9:ab:14:e3:70:d4:d2: 4e:9e:ae:e0:29:c6:1f:80:0b:f2:93:9e:c4:a6:ce: 15:8f:60:c9:b8:b4:16:52:74:e3:08:90:ef:b1:79: 46:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9C:6F:2F:F9:50:42:07:5D:FA:8D:CF:C4:DE:A9:96:98:27:36:66 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:b8:46:0b:e5:8f:03:5c:e8:b2:f3:a3:3a:3b:21:38:a5:62: d9:73:4d:19:dd:f1:43:1a:6c:c5:ff:c5:d5:22:5b:02:67:80: 91:aa:d3:64:b0:0f:d7:ac:7f:2f:b1:fc:4e:20:0e:8e:c7:25: e8:cf:f4:c9:94:df:27:3c:c2:ef:0d:3f:49:72:57:fd:04:84: fb:63:10:c3:38:e5:e7:1c:a3:5e:e0:ca:29:4b:97:59:cb:56: 66:73:02:a3:b7:55:b2:af:b5:74:47:d8:70:89:29:4c:0d:2f: ea:5c:6a:95:ab:ad:6d:15:ed:4d:59:58:68:02:af:15:89:93: 80:a7:74:0f:36:15:39:d3:31:fc:b1:47:ee:55:51:1a:6f:63: 58:8b:a1:8d:4e:38:85:e5:22:74:4d:01:94:8e:1e:2f:65:ae: 77:d4:cd:cb:dc:70:da:af:cd:f7:b1:89:a4:cc:b5:b8:06:16: 87:bf:85:93:c0:64:ec:7b:8c:26:fb:15:fe:67:b0:1c:f6:72: f4:3e:0c:d1:23:a7:32:83:2e:df:c9:95:17:f8:39:33:4a:a9: 51:1e:2b:60:bd:90:0b:1e:9c:12:6a:f1:dc:09:e0:7f:ba:c3: 69:ad:a2:29:4b:d7:02:27:19:9f:14:fc:92:ca:2f:c8:b5:56: 75:fb:e6:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjUxMTAzMDMwNTE3WhcNMjUxMTEwMDMwNTE3WjAYMRYwFAYD VQQDEw02OTA4MWJlZS1lOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UZMcwvrnB800zvf+s+e3guSPLfWwHHCw5FRFYZG02czQw9j/BLzcteUJKIa BQsz7bRd37t7yHVycd+7pJ45eA1eofhuq7Ll/4PFe/uN1+8sUfn+jXCIdpKItwq+ L9QaHTsRz+L8e29bWxk4GeykV5aCThSplpdw5wlKt+nqc9FOcOFJCRk8/BVD+nAv g1zLYbbB47+tCUfPilrnXTyr00JNlLx3xW1WqCzqf14hzgKJSNMrFQ3qWAwsSG64 cvkTEGzPIQ2VIBmuw6UFfGauG3NcaUnm/yRFtMmrFONw1NJOnq7gKcYfgAvyk57E ps4Vj2DJuLQWUnTjCJDvsXlGXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDacby/5 UEIHXfqNz8TeqZaYJzZmMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkuEYL5Y8DXOiy86M6OyE4pWLZc00Z3fFDGmzF/8XVIlsCZ4CRqtNk sA/XrH8vsfxOIA6OxyXoz/TJlN8nPMLvDT9Jclf9BIT7YxDDOOXnHKNe4MopS5dZ y1ZmcwKjt1Wyr7V0R9hwiSlMDS/qXGqVq61tFe1NWVhoAq8ViZOAp3QPNhU50zH8 sUfuVVEab2NYi6GNTjiF5SJ0TQGUjh4vZa531M3L3HDar833sYmkzLW4BhaHv4WT wGTse4wm+xX+Z7Ac9nL0PgzRI6cygy7fyZUX+DkzSqlRHitgvZALHpwSavHcCeB/ usNpraIpS9cCJxmfFPySyi/ItVZ1++Yx -----END CERTIFICATE-----Generated at Tue Nov 4 16:18:14 2025 by rpki-client