
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json)
Hash identifier: pWD2iXncLkpgn1N1e6ar5DCDSOJFzpU4QALKCDi6I0g=
Subject key identifier: 1A:D3:6E:44:E3:2A:23:E2:D0:FC:7B:BC:A1:05:20:B8:C8:43:D1:9D
Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5
Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5
Certificate serial: 024B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
Manifest number: 0240
Signing time: Fri 17 Jul 2026 03:24:39 +0000
Manifest this update: Fri 17 Jul 2026 03:24:38 +0000
Manifest next update: Fri 24 Jul 2026 03:24:38 +0000
Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: fWSADZbs2I34EH98swE7zPIa6sOdHOL3NP1wfscu69g=)
2: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: VGPzKMnPimSMI2CiaOjVgyPC7/IcbTH85rF5mJCg2Ms=)
3: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: gZLmgQL8Id/ZC97jwL0iGOj/66jYcGItOBO3dCFihUg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl
rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:24:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 587 (0x24b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5
Validity
Not Before: Jul 17 03:24:38 2026 GMT
Not After : Jul 24 03:24:38 2026 GMT
Subject: CN=6a59a077-5198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d4:75:f2:75:2c:66:d9:cf:43:67:52:5f:3c:
76:ca:23:f3:ca:2d:f8:14:db:c4:37:c6:fa:73:84:
c3:4a:a3:23:f7:e4:f0:a9:b3:2e:8d:96:2a:88:81:
4a:9b:e0:13:96:c5:bf:20:05:47:db:fe:ce:23:d7:
5e:a3:c3:a1:a1:cb:48:dd:05:76:ba:0e:f5:32:6f:
64:49:94:1b:f0:9e:20:57:8e:0f:59:40:59:64:d5:
39:89:b8:a7:de:95:0d:60:92:2f:38:a6:c4:4c:73:
76:23:6c:f4:63:48:6c:76:5e:ce:0d:41:7c:1d:da:
e1:97:69:cc:d6:e8:aa:fd:8c:85:8e:f7:3c:8f:96:
f0:86:78:29:c4:9f:9e:34:78:a4:8d:67:f7:89:c7:
2e:51:f3:20:66:07:f9:72:e2:95:84:54:9d:33:4e:
ba:09:72:51:e6:b7:26:e0:33:10:37:a0:40:d9:3e:
c0:12:ae:bf:ef:f9:eb:50:65:7c:4f:ae:86:c2:8d:
26:d4:30:5a:6f:d0:60:49:a1:53:13:6a:d1:b7:be:
0c:12:b5:3b:1b:7f:f1:88:c8:9d:89:36:6b:d3:35:
89:1d:f0:67:a2:da:37:e1:6a:a2:af:62:b1:c3:f5:
80:a3:56:39:15:4b:90:f1:05:ff:04:f9:23:a7:4c:
27:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D3:6E:44:E3:2A:23:E2:D0:FC:7B:BC:A1:05:20:B8:C8:43:D1:9D
X509v3 Authority Key Identifier:
keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5e:3c:b3:56:32:dd:e2:2f:de:43:fb:b1:e8:3d:b8:61:5f:8e:
99:a6:9b:77:ca:0a:30:93:c0:15:c9:6f:a2:c2:c6:0d:b9:5c:
65:91:7e:10:ed:1a:34:08:a2:1b:eb:05:27:cc:a7:f8:a5:fb:
82:24:d9:dc:04:75:ef:8b:45:c9:a4:f5:55:26:34:82:84:7b:
ae:47:9e:64:52:1c:b7:a6:39:bf:28:bf:af:b8:04:16:84:d9:
b6:07:fe:1a:38:cc:45:35:82:58:49:b0:14:41:2a:96:f5:0f:
13:e2:d9:14:d7:54:20:a1:b7:21:8e:67:fe:39:07:35:5a:6b:
8b:6d:66:64:18:ed:1f:8d:a9:fe:d4:d8:c1:5d:6c:af:9b:6d:
1c:76:81:b8:4b:cb:93:97:9a:3d:10:ab:04:bc:9a:17:f8:b4:
22:a8:43:84:c4:9e:d5:3f:fc:ae:92:38:58:43:37:4f:29:fe:
4f:2c:62:48:69:51:03:9b:23:f2:03:11:91:2f:2a:05:e8:af:
56:84:2b:ad:a6:53:0f:9c:b4:84:7e:d5:52:7f:0d:47:89:0d:
45:d6:43:f7:fc:1c:6c:7c:8a:af:02:cb:30:34:62:25:7a:f6:
25:5d:8a:8b:3a:cd:fd:20:d2:f9:95:2d:1f:aa:19:ca:dd:5f:
72:17:0f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:30 2026 by rpki-client