$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: 3xNc6suzfCDTJ+q3ZI6Ic/fG+LZRmNSHpQKx1Hwfqa0= Subject key identifier: A2:D1:FC:86:A9:E3:A7:54:FD:B7:2E:B5:A7:B8:AF:D9:36:E3:F3:97 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: A7 Signing time: Sat 19 Jul 2025 06:23:12 +0000 Manifest this update: Sat 19 Jul 2025 06:23:12 +0000 Manifest next update: Sat 26 Jul 2025 06:23:12 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: ynUG+xNYzIxEK3uDFA/GAVIytYN2TIUHTWTsmJBq8zk=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Jul 19 06:23:12 2025 GMT Not After : Jul 26 06:23:12 2025 GMT Subject: CN=687b39d0-6197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:c1:f3:8f:45:d4:a7:3a:82:9f:6a:ec:0b: f4:f3:06:53:45:21:98:cb:1d:72:cb:04:f0:7e:2c: f7:b6:8d:fd:fc:a9:26:67:27:93:c6:a1:fe:b9:30: a4:2b:f8:79:54:79:d6:29:b0:5b:bc:ca:78:81:3d: 2b:d1:03:e8:40:9e:68:03:a8:60:31:60:75:17:26: d9:12:6c:1e:73:6a:64:a4:28:11:57:2c:13:64:26: 51:0f:4a:a5:de:08:20:5c:92:ec:b7:ae:93:a8:06: a9:0c:76:dd:a8:30:51:3e:bd:ed:db:6b:c6:63:a4: 3c:e0:73:77:c6:06:7a:15:9d:65:6d:97:3d:6c:cf: 1c:c3:65:75:40:6a:07:01:69:48:a1:c4:ee:a3:ca: 55:12:9a:c3:58:11:dc:9c:bc:6f:b9:82:dd:1a:24: d2:61:43:30:0c:be:56:5a:af:b7:bb:1e:d6:de:9b: 9b:5a:5f:5a:99:5d:0f:99:99:7b:05:6f:56:3b:79: 3e:8e:18:c9:ad:ae:4d:b5:f2:42:28:b0:0b:ed:78: 89:9b:6a:46:32:05:5f:af:70:c9:d3:66:6b:5b:6c: 38:e2:7c:f2:41:c0:b2:f6:4a:53:99:05:79:c0:3e: aa:66:53:b9:12:f5:44:67:41:0c:2d:ef:c9:8b:12: 2e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D1:FC:86:A9:E3:A7:54:FD:B7:2E:B5:A7:B8:AF:D9:36:E3:F3:97 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:9c:76:6a:45:c7:0c:09:36:3c:1f:f9:41:36:ee:aa:87:61: cc:37:a8:00:80:05:10:27:40:f9:be:ba:3a:47:20:7a:31:2d: 85:30:c7:2e:30:f5:a4:ae:d6:af:24:8a:c6:14:11:82:9b:23: bd:6f:12:26:48:4a:f2:ae:22:69:39:d3:7b:e5:57:61:d9:b5: 58:0d:a6:c5:5f:24:72:12:2e:59:4d:3a:21:70:c0:0b:af:8b: aa:4a:23:a1:41:fa:7d:f4:9e:98:ef:e1:1e:49:57:b6:a3:66: 78:8a:95:55:06:ba:f6:27:dc:f8:d5:59:f3:4c:a8:96:2c:65: 64:df:f6:64:be:58:89:50:ad:4a:e8:d1:c7:a2:36:c7:11:83: 67:59:59:d0:3e:b6:8f:b7:22:4e:19:f2:e5:24:84:1c:83:30: 40:48:50:21:8f:eb:a0:52:a1:50:f6:ec:ad:79:12:eb:42:ac: c2:d2:37:34:de:89:46:e6:00:8a:29:24:2c:cc:74:92:a5:80: 06:d2:18:9e:a9:be:47:1f:66:fc:64:c4:62:41:52:d8:a6:b1: 54:62:89:e3:03:08:a4:da:1b:bb:99:3b:6f:18:01:9e:a8:de: 87:00:e6:f5:9b:89:fc:3a:d6:60:e0:00:27:59:2d:29:0d:be: 5c:ad:81:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERCN0UxMTAvBgNVBAUTKDAyREExMzI3RjUyQzQwMjNBMzgyMUFDODc4NTBDOTE3 RDhFODM1MjcwHhcNMjUwNzE5MDYyMzEyWhcNMjUwNzI2MDYyMzEyWjAYMRYwFAYD VQQDEw02ODdiMzlkMC02MTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokHB849F1Kc6gp9q7Av08wZTRSGYyx1yywTwfiz3to39/KkmZyeTxqH+uTCk K/h5VHnWKbBbvMp4gT0r0QPoQJ5oA6hgMWB1FybZEmwec2pkpCgRVywTZCZRD0ql 3gggXJLst66TqAapDHbdqDBRPr3t22vGY6Q84HN3xgZ6FZ1lbZc9bM8cw2V1QGoH AWlIocTuo8pVEprDWBHcnLxvuYLdGiTSYUMwDL5WWq+3ux7W3pubWl9amV0PmZl7 BW9WO3k+jhjJra5NtfJCKLAL7XiJm2pGMgVfr3DJ02ZrW2w44nzyQcCy9kpTmQV5 wD6qZlO5EvVEZ0EMLe/JixIu6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLR/Iap 46dU/bcutae4r9k24/OXMB8GA1UdIwQYMBaAFALaEyf1LEAjo4IayHhQyRfY6DUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REI3RS85QzNGRUNEQzY0 REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FDT2pnaHJJZUZESkY5am9O U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REI3RS85QzNGRUNEQzY0REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FD T2pnaHJJZUZESkY5am9OU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjnHZqRccMCTY8H/lBNu6qh2HMN6gAgAUQJ0D5vro6RyB6MS2FMMcu MPWkrtavJIrGFBGCmyO9bxImSEryriJpOdN75Vdh2bVYDabFXyRyEi5ZTTohcMAL r4uqSiOhQfp99J6Y7+EeSVe2o2Z4ipVVBrr2J9z41VnzTKiWLGVk3/ZkvliJUK1K 6NHHojbHEYNnWVnQPraPtyJOGfLlJIQcgzBASFAhj+ugUqFQ9uyteRLrQqzC0jc0 3olG5gCKKSQszHSSpYAG0hieqb5HH2b8ZMRiQVLYprFUYonjAwik2hu7mTtvGAGe qN6HAOb1m4n8OtZg4AAnWS0pDb5crYGi -----END CERTIFICATE-----Generated at Sun Jul 20 20:37:38 2025 by rpki-client