$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: qTIA2mvaTo7NErNOlmqSZhbCV28aeeCAnNqvL2HaNiM= Subject key identifier: EE:18:FB:38:9C:EC:BC:3E:DE:10:4E:1F:30:21:91:5C:62:38:95:60 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: DB Signing time: Mon 27 Oct 2025 07:44:47 +0000 Manifest this update: Mon 27 Oct 2025 07:44:46 +0000 Manifest next update: Mon 03 Nov 2025 07:44:46 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: X5HMZjY88Ihmt30Relv62YW+2q3H2kzCc8VbfRS+lYs=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: 54Ea1mTVG8VfmRw/L9YxXLSKvOdr6tHDGBcwWayi7ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Oct 27 07:44:46 2025 GMT Not After : Nov 3 07:44:46 2025 GMT Subject: CN=68ff22ee-a27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c2:5a:44:ad:44:fd:b1:c0:7e:af:a7:d0:d2: fc:22:09:b9:6b:3d:a3:09:d6:e7:14:cd:84:87:c6: ef:2e:4c:99:ae:f2:3b:1a:ad:60:e2:9b:62:82:d4: 56:e2:c2:d5:a3:14:bf:5c:6a:05:d5:34:08:49:6f: d7:71:92:8a:54:72:28:2b:12:64:da:80:e5:2d:c5: b7:0e:83:ba:6e:60:03:18:0c:a3:f7:f9:64:8c:65: f4:6f:7d:b5:aa:75:6e:21:20:96:13:75:f8:26:ac: d1:a3:8f:93:a5:11:ab:0f:2b:83:6d:74:d3:e3:a6: 80:db:a1:6d:26:d2:e3:5d:d4:91:85:29:29:4e:51: 2d:36:82:47:58:25:bc:50:85:78:46:2f:bb:8a:67: 9c:43:3a:d1:18:11:ad:36:3d:66:b5:52:01:dc:c7: e1:4c:6a:db:48:3c:ed:ad:c8:36:23:1c:9a:fe:42: 8c:95:6e:1e:07:44:15:61:5c:f8:15:99:79:9c:ab: 8d:a5:af:fa:00:e6:fe:93:df:85:4a:f3:01:7e:46: 32:80:4e:af:e5:4a:65:12:df:93:73:5a:3c:da:e2: 96:52:c2:fb:98:56:b1:2f:38:bd:ce:df:8c:b1:4f: e8:5a:ee:f8:86:38:64:b2:68:df:bf:ff:22:a4:35: 4a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:18:FB:38:9C:EC:BC:3E:DE:10:4E:1F:30:21:91:5C:62:38:95:60 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:10:c9:1c:b3:2a:44:f8:c1:28:c7:ca:23:de:80:37:c2:0f: ed:70:c0:4d:f9:93:8e:22:4e:51:58:63:0d:83:50:27:1c:b4: 9a:e4:0c:f3:e2:68:ab:7a:ba:ba:e3:4f:7d:c8:0e:e3:d5:7a: da:96:34:08:b8:72:44:37:76:0e:5e:35:ff:71:f3:7a:5e:b3: bf:9f:de:36:03:c2:35:57:d5:96:a2:31:0c:0f:49:10:22:dc: b0:ac:8b:b7:a0:58:fb:f6:ba:c1:f5:b7:65:6e:12:63:14:5b: f4:b5:41:06:5a:17:a8:fb:88:4a:f5:c8:ac:23:5b:95:db:50: a6:71:0e:4a:f6:d2:38:db:91:2f:be:0b:af:e1:b0:c3:a7:e9: a1:63:b3:bb:c3:59:09:8f:a3:07:4e:d3:a0:63:13:7f:40:12: 3b:ca:37:4b:0d:c6:ee:88:49:ef:f6:94:66:54:f2:e5:20:38: ee:4b:7b:76:f7:a7:f5:9d:49:06:86:e6:9c:53:40:1a:ac:4d: fa:7c:7f:07:e0:af:e9:79:36:00:08:f9:b4:2b:ad:34:97:cb: cd:5c:8e:4a:c9:27:ec:74:00:40:0c:f5:c4:0b:0a:92:f9:7a: 62:12:2e:12:1b:49:75:01:5f:03:af:68:e2:c1:8a:22:af:fa: df:35:90:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERCN0UxMTAvBgNVBAUTKDAyREExMzI3RjUyQzQwMjNBMzgyMUFDODc4NTBDOTE3 RDhFODM1MjcwHhcNMjUxMDI3MDc0NDQ2WhcNMjUxMTAzMDc0NDQ2WjAYMRYwFAYD VQQDEw02OGZmMjJlZS1hMjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38JaRK1E/bHAfq+n0NL8Igm5az2jCdbnFM2Eh8bvLkyZrvI7Gq1g4ptigtRW 4sLVoxS/XGoF1TQISW/XcZKKVHIoKxJk2oDlLcW3DoO6bmADGAyj9/lkjGX0b321 qnVuISCWE3X4JqzRo4+TpRGrDyuDbXTT46aA26FtJtLjXdSRhSkpTlEtNoJHWCW8 UIV4Ri+7imecQzrRGBGtNj1mtVIB3MfhTGrbSDztrcg2Ixya/kKMlW4eB0QVYVz4 FZl5nKuNpa/6AOb+k9+FSvMBfkYygE6v5UplEt+Tc1o82uKWUsL7mFaxLzi9zt+M sU/oWu74hjhksmjfv/8ipDVK5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4Y+zic 7Lw+3hBOHzAhkVxiOJVgMB8GA1UdIwQYMBaAFALaEyf1LEAjo4IayHhQyRfY6DUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REI3RS85QzNGRUNEQzY0 REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FDT2pnaHJJZUZESkY5am9O U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REI3RS85QzNGRUNEQzY0REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FD T2pnaHJJZUZESkY5am9OU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwEMkcsypE+MEox8oj3oA3wg/tcMBN+ZOOIk5RWGMNg1AnHLSa5Azz 4mirerq64099yA7j1XraljQIuHJEN3YOXjX/cfN6XrO/n942A8I1V9WWojEMD0kQ ItywrIu3oFj79rrB9bdlbhJjFFv0tUEGWheo+4hK9cisI1uV21CmcQ5K9tI425Ev vguv4bDDp+mhY7O7w1kJj6MHTtOgYxN/QBI7yjdLDcbuiEnv9pRmVPLlIDjuS3t2 96f1nUkGhuacU0AarE36fH8H4K/peTYACPm0K600l8vNXI5KySfsdABADPXECwqS +XpiEi4SG0l1AV8Dr2jiwYoir/rfNZBl -----END CERTIFICATE-----Generated at Tue Oct 28 14:54:50 2025 by rpki-client