$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: XpPaFQxO7fthknYxxuCLOeJ8gcyUzCdedHosjwRfSWE= Subject key identifier: A2:AB:24:1C:1A:C8:8D:80:A8:08:1E:AA:AB:96:DA:93:4C:24:27:28 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: C2 Signing time: Fri 05 Sep 2025 06:17:37 +0000 Manifest this update: Fri 05 Sep 2025 06:17:36 +0000 Manifest next update: Fri 12 Sep 2025 06:17:36 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: fxxuxj7u84oxOZ4+Nusj5xF2kBbzfr2KeEL39itwf9M=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: 54Ea1mTVG8VfmRw/L9YxXLSKvOdr6tHDGBcwWayi7ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Sep 5 06:17:36 2025 GMT Not After : Sep 12 06:17:36 2025 GMT Subject: CN=68ba8081-b4c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d7:c4:90:50:fe:a6:92:18:04:90:25:ba:6c: 3d:08:59:76:b2:7d:21:14:de:70:37:ca:79:bf:39: fc:8d:f4:3d:87:13:bb:2b:62:6e:d0:e3:b8:cc:c1: ee:56:bf:d0:8e:b7:6f:f0:2a:95:01:9f:31:90:df: 7e:ed:0a:16:6c:7a:02:c6:13:59:29:20:64:b5:96: 2a:e6:31:ab:9b:c7:16:ed:40:b1:7a:ec:d5:55:34: 9a:d6:38:2e:d0:fc:f4:e9:03:4c:9c:00:9e:80:2a: 30:07:2c:9c:b0:24:a6:f3:44:24:44:e4:60:4e:e1: 8d:51:f2:c6:e7:ad:36:2d:a5:93:f1:ad:2d:78:93: c1:7d:24:fd:ab:99:ca:95:69:72:d7:b3:ea:46:d5: 1b:ed:17:53:0f:84:53:3f:58:ab:56:00:1f:49:8c: 7f:05:2f:33:87:bd:a3:89:3c:80:c5:0f:ed:57:be: 7c:db:d5:fc:37:4c:60:c2:58:d9:65:fe:98:9d:dc: a7:64:d6:7c:cb:5e:da:98:63:9c:6a:95:fa:ac:a0: 25:f8:3e:b3:5f:c1:08:80:7b:8a:82:3b:56:c0:27: 2b:52:51:4e:f0:3b:ab:20:d2:5e:81:74:d6:f1:e1: 77:bd:66:71:bc:5f:5b:7d:38:0e:a1:1c:dc:b2:53: 10:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:AB:24:1C:1A:C8:8D:80:A8:08:1E:AA:AB:96:DA:93:4C:24:27:28 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:3a:27:b5:b3:c5:e3:11:9d:91:90:e6:88:82:4a:b8:48:b2: 50:42:fd:d1:bc:fc:1d:a4:49:3d:26:eb:ba:7d:45:55:ff:56: 22:fb:b1:80:5e:29:2a:9b:21:38:ad:a0:7a:d0:bd:39:3b:01: 37:e9:6d:eb:bb:1d:f1:d1:5c:d8:d9:f7:8e:a5:cf:d7:c4:89: eb:1c:67:18:25:4e:7c:d4:43:65:f8:6f:98:22:5d:4d:64:52: b1:82:50:a0:37:82:ce:20:51:01:39:68:e0:f9:76:9f:4d:ab: db:09:6b:13:85:4b:50:06:96:55:b6:b3:30:10:2e:d0:c8:d8: 17:a7:c8:94:3e:18:97:16:2b:21:83:2e:45:9d:04:e2:e8:bb: b3:30:9b:d3:d0:ca:6e:a7:66:31:ca:36:22:ac:26:aa:c1:bc: 1e:20:c1:d4:c0:18:13:18:31:f5:95:38:ac:02:93:45:7b:24: 88:d4:ae:09:7f:aa:b0:85:9c:8e:16:e2:7d:bb:e0:24:da:08: 76:13:44:22:14:13:0f:b6:87:fc:9d:7f:45:8e:d6:6d:4e:22: 98:9b:20:3f:6f:b5:b6:9a:1e:e1:88:80:1f:19:7a:4d:8c:02: 1c:0f:49:08:2d:27:bf:d9:67:50:71:94:be:33:9b:90:75:ee: 13:ce:47:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERCN0UxMTAvBgNVBAUTKDAyREExMzI3RjUyQzQwMjNBMzgyMUFDODc4NTBDOTE3 RDhFODM1MjcwHhcNMjUwOTA1MDYxNzM2WhcNMjUwOTEyMDYxNzM2WjAYMRYwFAYD VQQDEw02OGJhODA4MS1iNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NfEkFD+ppIYBJAlumw9CFl2sn0hFN5wN8p5vzn8jfQ9hxO7K2Ju0OO4zMHu Vr/Qjrdv8CqVAZ8xkN9+7QoWbHoCxhNZKSBktZYq5jGrm8cW7UCxeuzVVTSa1jgu 0Pz06QNMnACegCowByycsCSm80QkRORgTuGNUfLG5602LaWT8a0teJPBfST9q5nK lWly17PqRtUb7RdTD4RTP1irVgAfSYx/BS8zh72jiTyAxQ/tV75829X8N0xgwljZ Zf6YndynZNZ8y17amGOcapX6rKAl+D6zX8EIgHuKgjtWwCcrUlFO8DurINJegXTW 8eF3vWZxvF9bfTgOoRzcslMQ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKrJBwa yI2AqAgeqquW2pNMJCcoMB8GA1UdIwQYMBaAFALaEyf1LEAjo4IayHhQyRfY6DUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REI3RS85QzNGRUNEQzY0 REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FDT2pnaHJJZUZESkY5am9O U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REI3RS85QzNGRUNEQzY0REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FD T2pnaHJJZUZESkY5am9OU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzOie1s8XjEZ2RkOaIgkq4SLJQQv3RvPwdpEk9Juu6fUVV/1Yi+7GA XikqmyE4raB60L05OwE36W3rux3x0VzY2feOpc/XxInrHGcYJU581ENl+G+YIl1N ZFKxglCgN4LOIFEBOWjg+XafTavbCWsThUtQBpZVtrMwEC7QyNgXp8iUPhiXFish gy5FnQTi6LuzMJvT0Mpup2YxyjYirCaqwbweIMHUwBgTGDH1lTisApNFeySI1K4J f6qwhZyOFuJ9u+Ak2gh2E0QiFBMPtof8nX9FjtZtTiKYmyA/b7W2mh7hiIAfGXpN jAIcD0kILSe/2WdQcZS+M5uQde4TzkfL -----END CERTIFICATE-----Generated at Sat Sep 6 15:22:46 2025 by rpki-client