$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: RJNdsYnTkUXrK80IV45u/rIyhRspdzWW+wOnx2/Zen4= Subject key identifier: FC:3E:23:19:1F:16:10:20:E3:7A:84:76:96:30:70:B2:D6:F4:EB:8C Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: 8F Signing time: Sun 01 Jun 2025 06:11:05 +0000 Manifest this update: Sun 01 Jun 2025 06:11:04 +0000 Manifest next update: Sun 08 Jun 2025 06:11:04 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: n3oA5NaqXbElBdWnxmPgYyD9YDLVDSZEP48LXBOvHEc=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Jun 1 06:11:04 2025 GMT Not After : Jun 8 06:11:04 2025 GMT Subject: CN=683beef9-6cef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:47:74:23:de:79:c3:ee:b3:d1:07:55:31: 5d:ec:f7:f2:f7:cd:27:2c:f8:e4:1a:56:81:fb:82: 98:90:3e:cb:20:21:5d:6c:c4:c8:06:ac:ae:0e:68: 39:3f:69:2b:f0:ec:80:e0:81:8a:80:1a:16:54:c5: 02:3c:e5:74:0d:77:19:f1:d0:3e:43:2e:b2:0a:24: d4:2c:a1:64:9b:77:f0:9d:db:15:d9:0d:95:c3:8b: 11:b1:dd:51:2b:48:20:62:f5:c7:aa:3d:b3:13:c3: c9:dc:2a:79:2b:85:69:45:30:42:54:7d:8a:34:c3: e4:00:6d:85:bb:21:cd:ab:0f:b3:13:19:70:56:c7: cd:0f:2c:de:f8:cd:de:10:40:e8:e5:61:37:2f:a5: 03:c2:b7:b6:d7:ef:ce:bb:19:da:a0:a0:cd:9e:3c: b8:49:37:75:74:52:50:97:eb:95:1b:e0:92:ae:62: 96:32:3b:87:a2:2e:30:37:21:d0:cf:cf:b5:37:0c: f8:cd:fa:57:a7:ec:46:cc:be:dd:37:16:14:d6:8c: b4:7e:ca:8c:46:b2:c0:9e:04:cb:35:d6:b1:e3:4e: cd:3c:d9:dc:7e:1b:ed:fc:f4:70:87:20:80:1e:27: 6d:41:ed:aa:dd:dc:94:e7:d9:32:a3:29:83:44:54: e1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3E:23:19:1F:16:10:20:E3:7A:84:76:96:30:70:B2:D6:F4:EB:8C X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:53:1d:57:09:05:14:ea:40:49:4d:f4:12:d9:4a:b6:ee:95: 70:65:96:fe:d6:38:59:df:00:99:dc:29:5c:5b:19:38:a4:08: 28:ea:00:b3:0e:f4:3b:08:a7:88:37:ec:63:aa:b8:30:48:62: 2d:df:05:bf:19:fe:f2:9c:0a:3b:24:dd:24:e1:01:6f:9e:d4: 01:90:cb:d4:56:ea:8d:20:80:8d:a0:93:9c:fa:b7:06:32:33: c0:5c:51:64:d3:5a:e8:cf:05:b8:ab:eb:06:bc:15:7e:23:e9: ad:b1:a5:28:22:5a:97:f9:61:65:af:d4:c0:91:5f:13:a3:08: 9d:5b:45:c3:17:0c:d3:eb:66:dc:64:7b:73:85:f1:77:a3:63: ab:4a:0e:77:18:c6:36:ce:4f:5e:16:55:6c:0f:ad:0f:19:80: d8:27:1c:9e:a8:79:f6:59:14:77:b1:0c:3c:6b:1b:bd:0d:16: 3b:af:5a:7b:73:14:c3:da:60:b5:92:e1:da:a5:d2:8d:27:5e: fb:5b:eb:f6:3b:37:62:bd:d9:c8:0b:f9:37:4e:d7:c0:cc:38: 0b:90:24:ea:55:13:ff:2e:12:a3:98:39:e0:bf:69:7a:43:98: c6:21:78:fb:80:8c:60:0d:a9:2d:19:d9:0a:47:37:e5:64:c8: e3:24:da:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERCN0UxMTAvBgNVBAUTKDAyREExMzI3RjUyQzQwMjNBMzgyMUFDODc4NTBDOTE3 RDhFODM1MjcwHhcNMjUwNjAxMDYxMTA0WhcNMjUwNjA4MDYxMTA0WjAYMRYwFAYD VQQDEw02ODNiZWVmOS02Y2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC9HdCPeecPus9EHVTFd7Pfy980nLPjkGlaB+4KYkD7LICFdbMTIBqyuDmg5 P2kr8OyA4IGKgBoWVMUCPOV0DXcZ8dA+Qy6yCiTULKFkm3fwndsV2Q2Vw4sRsd1R K0ggYvXHqj2zE8PJ3Cp5K4VpRTBCVH2KNMPkAG2FuyHNqw+zExlwVsfNDyze+M3e EEDo5WE3L6UDwre21+/OuxnaoKDNnjy4STd1dFJQl+uVG+CSrmKWMjuHoi4wNyHQ z8+1Nwz4zfpXp+xGzL7dNxYU1oy0fsqMRrLAngTLNdax407NPNncfhvt/PRwhyCA HidtQe2q3dyU59kyoymDRFTh2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw+Ixkf FhAg43qEdpYwcLLW9OuMMB8GA1UdIwQYMBaAFALaEyf1LEAjo4IayHhQyRfY6DUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REI3RS85QzNGRUNEQzY0 REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FDT2pnaHJJZUZESkY5am9O U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REI3RS85QzNGRUNEQzY0REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FD T2pnaHJJZUZESkY5am9OU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfUx1XCQUU6kBJTfQS2Uq27pVwZZb+1jhZ3wCZ3ClcWxk4pAgo6gCz DvQ7CKeIN+xjqrgwSGIt3wW/Gf7ynAo7JN0k4QFvntQBkMvUVuqNIICNoJOc+rcG MjPAXFFk01rozwW4q+sGvBV+I+mtsaUoIlqX+WFlr9TAkV8TowidW0XDFwzT62bc ZHtzhfF3o2OrSg53GMY2zk9eFlVsD60PGYDYJxyeqHn2WRR3sQw8axu9DRY7r1p7 cxTD2mC1kuHapdKNJ177W+v2OzdivdnIC/k3TtfAzDgLkCTqVRP/LhKjmDngv2l6 Q5jGIXj7gIxgDaktGdkKRzflZMjjJNoT -----END CERTIFICATE-----Generated at Mon Jun 2 20:04:19 2025 by rpki-client