$ rpki-client -vvf rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft File: 0ATM-ubwekS9796TeAatucMyn_o.mft (raw, json) Hash identifier: Nx7xEJ90vQrP9FBXJuwam/IsYAQT9OQ0S022GtFKFMo= Subject key identifier: B7:71:90:61:01:A1:38:3F:2F:8F:8D:B8:42:E6:4B:26:12:E1:6E:19 Authority key identifier: D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA Certificate issuer: /CN=A91E116E/serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Certificate serial: 17FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft Manifest number: 17F1 Signing time: Sun 24 Aug 2025 16:32:19 +0000 Manifest this update: Sun 24 Aug 2025 16:32:19 +0000 Manifest next update: Sun 31 Aug 2025 16:32:19 +0000 Files and hashes: 1: 0ATM-ubwekS9796TeAatucMyn_o.crl (hash: Mu3QW13eGIxERO5DgjxagYNYVz697/zlyCjLcJY6V4g=) 2: A1021498C53311E7B0B0744BC4F9AE02.roa (hash: CJnMqYQU8gUfeRnUpkZiw2o/uqMdgxl50z9qK6F+HgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6142 (0x17fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E116E, serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Validity Not Before: Aug 24 16:32:19 2025 GMT Not After : Aug 31 16:32:19 2025 GMT Subject: CN=68ab3e93-5de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:86:91:d4:71:c0:af:b2:85:ea:95:e8:b2:d2: 46:71:fa:96:41:a5:0a:7b:a7:87:70:c5:ed:f1:33: 4d:07:19:2b:af:e6:d6:40:ef:29:47:7d:5d:27:cd: 85:98:1c:fc:06:c4:95:8e:e5:45:4d:c1:a9:41:f1: 75:61:d1:45:3d:de:f6:51:c3:bb:e2:f2:5d:03:ef: 68:ca:09:fe:37:59:ae:53:f6:e1:bf:09:57:d1:c4: 1c:6d:af:39:88:d9:6a:3f:fc:fc:41:47:b6:9e:db: 26:64:3b:cf:7b:2e:4e:4c:f5:5e:a6:43:2b:a6:72: f9:36:7e:06:2a:cc:a1:a3:b5:e8:62:b0:6d:88:5a: e8:5b:71:85:6c:b8:0d:2f:79:82:d8:a7:e8:7f:11: 0b:fa:1c:a7:0d:d1:f4:9b:72:62:ac:a4:e8:29:49: 2d:7b:00:90:1b:06:bd:64:ef:9f:56:8d:bb:8e:0f: 1c:6a:8e:df:c3:64:5f:48:54:3c:21:77:46:4a:ca: b5:bb:d2:fb:84:cd:c4:2e:de:77:5a:99:be:13:a4: de:db:a3:93:52:66:b3:15:44:d3:7d:37:b9:0b:0e: 22:5a:c1:02:21:db:45:8c:70:03:6a:ff:f4:10:fe: e6:1c:26:c0:ef:74:a5:bb:e4:41:d6:58:67:c0:88: 00:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:71:90:61:01:A1:38:3F:2F:8F:8D:B8:42:E6:4B:26:12:E1:6E:19 X509v3 Authority Key Identifier: keyid:D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f6:25:99:35:4b:16:60:ba:f4:aa:38:0b:dc:02:25:1a:a2: 5b:cf:00:77:b2:e9:a3:0a:d7:47:29:53:42:da:13:84:06:49: 32:46:cf:a6:83:e7:c5:d9:0f:32:a2:1b:42:22:62:b2:cf:5e: a4:57:49:d4:fd:2a:f4:a9:f2:71:6b:cf:1e:fe:7e:01:83:11: ac:88:3e:f5:64:0d:36:b3:23:50:4b:78:55:a0:2c:5a:c7:0b: bf:2b:04:94:53:a3:f1:03:a9:c9:1c:c9:04:65:26:b2:fc:71: d1:c5:de:17:73:15:81:48:1e:17:49:d2:4a:67:9d:74:ce:bd: ea:23:3b:47:95:30:67:a1:b5:64:8f:8c:89:95:14:31:db:9b: 94:99:06:52:f7:25:c4:2a:40:ca:c6:46:db:ed:1f:49:cd:e5: 73:ac:e2:1a:52:d3:c4:ab:47:82:2f:c7:e8:7d:2a:a6:04:ae: 11:a8:38:fd:5c:93:c3:62:ae:19:72:c3:d1:46:d9:51:04:85: 7f:f5:4c:19:77:1f:bd:33:24:32:5f:27:bf:79:19:76:7a:43: c9:e9:6e:88:8d:08:cd:43:31:54:de:9a:a9:da:70:a2:e2:45: 84:44:fd:44:e7:9b:11:21:76:10:37:2f:2b:4f:0d:10:e8:e7: 97:2a:56:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNkUxMTAvBgNVBAUTKEQwMDRDQ0ZBRTZGMDdBNDRCREVGREU5Mzc4MDZBREI5 QzMzMjlGRkEwHhcNMjUwODI0MTYzMjE5WhcNMjUwODMxMTYzMjE5WjAYMRYwFAYD VQQDEw02OGFiM2U5My01ZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoaR1HHAr7KF6pXostJGcfqWQaUKe6eHcMXt8TNNBxkrr+bWQO8pR31dJ82F mBz8BsSVjuVFTcGpQfF1YdFFPd72UcO74vJdA+9oygn+N1muU/bhvwlX0cQcba85 iNlqP/z8QUe2ntsmZDvPey5OTPVepkMrpnL5Nn4GKsyho7XoYrBtiFroW3GFbLgN L3mC2KfofxEL+hynDdH0m3JirKToKUktewCQGwa9ZO+fVo27jg8cao7fw2RfSFQ8 IXdGSsq1u9L7hM3ELt53Wpm+E6Te26OTUmazFUTTfTe5Cw4iWsECIdtFjHADav/0 EP7mHCbA73Slu+RB1lhnwIgA2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdxkGEB oTg/L4+NuELmSyYS4W4ZMB8GA1UdIwQYMBaAFNAEzPrm8HpEve/ek3gGrbnDMp/6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE2RS83NDU2Qzc1QUM1 MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2VrUzk3OTZUZUFhdHVjTXlu X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBVE0tdWJ3ZWtTOTc5NlRlQWF0dWNNeW5fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTE2RS83NDU2Qzc1QUM1MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2Vr Uzk3OTZUZUFhdHVjTXluX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc9iWZNUsWYLr0qjgL3AIlGqJbzwB3sumjCtdHKVNC2hOEBkkyRs+m g+fF2Q8yohtCImKyz16kV0nU/Sr0qfJxa88e/n4BgxGsiD71ZA02syNQS3hVoCxa xwu/KwSUU6PxA6nJHMkEZSay/HHRxd4XcxWBSB4XSdJKZ510zr3qIztHlTBnobVk j4yJlRQx25uUmQZS9yXEKkDKxkbb7R9JzeVzrOIaUtPEq0eCL8fofSqmBK4RqDj9 XJPDYq4ZcsPRRtlRBIV/9UwZdx+9MyQyXye/eRl2ekPJ6W6IjQjNQzFU3pqp2nCi 4kWERP1E55sRIXYQNy8rTw0Q6OeXKlbB -----END CERTIFICATE-----Generated at Sun Aug 24 21:44:36 2025 by rpki-client