$ rpki-client -vvf rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft File: 0ATM-ubwekS9796TeAatucMyn_o.mft (raw, json) Hash identifier: +PTqRUehFmgMALI+vpNetj7jplq8XDi4BPpZii893jY= Subject key identifier: 3C:1C:53:D4:27:B2:4B:D0:88:58:DA:69:1D:7D:02:59:D7:1A:8F:EB Authority key identifier: D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA Certificate issuer: /CN=A91E116E/serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Certificate serial: 17D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft Manifest number: 17C8 Signing time: Sun 08 Jun 2025 16:29:08 +0000 Manifest this update: Sun 08 Jun 2025 16:29:07 +0000 Manifest next update: Sun 15 Jun 2025 16:29:07 +0000 Files and hashes: 1: 0ATM-ubwekS9796TeAatucMyn_o.crl (hash: +94bbeRt4X6EJhw4rQ6bR0elucqzwiQ3wzjoEcZBuiQ=) 2: A1021498C53311E7B0B0744BC4F9AE02.roa (hash: Ns6MCGMpSR+zeyD0qeQ8GuU0GoV9G94RijEmcRmZDOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 16:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6100 (0x17d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E116E, serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Validity Not Before: Jun 8 16:29:07 2025 GMT Not After : Jun 15 16:29:07 2025 GMT Subject: CN=6845ba53-91cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:77:1c:fd:e6:b0:e3:00:f2:cd:c1:5e:94:16: e4:4e:03:30:6c:15:38:50:63:96:01:6c:1f:c5:d1: 11:e3:ae:fe:2f:ab:82:98:2f:10:d3:cb:fc:dc:5b: 07:6f:e7:e2:c5:26:ef:51:08:cd:ce:cd:a7:4c:3a: 82:5c:c5:14:04:6b:54:b7:22:db:4d:fd:7e:c9:7f: 66:a1:f4:d8:51:9f:b8:e0:20:70:3d:80:50:8d:94: 9a:e0:ac:9c:6f:da:98:6f:37:3d:ff:9d:73:96:35: 2b:78:35:1f:7e:14:1e:07:e5:28:9c:dd:90:f0:41: b7:98:7c:4e:2a:cf:ef:94:cc:41:f4:35:fb:a5:2e: a0:4f:92:cb:e1:2e:4e:42:85:4e:c3:f9:96:71:12: 7c:f7:21:16:c3:a9:d4:51:35:2b:b1:f9:a9:a0:d8: 2b:e3:9c:b2:a0:4d:e7:31:5d:ec:f3:b4:44:6a:1c: 19:89:4b:58:1e:81:67:e9:c0:84:18:f9:d3:65:4d: 15:29:98:da:79:7f:b9:07:cb:7a:c8:26:99:c8:cc: 12:f3:71:e2:01:09:df:38:68:57:37:2d:52:6c:c0: f3:b6:eb:52:ae:31:75:82:0a:00:a7:b8:dc:b1:be: 89:c8:9b:a3:4c:51:4f:73:bc:45:4a:85:e8:ca:37: d2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1C:53:D4:27:B2:4B:D0:88:58:DA:69:1D:7D:02:59:D7:1A:8F:EB X509v3 Authority Key Identifier: keyid:D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:19:34:61:b0:4c:6b:37:13:e3:91:ab:4d:db:82:78:df:d7: fb:ca:51:b5:e8:85:31:2d:02:c9:45:55:f4:6f:ba:0b:55:fe: 3d:ba:2d:e8:99:04:2b:eb:c4:1e:e4:04:20:31:ad:9c:84:d5: 99:7c:fa:64:8f:97:c4:a1:f3:aa:fa:a8:18:09:bb:d8:23:02: b8:66:9e:f4:fb:61:1f:d7:96:72:1e:85:bd:3d:aa:5e:45:75: 22:19:39:e0:de:50:18:fb:2c:d7:bd:35:cc:c9:33:46:e5:2f: 4a:0f:06:c6:57:09:92:7d:64:7f:e9:4a:3c:89:60:bb:18:06: 04:b3:36:c8:b0:e3:52:39:e3:4b:a2:5a:05:99:e8:b4:54:5f: aa:d2:48:07:96:55:86:1f:fa:7d:58:50:ca:f2:89:95:20:d1: 23:c1:80:59:f4:13:a5:ad:3a:d2:4d:e9:e6:2c:d2:dd:ca:ca: 23:c0:92:f9:a3:42:e1:08:e0:59:f8:cd:a8:74:8d:68:61:5e: 8f:85:1d:62:62:7e:f3:af:d6:a7:8d:8f:16:e3:de:b6:df:59: d9:e7:eb:51:44:90:9a:5b:90:c5:9e:9c:17:0f:5f:63:df:a9: 8b:2f:83:39:84:83:30:b3:6d:ca:ba:dd:6f:f0:35:c7:11:1a: 57:a7:88:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNkUxMTAvBgNVBAUTKEQwMDRDQ0ZBRTZGMDdBNDRCREVGREU5Mzc4MDZBREI5 QzMzMjlGRkEwHhcNMjUwNjA4MTYyOTA3WhcNMjUwNjE1MTYyOTA3WjAYMRYwFAYD VQQDEw02ODQ1YmE1My05MWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXcc/eaw4wDyzcFelBbkTgMwbBU4UGOWAWwfxdER467+L6uCmC8Q08v83FsH b+fixSbvUQjNzs2nTDqCXMUUBGtUtyLbTf1+yX9mofTYUZ+44CBwPYBQjZSa4Kyc b9qYbzc9/51zljUreDUffhQeB+UonN2Q8EG3mHxOKs/vlMxB9DX7pS6gT5LL4S5O QoVOw/mWcRJ89yEWw6nUUTUrsfmpoNgr45yyoE3nMV3s87REahwZiUtYHoFn6cCE GPnTZU0VKZjaeX+5B8t6yCaZyMwS83HiAQnfOGhXNy1SbMDztutSrjF1ggoAp7jc sb6JyJujTFFPc7xFSoXoyjfS4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwcU9Qn skvQiFjaaR19AlnXGo/rMB8GA1UdIwQYMBaAFNAEzPrm8HpEve/ek3gGrbnDMp/6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE2RS83NDU2Qzc1QUM1 MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2VrUzk3OTZUZUFhdHVjTXlu X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBVE0tdWJ3ZWtTOTc5NlRlQWF0dWNNeW5fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTE2RS83NDU2Qzc1QUM1MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2Vr Uzk3OTZUZUFhdHVjTXluX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2GTRhsExrNxPjkatN24J439f7ylG16IUxLQLJRVX0b7oLVf49ui3o mQQr68Qe5AQgMa2chNWZfPpkj5fEofOq+qgYCbvYIwK4Zp70+2Ef15ZyHoW9Pape RXUiGTng3lAY+yzXvTXMyTNG5S9KDwbGVwmSfWR/6Uo8iWC7GAYEszbIsONSOeNL oloFmei0VF+q0kgHllWGH/p9WFDK8omVINEjwYBZ9BOlrTrSTenmLNLdysojwJL5 o0LhCOBZ+M2odI1oYV6PhR1iYn7zr9anjY8W496231nZ5+tRRJCaW5DFnpwXD19j 36mLL4M5hIMws23Kut1v8DXHERpXp4hE -----END CERTIFICATE-----Generated at Sun Jun 8 21:35:44 2025 by rpki-client