$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: aJNavpYu+SLjkwiHH1zZat2CTR5HHuPTvt1Eokc+KJU= Subject key identifier: 38:0A:8B:98:0E:81:6C:BA:35:0D:EE:2A:D9:DB:54:2A:2C:39:50:E4 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 0170 Signing time: Sun 15 Jun 2025 03:03:29 +0000 Manifest this update: Sun 15 Jun 2025 03:03:29 +0000 Manifest next update: Sun 22 Jun 2025 03:03:29 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: jVdzDQtXzr9+GSgG3/Sgk/a2HaUO5EFsfNYsenTVifk=) 2: AFF53F96556211EE9C34E435C4F9AE02.roa (hash: LM315PXaZ9khTUzGflBEPkGQjhCerawkLIiZZc3Qylg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Jun 15 03:03:29 2025 GMT Not After : Jun 22 03:03:29 2025 GMT Subject: CN=684e3801-a19f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:19:1b:55:08:f6:8b:c1:a4:a9:e7:7f:9b:0d: 8e:b0:96:d8:5c:c5:2a:dd:f3:e7:b8:85:15:90:00: a9:cb:39:b7:5f:68:c4:4d:0c:7d:c1:96:6d:c2:ac: 40:97:ae:a0:2b:0b:99:36:cc:8a:d7:ea:4d:01:61: 82:49:2e:37:f0:e9:96:78:c7:dd:aa:25:b2:ba:dd: c6:b6:2d:82:e5:b7:b9:07:77:5c:1d:62:70:85:ac: d9:51:53:81:b0:9f:6f:e1:2d:8c:e0:98:6b:2f:32: 5d:e7:92:f0:86:99:9e:e0:73:c7:26:3e:e7:16:62: 9a:39:3a:c9:2a:8b:d4:22:8b:17:27:38:3b:6c:c0: f5:e6:4f:f9:10:e6:fc:06:2a:cf:52:e4:2d:20:3f: 7b:78:37:9a:77:c7:37:7e:7d:f8:98:96:6d:80:87: 5d:c8:45:cc:78:f3:51:d5:1e:65:c3:04:b4:0f:ff: ff:8a:e4:25:c5:4d:47:8d:86:d6:df:50:46:c9:8e: 10:28:96:d2:aa:06:3d:8d:a8:ab:ea:0b:bf:d9:1b: ae:48:54:d2:ea:3e:a7:a8:ba:a2:ff:84:56:07:41: 3c:31:45:2c:52:37:6e:42:91:94:8b:fc:5e:e0:b3: 1d:8b:41:9a:36:3c:0e:22:8a:5d:55:9d:3e:ee:07: ae:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0A:8B:98:0E:81:6C:BA:35:0D:EE:2A:D9:DB:54:2A:2C:39:50:E4 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:64:3f:36:04:b5:43:73:79:67:82:ab:92:eb:70:cc:c9:0a: d0:fd:1d:6b:69:31:c3:0b:80:7a:8e:ef:62:2d:0f:d8:3e:62: 12:53:f9:7c:7d:81:99:1b:25:38:6b:83:e5:7b:62:a6:a8:79: 20:e1:c7:b6:3e:cf:2f:21:c2:9a:f1:d5:a9:6f:d5:bc:1f:30: 85:42:71:a0:9c:71:14:e3:13:ba:a6:7b:10:06:d4:f4:e4:70: 9e:d0:54:b3:b4:2d:6a:eb:e2:ad:19:bd:52:5d:fc:29:30:ce: d3:fd:cb:70:90:7f:5e:9e:ec:45:a7:41:38:70:d0:4b:9a:1e: e6:77:62:46:4c:6f:24:ef:46:45:3d:8c:54:d6:cb:5e:b9:9a: ec:5c:95:c8:eb:ee:91:6b:8b:97:64:fc:b1:be:6f:93:8c:d1: 8a:28:fe:0d:d9:9b:27:95:3b:92:8a:38:fc:4f:25:b3:a3:de: 49:2f:3e:ea:e5:27:40:dc:a5:e4:ea:7f:e6:92:de:9b:79:2d: 0b:ed:66:fc:3b:74:93:90:54:a3:2e:93:fa:b6:9e:f3:2d:73: 1b:cb:ec:de:eb:73:51:00:13:13:dd:a6:40:38:9c:b3:c0:84: 49:16:30:e9:3f:e4:67:31:57:fb:1b:9b:da:1c:2a:68:6a:51: 0e:74:80:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjUwNjE1MDMwMzI5WhcNMjUwNjIyMDMwMzI5WjAYMRYwFAYD VQQDEw02ODRlMzgwMS1hMTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBkbVQj2i8Gkqed/mw2OsJbYXMUq3fPnuIUVkACpyzm3X2jETQx9wZZtwqxA l66gKwuZNsyK1+pNAWGCSS438OmWeMfdqiWyut3Gti2C5be5B3dcHWJwhazZUVOB sJ9v4S2M4JhrLzJd55Lwhpme4HPHJj7nFmKaOTrJKovUIosXJzg7bMD15k/5EOb8 BirPUuQtID97eDead8c3fn34mJZtgIddyEXMePNR1R5lwwS0D///iuQlxU1HjYbW 31BGyY4QKJbSqgY9jair6gu/2RuuSFTS6j6nqLqi/4RWB0E8MUUsUjduQpGUi/xe 4LMdi0GaNjwOIopdVZ0+7geuEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgKi5gO gWy6NQ3uKtnbVCosOVDkMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwZD82BLVDc3lngquS63DMyQrQ/R1raTHDC4B6ju9iLQ/YPmISU/l8 fYGZGyU4a4Ple2KmqHkg4ce2Ps8vIcKa8dWpb9W8HzCFQnGgnHEU4xO6pnsQBtT0 5HCe0FSztC1q6+KtGb1SXfwpMM7T/ctwkH9enuxFp0E4cNBLmh7md2JGTG8k70ZF PYxU1steuZrsXJXI6+6Ra4uXZPyxvm+TjNGKKP4N2ZsnlTuSijj8TyWzo95JLz7q 5SdA3KXk6n/mkt6beS0L7Wb8O3STkFSjLpP6tp7zLXMby+ze63NRABMT3aZAOJyz wIRJFjDpP+RnMVf7G5vaHCpoalEOdIBo -----END CERTIFICATE-----Generated at Sun Jun 15 08:28:49 2025 by rpki-client