$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: SDufJ1Xs0rnxO1zD/wzsr+YfWGxZQuS4N1lm11W81i4= Subject key identifier: 4F:87:1B:88:97:EC:50:57:B4:10:96:D4:E7:FC:26:8F:76:07:67:6D Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 01BE Signing time: Wed 05 Nov 2025 03:12:37 +0000 Manifest this update: Wed 05 Nov 2025 03:12:37 +0000 Manifest next update: Wed 12 Nov 2025 03:12:37 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: mynN+tCI6mLm+nOSAQlhuBQ0cOP81pdhuI1r8iNX7P0=) 2: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: WOumHbGuRSNgmsYtI00tvSXAxwcM6RyoYIB+0smW1tg=) 3: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: RFN9XfhuOWaOWLmVZsn6IOgv5uTZS/Q7mdXLAZI6MYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Nov 5 03:12:37 2025 GMT Not After : Nov 12 03:12:37 2025 GMT Subject: CN=690ac0a5-573c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1b:da:b9:ce:91:08:60:4b:b1:70:3e:58:ba: 88:51:85:fd:b1:dc:1a:2e:58:82:58:6c:fc:31:0d: ce:f9:18:b9:db:61:b8:eb:6d:5e:1d:cb:38:96:0d: c6:b4:50:f7:b6:7f:bc:87:65:bd:e3:a9:c2:dd:b8: 37:b6:62:e5:9a:69:1c:64:86:d3:12:27:1e:76:c5: a3:0e:c9:ca:18:d0:64:f0:62:63:02:b3:c0:55:a4: b0:5f:61:55:4d:d0:5b:b6:eb:92:4d:64:ff:3c:b4: f0:29:c9:ff:48:9b:72:8b:de:1c:ea:d5:e6:e5:48: c4:c7:3d:ef:43:81:06:d4:0f:d0:3c:e6:af:67:98: e1:06:df:00:d4:84:48:82:6e:1f:1a:75:36:72:0a: 5c:e4:67:5e:9d:b6:45:b5:36:d3:c6:57:da:7e:a4: 6b:c7:41:e9:be:c6:c5:87:5f:9f:d5:a7:6f:05:c3: 01:11:8a:6e:2e:08:40:e6:d9:f7:74:46:d2:ce:ad: fa:ec:43:f0:2c:f0:79:00:5a:58:ef:31:46:f0:fb: 69:1f:76:2d:97:47:ff:f3:94:ab:03:ce:47:3d:e9: dd:7b:2d:c3:57:11:57:05:e7:07:e0:35:1a:d0:44: fe:ba:b3:a3:1e:bb:c2:2e:4a:59:69:59:8e:fe:f3: 90:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:87:1B:88:97:EC:50:57:B4:10:96:D4:E7:FC:26:8F:76:07:67:6D X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:61:ae:6f:5c:29:ad:c8:67:70:2e:7e:e0:f3:49:f3:1c:5c: ee:14:c3:32:de:29:a9:95:81:7c:57:cf:1a:24:e4:ac:95:4f: 84:f4:37:be:5b:fb:9e:06:d3:ab:a3:41:a7:8f:ec:0a:83:2c: b3:30:d6:94:72:98:63:c5:7e:9b:d6:1a:fa:ca:e3:ee:64:3b: 84:d0:e3:ee:5f:fa:16:ce:9d:6d:b5:e7:c5:93:67:45:40:6d: d9:44:63:88:0b:7c:69:0a:44:ee:47:68:00:e1:92:fd:d9:9b: 9a:4d:e5:f1:19:31:1e:ce:68:ab:ae:2f:82:ce:60:cb:f4:d0: c8:e0:08:f7:8b:f7:c2:ac:7f:d1:a3:43:53:d2:09:05:f0:89: 1c:0d:f7:5d:96:67:a2:95:0d:3b:c2:52:b5:63:4b:79:0a:f9: 8f:09:24:ac:9a:30:4e:c6:bf:55:fa:bd:dd:40:17:0f:69:90: da:bc:85:51:c9:21:79:c2:f0:7e:1d:17:f8:45:98:4c:3d:ed: 2f:86:94:8b:a1:0c:cf:30:8b:e9:9a:b4:4d:30:02:f2:b1:25: a1:2d:72:bb:03:70:ca:8b:a4:31:23:a8:de:26:84:47:bd:50: f2:6b:41:e8:8b:b3:d7:21:dc:1c:ab:d1:2c:e5:be:2c:59:00: b0:76:eb:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjUxMTA1MDMxMjM3WhcNMjUxMTEyMDMxMjM3WjAYMRYwFAYD VQQDEw02OTBhYzBhNS01NzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBvauc6RCGBLsXA+WLqIUYX9sdwaLliCWGz8MQ3O+Ri522G4621eHcs4lg3G tFD3tn+8h2W946nC3bg3tmLlmmkcZIbTEicedsWjDsnKGNBk8GJjArPAVaSwX2FV TdBbtuuSTWT/PLTwKcn/SJtyi94c6tXm5UjExz3vQ4EG1A/QPOavZ5jhBt8A1IRI gm4fGnU2cgpc5GdenbZFtTbTxlfafqRrx0HpvsbFh1+f1advBcMBEYpuLghA5tn3 dEbSzq367EPwLPB5AFpY7zFG8PtpH3Ytl0f/85SrA85HPendey3DVxFXBecH4DUa 0ET+urOjHrvCLkpZaVmO/vOQcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+HG4iX 7FBXtBCW1Of8Jo92B2dtMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTYa5vXCmtyGdwLn7g80nzHFzuFMMy3implYF8V88aJOSslU+E9De+ W/ueBtOro0Gnj+wKgyyzMNaUcphjxX6b1hr6yuPuZDuE0OPuX/oWzp1ttefFk2dF QG3ZRGOIC3xpCkTuR2gA4ZL92ZuaTeXxGTEezmirri+CzmDL9NDI4Aj3i/fCrH/R o0NT0gkF8IkcDfddlmeilQ07wlK1Y0t5CvmPCSSsmjBOxr9V+r3dQBcPaZDavIVR ySF5wvB+HRf4RZhMPe0vhpSLoQzPMIvpmrRNMALysSWhLXK7A3DKi6QxI6jeJoRH vVDya0Hoi7PXIdwcq9Es5b4sWQCwdusM -----END CERTIFICATE-----Generated at Wed Nov 5 04:26:02 2025 by rpki-client