$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: sKBdEKv+aaAJ97lm87uin9Bq1ccMWOYfdbOm1nPc/Zo= Subject key identifier: 01:90:1C:BB:8A:54:F5:B0:6E:45:45:8F:36:89:05:24:CE:D7:09:C2 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: 98 Signing time: Thu 19 Jun 2025 05:41:51 +0000 Manifest this update: Thu 19 Jun 2025 05:41:50 +0000 Manifest next update: Thu 26 Jun 2025 05:41:50 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: i/C2Fa5udxMJQdWiqZ8YwRYA/VwhjOj9aWFNLnDg7kE=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Jun 19 05:41:50 2025 GMT Not After : Jun 26 05:41:50 2025 GMT Subject: CN=6853a31f-8439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:47:e1:e8:a5:4a:67:d9:e8:63:da:aa:14:0b: 40:c7:84:22:08:74:07:4f:b9:2c:65:84:c0:b2:07: 02:d5:69:a8:f7:e8:7a:eb:0e:9e:b4:0c:c7:ff:1f: 3c:41:fd:a1:6d:36:f3:5e:08:62:90:5f:56:18:eb: 0e:77:8f:34:61:5d:77:dc:3c:b6:f7:1b:b2:50:74: 31:aa:7a:ca:74:1b:b0:bd:6d:e0:9a:fd:a4:d8:f8: bd:19:cb:bf:62:24:5c:b4:80:d5:4f:7b:cf:02:73: bd:07:00:33:24:24:12:11:ce:f7:07:7c:05:f4:f9: 69:27:e6:7b:c3:26:f0:bb:f9:88:3e:ad:9b:0c:ba: ee:cf:6f:d1:4f:0a:ff:ea:f6:c5:90:ec:63:6c:8f: e6:c8:e0:12:d9:82:42:1d:ba:32:ed:46:fa:26:b3: 10:f7:f3:7b:b6:81:ca:15:35:2f:99:4b:8c:13:02: 21:3f:2c:c3:31:22:a5:71:80:45:c0:f7:b0:d0:a8: 94:f6:04:7f:ce:85:d0:8b:e3:14:cf:af:1b:bd:f1: da:cc:98:69:83:cf:83:12:78:fc:47:d7:d7:64:99: 0b:ca:75:8d:0d:ef:cb:aa:15:b1:62:e4:f6:3c:52: e3:62:87:03:f2:06:37:e9:ef:5f:10:69:ec:b7:73: cc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:90:1C:BB:8A:54:F5:B0:6E:45:45:8F:36:89:05:24:CE:D7:09:C2 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4e:3e:82:59:3d:97:d2:2a:83:7d:36:26:5c:9b:c3:2a:3d: 44:2f:18:62:68:6b:b6:d9:96:82:00:58:6c:30:86:62:48:77: 05:4e:a2:fb:01:29:ed:1d:9d:70:55:64:93:b2:ae:2c:fc:bc: cc:c0:0c:3b:59:c3:59:29:ae:d8:ab:07:d4:bb:ab:64:ed:a4: e4:b8:92:c8:0a:c0:9e:02:3d:34:01:9e:cf:38:27:eb:e4:2e: 2e:63:1a:3a:2f:ac:84:eb:62:bb:c6:d5:df:d5:2b:e1:0b:4f: 28:bf:cc:95:30:b6:e1:ff:1c:05:eb:45:fa:5f:d4:d3:9c:76: 1a:51:36:30:f9:fe:74:cb:91:94:d1:7c:13:8f:52:51:f2:bd: 3a:ec:79:11:8f:cb:e1:7b:1a:0d:ff:b4:3d:6e:cf:5b:56:4b: db:60:3f:31:c5:b9:9d:2f:7f:06:cd:fe:0c:bc:ed:63:b0:11: 1e:dc:9a:5d:25:4e:a1:39:f5:59:52:2b:ce:39:af:6d:12:21: eb:28:fb:1f:7a:b5:55:ea:37:33:87:0c:8b:16:4e:2b:26:d8: c4:fb:52:4f:15:6e:ad:f0:e7:80:c4:1c:e4:7c:fc:2a:e4:8d: f0:9f:7f:91:bc:33:aa:f2:2d:4d:1c:46:7b:bc:d0:c1:dc:23: da:3b:cb:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERCN0UxMTAvBgNVBAUTKDAyREExMzI3RjUyQzQwMjNBMzgyMUFDODc4NTBDOTE3 RDhFODM1MjcwHhcNMjUwNjE5MDU0MTUwWhcNMjUwNjI2MDU0MTUwWjAYMRYwFAYD VQQDEw02ODUzYTMxZi04NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kfh6KVKZ9noY9qqFAtAx4QiCHQHT7ksZYTAsgcC1Wmo9+h66w6etAzH/x88 Qf2hbTbzXghikF9WGOsOd480YV133Dy29xuyUHQxqnrKdBuwvW3gmv2k2Pi9Gcu/ YiRctIDVT3vPAnO9BwAzJCQSEc73B3wF9PlpJ+Z7wybwu/mIPq2bDLruz2/RTwr/ 6vbFkOxjbI/myOAS2YJCHboy7Ub6JrMQ9/N7toHKFTUvmUuMEwIhPyzDMSKlcYBF wPew0KiU9gR/zoXQi+MUz68bvfHazJhpg8+DEnj8R9fXZJkLynWNDe/LqhWxYuT2 PFLjYocD8gY36e9fEGnst3PMiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGQHLuK VPWwbkVFjzaJBSTO1wnCMB8GA1UdIwQYMBaAFALaEyf1LEAjo4IayHhQyRfY6DUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REI3RS85QzNGRUNEQzY0 REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FDT2pnaHJJZUZESkY5am9O U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REI3RS85QzNGRUNEQzY0REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FD T2pnaHJJZUZESkY5am9OU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFTj6CWT2X0iqDfTYmXJvDKj1ELxhiaGu22ZaCAFhsMIZiSHcFTqL7 ASntHZ1wVWSTsq4s/LzMwAw7WcNZKa7YqwfUu6tk7aTkuJLICsCeAj00AZ7POCfr 5C4uYxo6L6yE62K7xtXf1SvhC08ov8yVMLbh/xwF60X6X9TTnHYaUTYw+f50y5GU 0XwTj1JR8r067HkRj8vhexoN/7Q9bs9bVkvbYD8xxbmdL38Gzf4MvO1jsBEe3Jpd JU6hOfVZUivOOa9tEiHrKPsferVV6jczhwyLFk4rJtjE+1JPFW6t8OeAxBzkfPwq 5I3wn3+RvDOq8i1NHEZ7vNDB3CPaO8vW -----END CERTIFICATE-----Generated at Thu Jun 19 11:40:41 2025 by rpki-client