$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: N3PjguCEy1z9sd+/5Jwu3GJFatBKfG/GAdBoGVnHn0U= Subject key identifier: D0:4F:1C:B9:0A:66:91:F5:FA:F9:58:3A:B6:72:3E:3F:F8:B9:25:D3 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: 7D Signing time: Fri 25 Apr 2025 05:41:16 +0000 Manifest this update: Fri 25 Apr 2025 05:41:15 +0000 Manifest next update: Fri 02 May 2025 05:41:15 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: EXA7fN8yVV8xh6vUEhGL32uDJEOE4Fgou/FEAx8sIlM=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Apr 25 05:41:15 2025 GMT Not After : May 2 05:41:15 2025 GMT Subject: CN=680b207b-b85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8a:59:78:58:e4:f3:3f:74:8c:78:90:fa:32: 48:cb:1a:97:18:67:d3:91:93:cc:b0:e7:46:86:ad: c9:6e:ff:bb:c6:35:89:e0:80:7b:1c:73:51:30:77: 5b:d9:4c:63:b5:a6:e8:c2:55:85:83:5f:bf:a5:50: ff:15:06:fe:75:34:8d:6d:f0:a5:be:13:d2:98:b9: 82:dc:2d:f2:e5:62:fa:f5:74:48:08:2a:0a:b6:1e: 6c:18:da:f8:bc:7d:cf:9c:7c:44:37:4a:ac:e6:29: d5:27:ec:52:b5:19:80:db:45:ad:e5:cb:7f:68:d3: 7b:31:d1:0e:12:2d:3c:da:09:22:57:7d:aa:27:e2: 98:b1:86:fe:52:a0:64:0c:ae:ff:3c:e8:7e:04:9d: 10:c0:0e:5c:1f:9e:a0:50:ea:a1:6b:83:56:2b:0a: 80:d4:5a:29:98:8f:19:d2:5e:51:33:fa:77:e1:86: 83:7a:7d:05:16:cf:21:ec:0a:e3:9a:d5:23:98:cb: f7:af:df:30:1a:94:f8:1b:a8:c0:9f:9d:60:65:fc: 65:10:9c:ac:ff:d3:35:fb:89:b3:97:4a:57:29:3c: 40:fa:5c:51:c4:2a:4d:ab:ed:53:89:92:a4:08:26: 3e:7e:db:85:44:01:b9:0c:e5:d9:4b:9e:db:c8:82: 48:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4F:1C:B9:0A:66:91:F5:FA:F9:58:3A:B6:72:3E:3F:F8:B9:25:D3 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:58:0a:99:44:72:60:a1:9c:bd:b7:62:d5:ea:fd:50:7a:6d: 25:ec:d6:94:27:55:9f:cc:7e:d7:32:af:05:81:46:6c:4f:53: 59:96:80:81:25:c3:c9:df:5b:98:b2:c6:2e:db:6d:f6:68:a2: ab:94:f8:c2:39:1d:da:58:31:c3:4e:ec:02:dc:80:ab:0e:7e: bc:78:50:73:56:7a:9c:a2:98:41:0f:4d:a7:70:81:2a:68:22: 01:41:13:50:ce:0b:03:0b:61:5d:49:56:35:ad:11:0a:af:3a: 48:f6:f9:37:be:2a:ac:89:5b:d8:eb:c2:6f:c8:46:c0:cf:d6: 40:7b:0a:45:fc:5a:44:83:a9:1f:9c:9f:2f:c8:73:ee:87:42: 80:aa:a5:81:57:98:f4:80:a0:9d:ec:08:58:d0:bf:e5:45:13: 6c:4a:0b:9b:d9:eb:e0:ef:17:f4:ac:ba:7f:5a:e4:ce:cb:ae: a4:4c:25:10:1d:7d:58:fc:c9:bf:c9:7c:14:ed:98:be:b1:e3: 5a:85:e7:a0:6c:48:c4:48:22:c7:b6:cc:a9:56:ed:67:24:8d: 1c:86:ef:b5:38:4b:c8:ba:29:ff:80:58:d2:03:4d:c3:97:f2: ae:59:dd:d4:f5:d5:ef:57:15:8e:3c:4b:dc:24:66:64:e6:56: 01:d0:cf:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REI3RTExMC8GA1UEBRMoMDJEQTEzMjdGNTJDNDAyM0EzODIxQUM4Nzg1MEM5MTdE OEU4MzUyNzAeFw0yNTA0MjUwNTQxMTVaFw0yNTA1MDIwNTQxMTVaMBgxFjAUBgNV BAMTDTY4MGIyMDdiLWI4NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6ill4WOTzP3SMeJD6MkjLGpcYZ9ORk8yw50aGrclu/7vGNYnggHscc1Ewd1vZ TGO1pujCVYWDX7+lUP8VBv51NI1t8KW+E9KYuYLcLfLlYvr1dEgIKgq2HmwY2vi8 fc+cfEQ3SqzmKdUn7FK1GYDbRa3ly39o03sx0Q4SLTzaCSJXfaon4pixhv5SoGQM rv886H4EnRDADlwfnqBQ6qFrg1YrCoDUWimYjxnSXlEz+nfhhoN6fQUWzyHsCuOa 1SOYy/ev3zAalPgbqMCfnWBl/GUQnKz/0zX7ibOXSlcpPED6XFHEKk2r7VOJkqQI Jj5+24VEAbkM5dlLntvIgkhzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0E8cuQpm kfX6+Vg6tnI+P/i5JdMwHwYDVR0jBBgwFoAUAtoTJ/UsQCOjghrIeFDJF9joNScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQjdFLzlDM0ZFQ0RDNjRE QzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05T Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQXRvVEpfVXNRQ09qZ2hySWVGREpGOWpvTlNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE QjdFLzlDM0ZFQ0RDNjREQzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNP amdockllRkRKRjlqb05TYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZYCplEcmChnL23YtXq/VB6bSXs1pQnVZ/MftcyrwWBRmxPU1mWgIEl w8nfW5iyxi7bbfZooquU+MI5HdpYMcNO7ALcgKsOfrx4UHNWepyimEEPTadwgSpo IgFBE1DOCwMLYV1JVjWtEQqvOkj2+Te+KqyJW9jrwm/IRsDP1kB7CkX8WkSDqR+c ny/Ic+6HQoCqpYFXmPSAoJ3sCFjQv+VFE2xKC5vZ6+DvF/Ssun9a5M7LrqRMJRAd fVj8yb/JfBTtmL6x41qF56BsSMRIIse2zKlW7WckjRyG77U4S8i6Kf+AWNIDTcOX 8q5Z3dT11e9XFY48S9wkZmTmVgHQz/M= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:26 2025 by rpki-client