$ rpki-client -vvf rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft File: 0ATM-ubwekS9796TeAatucMyn_o.mft (raw, json) Hash identifier: fHz3V7GXdLLA1j0xXUzhoVYrmt+7XVGC7JLYyK5BMco= Subject key identifier: 21:0C:0B:98:D9:E4:C4:92:A4:6D:D9:72:4C:70:EE:02:E3:4A:1D:F4 Authority key identifier: D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA Certificate issuer: /CN=A91E116E/serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Certificate serial: 17BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft Manifest number: 17B1 Signing time: Thu 24 Apr 2025 16:35:56 +0000 Manifest this update: Thu 24 Apr 2025 16:35:55 +0000 Manifest next update: Thu 01 May 2025 16:35:55 +0000 Files and hashes: 1: 0ATM-ubwekS9796TeAatucMyn_o.crl (hash: 984FaIThy6o1DcyvmEboawPEzXRGIoJTIh/uxjV09xo=) 2: A1021498C53311E7B0B0744BC4F9AE02.roa (hash: Ns6MCGMpSR+zeyD0qeQ8GuU0GoV9G94RijEmcRmZDOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6077 (0x17bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E116E, serialNumber=D004CCFAE6F07A44BDEFDE937806ADB9C3329FFA Validity Not Before: Apr 24 16:35:55 2025 GMT Not After : May 1 16:35:55 2025 GMT Subject: CN=680a686c-263a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:00:3d:08:f5:61:f7:a2:ca:30:f9:97:1f: c3:5d:ef:48:67:c4:cd:57:a7:08:ee:93:a7:4d:cd: 7b:be:81:b7:b6:87:c8:89:9b:07:e3:7e:0a:1b:5e: 08:cb:ba:b1:8d:08:2d:cb:7c:c7:9a:f5:24:43:ba: d9:d2:20:f0:8f:f4:f5:30:28:31:47:0f:b1:19:9b: 6f:a6:44:5f:5a:79:b5:d7:7a:44:37:0f:df:8e:77: 16:06:3f:47:67:bf:64:f7:89:63:52:40:8e:2a:71: fc:25:ae:d7:72:24:38:cc:4c:35:32:e7:38:4f:2f: 1f:7b:b2:1b:58:b1:c9:5a:48:b5:a2:27:df:68:da: cc:06:0d:53:62:95:f1:e7:0b:ea:67:66:f7:3a:f0: 8d:27:65:01:35:ba:37:cd:86:a5:d1:0f:00:13:08: 6b:02:d1:3a:a8:cc:bf:d5:65:03:0b:ab:7e:d0:d8: 2e:0f:fa:47:88:02:35:2c:08:b3:c2:34:64:58:3d: 59:b0:f1:ed:60:c8:e8:cc:41:d4:60:67:66:bd:13: 60:6d:8d:eb:72:b9:72:14:5a:dc:b8:ce:1c:ed:30: 62:9e:b3:3a:db:f9:bc:89:fb:dd:ec:e0:bb:59:aa: 0a:11:d3:bd:de:4f:09:d9:c4:09:20:41:c7:26:1d: 4c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0C:0B:98:D9:E4:C4:92:A4:6D:D9:72:4C:70:EE:02:E3:4A:1D:F4 X509v3 Authority Key Identifier: keyid:D0:04:CC:FA:E6:F0:7A:44:BD:EF:DE:93:78:06:AD:B9:C3:32:9F:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ATM-ubwekS9796TeAatucMyn_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E116E/7456C75AC53211E7921E3E49C4F9AE02/0ATM-ubwekS9796TeAatucMyn_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3a:b1:38:fa:67:f2:c7:e7:9d:68:6f:4d:b3:ec:6d:1f:66: c1:9a:a2:4a:52:a0:10:e3:9e:51:e3:ae:a0:4a:58:2f:91:df: 39:1a:6c:ce:84:d8:a9:b2:83:d2:fe:07:4d:fa:34:24:b6:18: 7a:08:0f:50:07:d8:72:1e:36:01:2a:3e:f8:54:dd:b1:d1:98: 28:dd:83:23:76:0a:18:15:1d:b6:e7:e7:eb:42:9a:1f:8c:b8: 4e:79:8f:f8:be:41:44:56:50:eb:de:79:33:46:11:d2:65:2d: 1c:c5:89:b7:dd:88:29:bf:db:d7:0a:af:3e:7e:f4:9f:7b:57: bf:e2:7a:64:4e:a0:43:ef:79:45:4d:2e:d9:43:34:25:eb:a8: 46:af:0e:16:97:86:7b:e7:40:f0:c1:18:f7:64:6b:3c:d4:c4: 13:ec:7b:bf:db:92:e6:29:55:20:84:ed:b1:13:6e:31:c7:6c: f5:f3:30:55:bb:90:2d:43:58:dd:02:9a:d7:87:bf:c6:d2:cf: 3b:19:04:1c:19:69:5b:94:09:4b:57:72:e6:7c:c4:29:8b:ef: a7:62:44:99:a0:81:02:90:0c:47:11:e5:bf:25:3a:27:c6:c1: 2b:c9:c0:34:53:c1:e4:b8:37:8b:54:88:3d:08:51:99:a0:e2: 10:a3:50:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNkUxMTAvBgNVBAUTKEQwMDRDQ0ZBRTZGMDdBNDRCREVGREU5Mzc4MDZBREI5 QzMzMjlGRkEwHhcNMjUwNDI0MTYzNTU1WhcNMjUwNTAxMTYzNTU1WjAYMRYwFAYD VQQDEw02ODBhNjg2Yy0yNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+EAPQj1YfeiyjD5lx/DXe9IZ8TNV6cI7pOnTc17voG3tofIiZsH434KG14I y7qxjQgty3zHmvUkQ7rZ0iDwj/T1MCgxRw+xGZtvpkRfWnm113pENw/fjncWBj9H Z79k94ljUkCOKnH8Ja7XciQ4zEw1Muc4Ty8fe7IbWLHJWki1oiffaNrMBg1TYpXx 5wvqZ2b3OvCNJ2UBNbo3zYal0Q8AEwhrAtE6qMy/1WUDC6t+0NguD/pHiAI1LAiz wjRkWD1ZsPHtYMjozEHUYGdmvRNgbY3rcrlyFFrcuM4c7TBinrM62/m8ifvd7OC7 WaoKEdO93k8J2cQJIEHHJh1McwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEMC5jZ 5MSSpG3Zckxw7gLjSh30MB8GA1UdIwQYMBaAFNAEzPrm8HpEve/ek3gGrbnDMp/6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE2RS83NDU2Qzc1QUM1 MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2VrUzk3OTZUZUFhdHVjTXlu X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBVE0tdWJ3ZWtTOTc5NlRlQWF0dWNNeW5fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTE2RS83NDU2Qzc1QUM1MzIxMUU3OTIxRTNFNDlDNEY5QUUwMi8wQVRNLXVid2Vr Uzk3OTZUZUFhdHVjTXluX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWOrE4+mfyx+edaG9Ns+xtH2bBmqJKUqAQ455R466gSlgvkd85GmzO hNipsoPS/gdN+jQkthh6CA9QB9hyHjYBKj74VN2x0Zgo3YMjdgoYFR225+frQpof jLhOeY/4vkFEVlDr3nkzRhHSZS0cxYm33Ygpv9vXCq8+fvSfe1e/4npkTqBD73lF TS7ZQzQl66hGrw4Wl4Z750DwwRj3ZGs81MQT7Hu/25LmKVUghO2xE24xx2z18zBV u5AtQ1jdAprXh7/G0s87GQQcGWlblAlLV3LmfMQpi++nYkSZoIECkAxHEeW/JTon xsErycA0U8HkuDeLVIg9CFGZoOIQo1Bx -----END CERTIFICATE-----Generated at Sat Apr 26 12:26:44 2025 by rpki-client