$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: gukcKFAfwi54o3AoWV5z6GuO8ewKcXXDRXn8q7W0RFo= Subject key identifier: 31:9F:C7:D6:ED:FC:8D:A6:84:FC:23:CB:CC:43:86:D5:60:ED:83:E7 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0209 Signing time: Fri 13 Jun 2025 01:34:39 +0000 Manifest this update: Fri 13 Jun 2025 01:34:39 +0000 Manifest next update: Fri 20 Jun 2025 01:34:39 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: 3SRtQlSQ6rh/3JRJQGUqyqTvZnVkDJI7NCnSuFxwSQI=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Jun 13 01:34:39 2025 GMT Not After : Jun 20 01:34:39 2025 GMT Subject: CN=684b802f-a3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:71:ef:eb:0b:c4:d6:4e:44:d5:df:45:a7:c5: b0:9f:16:6a:1a:c3:95:cf:60:75:89:c1:b8:10:80: 0f:31:42:6a:f6:11:26:76:71:f0:37:d7:9b:e7:42: 8f:a5:99:48:4e:ff:3b:0d:15:63:ea:a0:7c:a9:d0: d4:71:3a:8d:eb:4c:83:a1:ce:9a:63:17:07:12:33: 17:0b:c2:e1:3b:cf:0e:dd:cc:77:5d:2d:de:8b:1f: 95:05:a2:7c:d0:12:af:9f:a6:82:3a:98:af:26:c3: 01:bf:14:62:23:aa:e9:f6:59:cb:e2:65:74:56:b6: dd:97:d9:f2:4f:63:34:83:27:7e:a2:e8:65:f0:31: c5:58:d6:fc:33:83:e5:8a:94:69:d5:c5:f2:da:bc: 44:eb:d5:7e:5d:62:97:60:3a:13:55:35:07:82:a3: 68:f3:7f:7a:75:93:af:f8:61:7d:ec:ed:06:6e:59: 9b:87:36:4c:a6:e3:68:5e:48:7f:9a:1d:59:3d:ce: b6:d6:09:b7:7c:f7:7f:4c:1a:a2:71:2b:6d:0c:b8: b1:19:ce:60:95:b1:8a:af:5d:ba:b9:f9:8d:cf:2a: 6a:b9:d4:f0:d3:1e:b2:99:0c:33:77:81:3f:77:0d: 3f:c6:65:06:9c:17:36:d9:2f:56:56:93:9d:bd:86: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9F:C7:D6:ED:FC:8D:A6:84:FC:23:CB:CC:43:86:D5:60:ED:83:E7 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4f:dc:e2:bd:45:10:63:02:62:60:2e:73:8e:22:82:a6:f2: fa:48:70:c5:e8:db:09:9c:41:98:da:46:a3:28:ff:90:6c:0e: 7f:b8:fa:2f:2c:7f:c4:c3:7d:33:54:77:e1:b8:2a:9a:57:c7: 25:80:86:2d:1e:a7:32:09:c6:09:f6:be:e2:8c:a4:d3:ff:99: fa:50:da:b7:7a:94:46:32:bf:9b:31:f8:b1:91:74:d9:39:5a: 3a:aa:e3:b0:4d:9e:8e:7f:be:b7:74:67:5f:df:69:6b:0d:39: 24:03:46:4a:87:96:aa:b5:72:af:db:ec:33:69:2c:55:29:f1: 30:b3:5a:40:02:cb:2b:d4:73:fd:e5:ba:d5:ab:22:ec:40:e6: f1:8d:9e:52:66:a9:cf:2e:7e:a7:c9:5f:72:4a:da:21:e4:91: c8:c6:2e:55:b3:b6:ee:f2:86:50:3e:e0:8e:d0:dc:02:08:70: 41:9a:7a:96:d6:76:0d:b6:58:3f:87:2b:d3:82:3b:88:28:52: 44:7c:d4:9a:49:98:99:90:f7:8a:7b:9c:37:bc:a7:88:f5:69: e2:4a:f7:0d:bc:63:73:31:89:24:49:2d:fc:7e:31:4d:2d:02: 3a:5e:b4:13:9a:79:34:6c:4a:49:4b:8d:75:61:41:e0:07:32: 3e:bd:49:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwNjEzMDEzNDM5WhcNMjUwNjIwMDEzNDM5WjAYMRYwFAYD VQQDEw02ODRiODAyZi1hM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nHv6wvE1k5E1d9Fp8WwnxZqGsOVz2B1icG4EIAPMUJq9hEmdnHwN9eb50KP pZlITv87DRVj6qB8qdDUcTqN60yDoc6aYxcHEjMXC8LhO88O3cx3XS3eix+VBaJ8 0BKvn6aCOpivJsMBvxRiI6rp9lnL4mV0Vrbdl9nyT2M0gyd+ouhl8DHFWNb8M4Pl ipRp1cXy2rxE69V+XWKXYDoTVTUHgqNo8396dZOv+GF97O0GblmbhzZMpuNoXkh/ mh1ZPc621gm3fPd/TBqicSttDLixGc5glbGKr126ufmNzypqudTw0x6ymQwzd4E/ dw0/xmUGnBc22S9WVpOdvYYd3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGfx9bt /I2mhPwjy8xDhtVg7YPnMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMT9zivUUQYwJiYC5zjiKCpvL6SHDF6NsJnEGY2kajKP+QbA5/uPov LH/Ew30zVHfhuCqaV8clgIYtHqcyCcYJ9r7ijKTT/5n6UNq3epRGMr+bMfixkXTZ OVo6quOwTZ6Of763dGdf32lrDTkkA0ZKh5aqtXKv2+wzaSxVKfEws1pAAssr1HP9 5brVqyLsQObxjZ5SZqnPLn6nyV9yStoh5JHIxi5Vs7bu8oZQPuCO0NwCCHBBmnqW 1nYNtlg/hyvTgjuIKFJEfNSaSZiZkPeKe5w3vKeI9WniSvcNvGNzMYkkSS38fjFN LQI6XrQTmnk0bEpJS411YUHgBzI+vUmn -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:28 2025 by rpki-client