$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: 7Ob63UOoj9s1pZlHeb44Wr/3YElT/+tLIGSXhnlf2j4= Subject key identifier: 5F:60:D6:F0:10:EE:56:E5:5A:52:85:86:9F:18:4C:AD:B8:DA:CC:0A Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 026A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0258 Signing time: Wed 05 Nov 2025 01:55:14 +0000 Manifest this update: Wed 05 Nov 2025 01:55:13 +0000 Manifest next update: Wed 12 Nov 2025 01:55:13 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: mZk598xHxZ+bbd5wK7mqS6spnISVed390V/cDYSgqMI=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 04Cy+y4IVlv3nSRQiE3T4udS3Y09bNADoSP454aG6f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 618 (0x26a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Nov 5 01:55:13 2025 GMT Not After : Nov 12 01:55:13 2025 GMT Subject: CN=690aae82-b160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:60:28:cc:b3:1f:8b:53:da:54:e2:da:0b:eb: 44:fa:ab:03:00:30:88:d5:83:22:73:3b:7b:a8:d8: ad:05:5d:da:f3:a5:d3:23:06:01:f3:6d:a9:2a:33: 0a:df:64:3e:a7:2c:95:bf:a1:0c:a8:ce:f1:0a:49: 68:bc:12:e1:00:f5:11:e9:11:56:97:cc:e2:e0:16: a7:4d:a1:f0:63:9d:91:bc:19:bc:70:40:69:6d:e6: b6:91:7c:04:e5:df:13:87:73:5d:14:39:05:7c:15: 49:98:40:a4:ac:ed:bb:0f:80:48:c2:11:6a:69:35: 0f:88:99:9d:a0:75:7e:bd:65:9f:a6:d4:c4:40:b9: 53:bd:96:87:de:bc:71:79:42:58:6c:0f:3d:b9:f4: 23:09:2a:1e:83:36:35:b5:c1:d3:63:bf:21:ea:46: a3:95:8a:f8:70:c3:60:7b:85:fd:60:19:af:49:2d: 0a:75:70:09:bc:3b:ee:6f:75:9a:82:f2:5f:dc:83: b3:d4:88:7d:2c:54:7c:02:0b:8d:e4:c6:5d:66:fc: 0f:5a:d9:e2:ac:cd:24:8a:bc:74:6c:ba:02:69:55: 09:7e:76:7f:50:16:41:0a:c1:88:78:97:57:93:6b: 79:3a:b7:ab:df:fc:dc:86:2f:f6:55:4c:1e:5e:3c: 25:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:60:D6:F0:10:EE:56:E5:5A:52:85:86:9F:18:4C:AD:B8:DA:CC:0A X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:3d:1d:03:c5:3a:33:ba:e9:b1:58:45:fe:99:ed:e2:dd:5c: 93:00:13:aa:75:13:88:52:79:10:2e:74:75:a0:f3:80:20:de: 8d:33:7e:e7:c9:01:43:1a:8b:b7:f4:bb:34:39:f8:a3:e0:68: d8:ba:31:f8:c9:31:6e:69:df:48:2c:77:98:07:e1:fe:5c:d8: 28:20:0c:c4:d9:be:ce:ac:58:af:ff:35:1d:c0:55:e2:ed:6a: 14:ce:b1:51:36:c1:ff:62:81:af:ed:30:ba:c6:de:ea:ea:9a: e4:c7:99:ff:3d:ab:65:59:c6:4d:56:9f:ea:57:99:c8:ca:44: a7:e1:6f:e1:cd:08:75:45:b5:a9:4b:32:ce:33:db:eb:4f:b6: 9e:00:4b:c6:f8:db:dd:19:30:64:91:bc:32:5a:7e:64:fe:89: 02:3d:6a:6f:b4:29:c0:af:a6:22:01:b4:c0:ea:79:92:88:27: 45:a9:af:fd:98:c6:9a:40:87:7b:76:a1:03:7e:af:f3:26:9e: a4:7a:f5:d1:de:0f:4b:52:64:e9:02:00:86:9a:a5:47:bb:2b: 20:e3:4a:60:41:da:ea:ff:73:1a:27:32:7a:e8:87:51:44:92: d2:85:59:2e:41:4a:2d:96:88:eb:4b:ea:99:06:6b:b3:9b:c8: 56:16:8c:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUxMTA1MDE1NTEzWhcNMjUxMTEyMDE1NTEzWjAYMRYwFAYD VQQDEw02OTBhYWU4Mi1iMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWAozLMfi1PaVOLaC+tE+qsDADCI1YMiczt7qNitBV3a86XTIwYB822pKjMK 32Q+pyyVv6EMqM7xCklovBLhAPUR6RFWl8zi4BanTaHwY52RvBm8cEBpbea2kXwE 5d8Th3NdFDkFfBVJmECkrO27D4BIwhFqaTUPiJmdoHV+vWWfptTEQLlTvZaH3rxx eUJYbA89ufQjCSoegzY1tcHTY78h6kajlYr4cMNge4X9YBmvSS0KdXAJvDvub3Wa gvJf3IOz1Ih9LFR8AguN5MZdZvwPWtnirM0kirx0bLoCaVUJfnZ/UBZBCsGIeJdX k2t5Orer3/zchi/2VUweXjwlpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9g1vAQ 7lblWlKFhp8YTK242swKMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPPR0DxTozuumxWEX+me3i3VyTABOqdROIUnkQLnR1oPOAIN6NM37n yQFDGou39Ls0Ofij4GjYujH4yTFuad9ILHeYB+H+XNgoIAzE2b7OrFiv/zUdwFXi 7WoUzrFRNsH/YoGv7TC6xt7q6prkx5n/PatlWcZNVp/qV5nIykSn4W/hzQh1RbWp SzLOM9vrT7aeAEvG+NvdGTBkkbwyWn5k/okCPWpvtCnAr6YiAbTA6nmSiCdFqa/9 mMaaQId7dqEDfq/zJp6kevXR3g9LUmTpAgCGmqVHuysg40pgQdrq/3MaJzJ66IdR RJLShVkuQUotlojrS+qZBmuzm8hWFow+ -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:13 2025 by rpki-client