$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: j0YsAPK4bnr459aXrgACynz7ITkWRr55FysU6gw1u28= Subject key identifier: 0A:A9:BA:8B:4D:38:4E:2C:80:DB:72:70:B4:B5:73:91:6B:DC:79:BB Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0295 Signing time: Mon 02 Mar 2026 02:20:49 +0000 Manifest this update: Mon 02 Mar 2026 02:20:48 +0000 Manifest next update: Mon 09 Mar 2026 02:20:48 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: fFN+bgZ+3wtZ1uB9V0jMZm8nZ6FVhD+tBRbp2f5ub/U=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: d181Z1DYLcItp5l9IsZ1mcEBRFCLJxml8DnOv1hi/n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Mar 2 02:20:48 2026 GMT Not After : Mar 9 02:20:48 2026 GMT Subject: CN=69a4f401-1cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b5:a4:a9:cc:6d:56:b8:a7:b4:f3:5f:51:3f: 85:77:fa:a6:a1:81:8b:e2:1e:1a:90:34:1f:ad:9b: 2e:04:7d:4d:b9:91:08:4d:d2:03:96:f4:0e:57:b0: bc:c0:64:3e:3a:6b:1a:18:c6:12:fa:9e:3b:a7:5d: 84:93:fe:20:a2:88:a7:ef:05:16:06:2a:9a:63:fb: 34:4f:13:1b:3d:60:97:d9:95:7b:ff:0a:74:2e:26: 62:fb:46:ba:57:86:f8:f2:0e:14:b9:4c:b5:23:e3: 83:70:8a:86:95:93:fe:5c:29:6c:a9:9f:94:42:da: 25:d8:a3:ff:66:1d:e1:1d:6a:94:6b:5d:be:72:42: 17:2b:23:db:d6:b6:4b:d8:9f:1a:90:33:1d:47:3a: 82:84:08:38:6e:f2:60:90:41:01:94:5a:66:dd:a2: 09:48:89:dd:a2:ad:9e:05:82:4a:d3:0f:56:3b:03: 38:a1:59:9c:fe:0e:d4:1c:3b:1e:68:49:0f:ac:65: fd:ee:49:c5:60:f4:97:48:1e:f4:36:2c:57:c7:3a: 31:04:f8:75:cc:96:2b:0a:6b:d8:a3:fb:4e:3e:d3: 69:2c:0c:7c:fb:90:4a:23:72:a3:dd:0f:1a:2f:e5: d4:bd:09:29:12:6b:d3:dd:56:d4:00:85:59:95:8e: d3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A9:BA:8B:4D:38:4E:2C:80:DB:72:70:B4:B5:73:91:6B:DC:79:BB X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:20:ed:41:c4:3c:45:bd:ec:0c:ee:18:bb:fd:f2:29:9e:14: 28:7b:72:6a:5f:68:a6:2b:b8:12:04:7b:e0:a9:d7:ca:0d:a3: 5f:06:0f:ad:dd:85:01:69:84:14:80:6c:f4:ee:4a:c2:5d:6d: 73:d4:0d:d8:6f:c3:a3:a0:51:37:72:6e:19:93:93:b0:8a:f1: 43:8d:e1:74:d6:75:e1:fe:65:0c:c3:37:01:c2:58:82:65:d4: f7:aa:1c:28:55:06:3c:fa:ce:ed:e9:d1:cc:df:66:75:fa:8d: 50:e2:44:f4:b9:ff:14:64:e2:a8:5b:5b:cd:c1:3f:ee:71:77: 15:7b:f1:7a:3f:a8:06:8f:dc:94:92:e7:54:3a:9d:e0:65:7c: 10:62:7d:84:7d:6e:62:4a:e5:51:40:3a:be:42:cb:f1:53:b1: 4b:06:e8:cc:c0:1b:b4:cb:72:a6:4e:0c:63:e3:19:dd:07:2b: 9f:86:77:39:15:78:82:e1:15:e4:93:88:14:d7:66:bb:ef:b8: 45:3f:9c:c7:e5:ba:e3:ff:c3:56:a7:33:90:57:c2:bf:50:74: b3:f2:c2:90:f3:f7:e3:c7:37:87:b1:39:37:c4:f3:0b:f3:3e: fc:c3:72:19:f8:73:56:55:6e:60:98:e7:16:78:8b:bd:50:85: 6a:3c:b5:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjYwMzAyMDIyMDQ4WhcNMjYwMzA5MDIyMDQ4WjAYMRYwFAYD VQQDEw02OWE0ZjQwMS0xY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbWkqcxtVrintPNfUT+Fd/qmoYGL4h4akDQfrZsuBH1NuZEITdIDlvQOV7C8 wGQ+OmsaGMYS+p47p12Ek/4gooin7wUWBiqaY/s0TxMbPWCX2ZV7/wp0LiZi+0a6 V4b48g4UuUy1I+ODcIqGlZP+XClsqZ+UQtol2KP/Zh3hHWqUa12+ckIXKyPb1rZL 2J8akDMdRzqChAg4bvJgkEEBlFpm3aIJSIndoq2eBYJK0w9WOwM4oVmc/g7UHDse aEkPrGX97knFYPSXSB70NixXxzoxBPh1zJYrCmvYo/tOPtNpLAx8+5BKI3Kj3Q8a L+XUvQkpEmvT3VbUAIVZlY7TjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAqpuotN OE4sgNtycLS1c5Fr3Hm7MB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMCDtQcQ8Rb3sDO4Yu/3yKZ4UKHtyal9opiu4EgR74KnXyg2jXwYPrd2FAWmE FIBs9O5Kwl1tc9QN2G/Do6BRN3JuGZOTsIrxQ43hdNZ14f5lDMM3AcJYgmXU96oc KFUGPPrO7enRzN9mdfqNUOJE9Ln/FGTiqFtbzcE/7nF3FXvxej+oBo/clJLnVDqd 4GV8EGJ9hH1uYkrlUUA6vkLL8VOxSwbozMAbtMtypk4MY+MZ3Qcrn4Z3ORV4guEV 5JOIFNdmu++4RT+cx+W64//DVqczkFfCv1B0s/LCkPP348c3h7E5N8TzC/M+/MNy GfhzVlVuYJjnFniLvVCFajy1mA== -----END CERTIFICATE-----Generated at Mon Mar 2 12:24:40 2026 by rpki-client