$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: BIDAcDmQGXYZBC+ej85VKqquiO1Sds+gLTLHedsxlNA= Subject key identifier: 23:A8:50:57:5E:85:01:6D:5F:4D:5E:28:16:42:33:6E:39:4E:EC:EE Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0227 Signing time: Mon 11 Aug 2025 02:16:15 +0000 Manifest this update: Mon 11 Aug 2025 02:16:15 +0000 Manifest next update: Mon 18 Aug 2025 02:16:15 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: AXa+3MLsBKnDHzSvi/2q6frk817CmacFIU8U8LC/QuQ=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 02:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Aug 11 02:16:15 2025 GMT Not After : Aug 18 02:16:15 2025 GMT Subject: CN=6899526f-eff0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bb:4d:79:34:8d:ed:fe:43:48:e4:8d:d4:10: 8a:75:e8:94:eb:9a:89:b5:c6:de:82:26:0b:6e:0f: d4:29:d2:14:dc:1b:91:08:30:d3:68:19:f6:8c:59: b6:bb:0e:5b:57:48:1d:34:47:2c:8c:02:f6:0c:ba: 67:88:96:8d:21:fc:ef:a1:f4:d9:e4:6f:41:eb:87: e3:57:a1:d7:59:67:44:cc:63:a2:68:47:fa:3d:6c: 6b:a4:a8:f8:a1:62:92:a9:d7:51:9e:08:d8:65:9e: 28:fb:fd:ac:68:ac:c3:32:25:07:97:fc:8d:ea:a7: fe:a2:10:64:e8:f8:5d:10:91:50:b2:a8:9e:df:15: 99:c6:64:3d:c5:77:96:d4:09:df:5d:33:3a:e9:6d: 31:e2:32:4f:f8:19:d3:16:81:03:d7:c0:0d:de:76: 1c:fb:bf:00:46:2b:f8:3b:64:2f:e7:09:e4:9b:5d: 60:df:cb:5a:45:a8:a2:0b:72:29:b2:6b:90:5b:0d: a0:3e:f1:d3:10:94:4b:26:93:30:b3:94:cc:92:c9: 89:38:93:24:79:ca:38:40:a2:9f:9c:42:4c:35:62: b0:d5:87:53:b2:27:70:91:05:9f:41:bd:9d:60:9c: 7c:55:79:3a:f9:01:5b:15:32:8e:39:78:d0:f3:55: d9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A8:50:57:5E:85:01:6D:5F:4D:5E:28:16:42:33:6E:39:4E:EC:EE X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:68:ce:98:67:d6:f5:58:9b:95:ca:45:c4:35:8f:cc:b9:63: c8:32:2f:84:6a:86:ca:f3:84:fc:20:5e:d0:b1:59:a8:03:a3: b0:8c:5b:02:73:81:69:74:22:b4:25:46:da:fc:41:fc:f4:e8: 9e:c6:2f:e1:82:d1:d3:09:6c:d4:d8:64:3f:9c:61:51:6b:fb: 31:5a:21:45:13:06:16:2b:88:4d:5c:b7:9f:b5:46:27:23:d2: c1:11:b1:54:fe:c3:20:e3:ec:79:67:fe:68:ca:06:72:bf:6a: 9b:fd:4b:8b:a2:76:b0:1c:89:9b:73:89:b6:8f:e7:f2:fa:72: fd:c1:97:07:d1:ed:c7:b0:35:ae:36:43:0d:19:e3:c6:dd:c8: a4:e4:0c:1b:92:db:97:01:29:7a:d7:e6:43:42:8a:e7:77:b7: 67:71:41:07:0f:b7:21:20:03:bf:62:41:52:d3:bc:21:bf:b5: 96:74:26:8f:d0:e9:1b:56:bf:55:cf:9b:03:a5:02:4d:68:3d: 55:2f:32:d1:f5:63:fc:5a:9b:e1:c7:09:14:e6:50:d7:ac:61: 00:f9:b3:ca:eb:20:82:38:75:82:1e:c3:dc:d3:e4:5b:57:d8: de:d0:0d:ff:8d:6f:df:54:61:30:5b:c8:ff:53:94:47:f5:95: 6b:3b:8d:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwODExMDIxNjE1WhcNMjUwODE4MDIxNjE1WjAYMRYwFAYD VQQDEw02ODk5NTI2Zi1lZmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LtNeTSN7f5DSOSN1BCKdeiU65qJtcbegiYLbg/UKdIU3BuRCDDTaBn2jFm2 uw5bV0gdNEcsjAL2DLpniJaNIfzvofTZ5G9B64fjV6HXWWdEzGOiaEf6PWxrpKj4 oWKSqddRngjYZZ4o+/2saKzDMiUHl/yN6qf+ohBk6PhdEJFQsqie3xWZxmQ9xXeW 1AnfXTM66W0x4jJP+BnTFoED18AN3nYc+78ARiv4O2Qv5wnkm11g38taRaiiC3Ip smuQWw2gPvHTEJRLJpMws5TMksmJOJMkeco4QKKfnEJMNWKw1YdTsidwkQWfQb2d YJx8VXk6+QFbFTKOOXjQ81XZLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOoUFde hQFtX01eKBZCM245TuzuMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjaM6YZ9b1WJuVykXENY/MuWPIMi+EaobK84T8IF7QsVmoA6OwjFsC c4FpdCK0JUba/EH89Oiexi/hgtHTCWzU2GQ/nGFRa/sxWiFFEwYWK4hNXLeftUYn I9LBEbFU/sMg4+x5Z/5oygZyv2qb/UuLonawHImbc4m2j+fy+nL9wZcH0e3HsDWu NkMNGePG3cik5AwbktuXASl61+ZDQornd7dncUEHD7chIAO/YkFS07whv7WWdCaP 0OkbVr9Vz5sDpQJNaD1VLzLR9WP8WpvhxwkU5lDXrGEA+bPK6yCCOHWCHsPc0+Rb V9je0A3/jW/fVGEwW8j/U5RH9ZVrO40c -----END CERTIFICATE-----Generated at Tue Aug 12 13:55:11 2025 by rpki-client