$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: tBT0fpOQAKeecIbX0zS7+xB/Z+fvYcI6lRoj2+jMYT0= Subject key identifier: 32:F4:F3:AD:65:2B:49:28:7A:46:CE:B1:85:19:64:BA:33:3B:17:53 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 021D Signing time: Wed 23 Jul 2025 02:31:11 +0000 Manifest this update: Wed 23 Jul 2025 02:31:10 +0000 Manifest next update: Wed 30 Jul 2025 02:31:10 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: +YlmSoKkRI7gWTjqybOSZz5TXrFvL+qboqHG1nN+wP4=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Jul 23 02:31:10 2025 GMT Not After : Jul 30 02:31:10 2025 GMT Subject: CN=6880496e-05b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a3:bd:4f:be:b9:c2:95:28:53:38:4e:6e:ab: d5:61:97:e9:79:9c:23:8c:9b:4c:6c:0b:58:3a:44: 4c:cb:23:73:cf:0b:99:1f:de:cb:6e:cf:66:08:b2: b4:9a:b3:1b:7f:82:94:cb:88:97:95:95:ec:86:67: b1:ee:ba:20:ac:15:c1:96:4e:38:0b:75:5a:78:80: d7:1b:2d:fe:cd:a4:43:f2:19:60:c1:90:26:c6:1c: e9:21:d6:13:90:48:1f:09:fd:19:e5:63:41:99:a3: e9:62:a5:6b:54:2e:da:dd:e6:c4:96:dc:78:dc:93: 17:75:66:e8:40:33:cc:91:86:1c:4e:b2:bc:b2:0c: 1d:59:27:f1:93:ba:ab:c9:c7:5d:2a:3f:47:5e:71: 9c:e0:46:c2:ad:52:79:3f:38:2b:9d:64:0d:10:af: 6c:55:e1:a5:15:06:79:bc:2c:37:d4:6c:06:c5:19: ec:fa:ba:30:ce:c1:81:02:d7:b5:d1:61:56:9d:1d: bc:9e:61:02:ec:51:ed:34:7c:c2:38:1a:df:c5:36: c9:4c:47:d5:ed:08:b4:f0:b3:88:8a:d3:87:a1:6d: e0:02:db:9f:05:8b:16:7d:2d:34:4d:6d:a3:df:3c: f0:46:82:91:28:7f:41:00:9b:82:7e:2a:2c:3d:da: af:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F4:F3:AD:65:2B:49:28:7A:46:CE:B1:85:19:64:BA:33:3B:17:53 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d6:57:79:ee:90:f1:6e:4a:43:79:84:45:e1:0a:a5:cf:ba: 7c:c6:c0:78:74:68:0c:85:8b:04:16:45:7c:1a:b7:e8:5c:61: 48:bc:33:80:dd:3e:f4:bb:e2:00:70:e6:8c:f3:1c:25:fd:4a: 58:ba:f3:31:24:df:8b:31:c6:ea:69:3f:55:30:d0:c4:0f:23: 9c:6c:41:02:c4:3f:c9:21:29:15:14:52:24:86:f8:6e:dc:09: 86:f8:f9:73:47:5f:ea:f8:4b:2b:92:d8:9d:4f:f6:a4:6f:72: 8f:90:07:30:33:29:0c:13:dc:8e:79:26:df:6d:1c:fe:fd:98: b5:e0:14:5b:61:42:d1:96:88:fe:32:68:2d:87:14:6b:86:fb: 80:ac:c2:6c:4e:36:d3:6b:42:7c:90:90:31:b0:eb:96:87:7d: 70:b1:c0:9a:c0:44:ad:2a:ea:15:6f:9d:03:4e:a2:2c:f0:49: 90:ad:68:3a:e1:04:ef:97:b1:16:5e:8d:fd:0f:a7:1b:8d:12: f1:fa:f1:11:ea:3d:67:3b:59:e9:b1:fe:81:25:fe:38:19:bc: fc:75:e3:25:53:ac:31:1d:73:3f:f6:2f:b3:be:d4:65:7a:03: 62:b5:6c:5a:2f:54:e3:0c:2e:45:a8:b9:11:fe:2f:1d:d9:b5: 19:56:6f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwNzIzMDIzMTEwWhcNMjUwNzMwMDIzMTEwWjAYMRYwFAYD VQQDEw02ODgwNDk2ZS0wNWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6O9T765wpUoUzhObqvVYZfpeZwjjJtMbAtYOkRMyyNzzwuZH97Lbs9mCLK0 mrMbf4KUy4iXlZXshmex7rogrBXBlk44C3VaeIDXGy3+zaRD8hlgwZAmxhzpIdYT kEgfCf0Z5WNBmaPpYqVrVC7a3ebEltx43JMXdWboQDPMkYYcTrK8sgwdWSfxk7qr ycddKj9HXnGc4EbCrVJ5PzgrnWQNEK9sVeGlFQZ5vCw31GwGxRns+rowzsGBAte1 0WFWnR28nmEC7FHtNHzCOBrfxTbJTEfV7Qi08LOIitOHoW3gAtufBYsWfS00TW2j 3zzwRoKRKH9BAJuCfiosPdqvowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDL0861l K0koekbOsYUZZLozOxdTMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ1ld57pDxbkpDeYRF4Qqlz7p8xsB4dGgMhYsEFkV8GrfoXGFIvDOA 3T70u+IAcOaM8xwl/UpYuvMxJN+LMcbqaT9VMNDEDyOcbEECxD/JISkVFFIkhvhu 3AmG+PlzR1/q+EsrktidT/akb3KPkAcwMykME9yOeSbfbRz+/Zi14BRbYULRloj+ MmgthxRrhvuArMJsTjbTa0J8kJAxsOuWh31wscCawEStKuoVb50DTqIs8EmQrWg6 4QTvl7EWXo39D6cbjRLx+vER6j1nO1npsf6BJf44Gbz8deMlU6wxHXM/9i+zvtRl egNitWxaL1TjDC5FqLkR/i8d2bUZVm+0 -----END CERTIFICATE-----Generated at Wed Jul 23 12:21:48 2025 by rpki-client