$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: J3WN57EUxLcve08Fd5gDCX3nTNwOCTVC48yPcVR4R/s= Subject key identifier: F2:D0:B3:45:3E:C6:A7:B6:7C:02:62:D4:6C:A6:4E:BC:F0:DF:AE:C3 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 01E3 Signing time: Sat 29 Mar 2025 02:26:46 +0000 Manifest this update: Sat 29 Mar 2025 02:26:45 +0000 Manifest next update: Sat 05 Apr 2025 02:26:45 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: pD14xINiQ89I5PzEx3GiWTB3xOpvvAdonR23SOrBDcE=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67 Validity Not Before: Mar 29 02:26:45 2025 GMT Not After : Apr 5 02:26:45 2025 GMT Subject: CN=67e75a65-beb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:85:1c:9b:75:03:30:ef:6d:a2:12:2d:0a:ea: 1c:52:9b:4e:d0:e5:94:8e:f9:0d:8f:37:19:11:26: 7d:f8:ba:9a:a0:33:a5:d6:6f:a4:c8:c5:a1:dc:cf: 88:fd:8b:fc:96:e8:2b:0e:08:bb:dd:e5:ac:00:1d: 8f:66:2a:90:66:8c:b3:08:53:51:60:a5:8e:fe:be: c4:44:00:1d:fd:5f:6a:e7:df:22:c3:ac:55:8e:f8: 18:6b:59:a6:c8:34:e1:dd:d5:52:a7:d5:dc:d1:b0: 6d:f8:30:93:4b:8c:fb:69:a4:b3:4b:1d:87:fc:85: dd:3c:52:ba:6b:fe:cc:71:93:6b:15:e8:14:a6:e2: ce:79:de:86:f6:7f:45:7e:31:9c:7d:76:4d:3c:4b: 15:ef:6c:62:b6:54:e3:ae:cf:a4:c0:b0:34:d0:b0: 7e:9c:96:ad:7d:8d:2d:3e:6e:00:cd:e4:d8:30:f1: da:e1:1f:9e:89:2d:4f:3a:82:52:8b:1c:4c:31:ba: 42:84:43:05:4b:45:e5:07:ef:cd:d6:c9:90:7b:71: ad:d4:91:35:1e:44:35:d5:6b:ad:3b:e6:85:e3:73: 9a:5d:f6:bb:eb:f5:bf:d0:35:da:a6:93:85:03:98: c0:7e:cd:9f:25:d2:78:5a:68:14:35:8c:87:f6:eb: 24:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D0:B3:45:3E:C6:A7:B6:7C:02:62:D4:6C:A6:4E:BC:F0:DF:AE:C3 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e7:38:ae:9f:26:ee:d4:4a:43:1c:e5:43:42:03:fe:a5:5a: 50:90:4f:93:82:00:51:09:5d:01:a0:d4:a5:3f:52:1a:77:49: 78:06:56:a6:fc:40:dc:0c:13:86:81:17:84:68:f2:ae:5f:41: 14:c0:7f:9d:c1:35:d6:14:f1:44:d3:65:77:b0:7a:c0:e2:a6: 9b:75:56:0a:45:2d:73:a7:26:b3:d3:11:8d:d9:67:71:05:ca: cf:26:f6:ac:24:1b:b2:46:16:da:5c:5c:d4:de:21:91:bf:f9: 82:6b:4a:5d:a8:91:81:83:0b:5d:d8:69:87:92:30:af:4a:ce: f2:fb:f9:20:cf:ea:4f:a1:ea:da:6d:bc:93:be:8b:e4:dc:3b: 56:81:e9:42:c2:9f:4c:bf:76:a1:26:a7:e7:6b:a7:37:e0:00: ed:3b:de:a8:82:a9:23:5e:e5:5d:f7:05:43:54:4a:2c:c4:0c: 76:30:7f:e3:ee:46:21:a0:cf:ce:3c:4d:28:26:f9:3f:b5:5d: 17:2d:a5:fd:56:e2:42:d3:f0:8a:f3:98:75:f1:92:81:5f:f0: 1f:ea:a9:e6:61:ba:de:50:4b:d1:f8:7b:e5:6b:02:3c:25:ff: e6:d9:56:2e:aa:c4:d1:3d:0c:ab:3b:5a:62:1e:fa:1a:bf:cc: c5:03:98:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwMzI5MDIyNjQ1WhcNMjUwNDA1MDIyNjQ1WjAYMRYwFAYD VQQDEw02N2U3NWE2NS1iZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYUcm3UDMO9tohItCuocUptO0OWUjvkNjzcZESZ9+LqaoDOl1m+kyMWh3M+I /Yv8lugrDgi73eWsAB2PZiqQZoyzCFNRYKWO/r7ERAAd/V9q598iw6xVjvgYa1mm yDTh3dVSp9Xc0bBt+DCTS4z7aaSzSx2H/IXdPFK6a/7McZNrFegUpuLOed6G9n9F fjGcfXZNPEsV72xitlTjrs+kwLA00LB+nJatfY0tPm4AzeTYMPHa4R+eiS1POoJS ixxMMbpChEMFS0XlB+/N1smQe3Gt1JE1HkQ11WutO+aF43OaXfa76/W/0DXappOF A5jAfs2fJdJ4WmgUNYyH9usk0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLQs0U+ xqe2fAJi1GymTrzw367DMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ5ziunybu1EpDHOVDQgP+pVpQkE+TggBRCV0BoNSlP1Iad0l4Blam /EDcDBOGgReEaPKuX0EUwH+dwTXWFPFE02V3sHrA4qabdVYKRS1zpyaz0xGN2Wdx BcrPJvasJBuyRhbaXFzU3iGRv/mCa0pdqJGBgwtd2GmHkjCvSs7y+/kgz+pPoera bbyTvovk3DtWgelCwp9Mv3ahJqfna6c34ADtO96ogqkjXuVd9wVDVEosxAx2MH/j 7kYhoM/OPE0oJvk/tV0XLaX9VuJC0/CK85h18ZKBX/Af6qnmYbreUEvR+HvlawI8 Jf/m2VYuqsTRPQyrO1piHvoav8zFA5i+ -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:01 2025 by rpki-client