$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: OgnvYl00zoRXCT4s9MlRCD7o6l0XpzjVXdUYTG1cH78= Subject key identifier: BF:71:76:8D:C0:01:F7:C8:B8:33:70:76:6D:60:11:0E:99:85:D7:80 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0236 Signing time: Tue 09 Sep 2025 02:03:59 +0000 Manifest this update: Tue 09 Sep 2025 02:03:58 +0000 Manifest next update: Tue 16 Sep 2025 02:03:58 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: k3usAFSArjzESYnsYHXEvcpanoMIbw+UiBwXxLBc/z4=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Sep 9 02:03:58 2025 GMT Not After : Sep 16 02:03:58 2025 GMT Subject: CN=68bf8b0e-fd0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7c:79:95:76:bf:d1:17:58:47:0a:b4:5e:ed: 36:61:84:50:64:cc:2a:c9:9c:2f:0d:c7:58:0a:39: 84:e4:dd:7b:d0:29:17:5e:3b:ba:89:da:a5:ea:be: c0:7f:26:43:87:36:3d:52:91:7b:b9:45:d0:a3:e6: de:3f:c6:d4:f4:56:11:36:a6:f8:c3:5e:3f:b4:32: e2:bf:cb:30:2c:cd:75:24:cd:99:41:13:fd:e0:7c: f1:7b:52:12:47:4c:6c:74:6e:ed:22:6e:12:cd:d9: d7:8c:9f:c7:c6:f3:e7:58:38:f4:3d:a3:fd:8a:5f: 26:b0:cc:62:f6:4e:f8:7a:45:68:6c:e4:ae:41:2f: a4:95:54:df:ac:23:56:d3:c7:c1:9a:0f:cf:44:48: 55:fd:e6:a3:f1:6e:3e:0e:e4:08:13:38:1c:8f:31: 25:28:27:08:28:06:0c:98:b7:03:c0:d7:0f:a3:31: 87:bd:db:d0:be:06:18:ad:26:09:8a:90:be:09:b5: b2:c9:14:0b:4f:15:62:56:1c:28:4e:c2:34:5f:22: e7:75:7f:89:a2:ba:af:56:2e:83:8a:60:e0:a7:11: ef:6f:6e:09:7c:96:54:3f:7b:52:f9:00:98:32:74: d0:86:88:2f:ee:09:6d:60:0c:62:c5:01:d3:0b:da: f0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:71:76:8D:C0:01:F7:C8:B8:33:70:76:6D:60:11:0E:99:85:D7:80 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:23:d6:f7:c0:20:4a:a2:1f:5f:68:c5:0f:99:83:a4:16:d4: 26:70:87:5b:5b:3d:ea:33:da:93:d0:53:a4:65:ee:01:ae:84: 0a:28:89:89:d8:1b:51:14:b8:c9:2c:21:6f:19:13:04:f0:2a: 3d:84:d1:38:f2:3c:ab:44:9d:16:7d:75:fb:c2:33:d1:fb:72: f2:a3:76:db:27:23:72:86:26:27:d5:ad:60:d5:4d:0c:1e:97: f3:10:63:ff:06:51:4b:be:66:0b:8d:eb:b4:1a:4a:ce:e3:1a: 21:e2:4c:54:ea:d6:c4:f7:30:51:84:38:59:76:22:6d:73:55: d5:45:d1:23:28:0e:c3:87:af:19:83:b5:9e:64:b7:fd:69:4d: 31:8c:8a:a7:31:4f:78:5b:cf:4a:f7:1e:18:41:9d:3e:23:e9: ea:dd:d7:36:b1:30:d7:44:91:99:f9:61:e5:9c:7d:de:53:da: 82:18:0e:0f:db:cd:cf:6e:bc:24:0f:fc:5e:6a:98:e9:89:cc: 67:29:3d:43:5d:c6:95:e7:cb:41:1c:7d:dc:03:8c:b0:24:fe: ea:11:87:13:01:77:fb:12:d7:f6:f3:98:90:e3:63:ad:c8:48: ef:62:0e:29:5a:22:d6:42:aa:fe:11:6d:66:1c:04:26:80:21: 6c:3a:90:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwOTA5MDIwMzU4WhcNMjUwOTE2MDIwMzU4WjAYMRYwFAYD VQQDEw02OGJmOGIwZS1mZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnx5lXa/0RdYRwq0Xu02YYRQZMwqyZwvDcdYCjmE5N170CkXXju6idql6r7A fyZDhzY9UpF7uUXQo+beP8bU9FYRNqb4w14/tDLiv8swLM11JM2ZQRP94Hzxe1IS R0xsdG7tIm4SzdnXjJ/HxvPnWDj0PaP9il8msMxi9k74ekVobOSuQS+klVTfrCNW 08fBmg/PREhV/eaj8W4+DuQIEzgcjzElKCcIKAYMmLcDwNcPozGHvdvQvgYYrSYJ ipC+CbWyyRQLTxViVhwoTsI0XyLndX+JorqvVi6DimDgpxHvb24JfJZUP3tS+QCY MnTQhogv7gltYAxixQHTC9rwOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9xdo3A AffIuDNwdm1gEQ6ZhdeAMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbI9b3wCBKoh9faMUPmYOkFtQmcIdbWz3qM9qT0FOkZe4BroQKKImJ 2BtRFLjJLCFvGRME8Co9hNE48jyrRJ0WfXX7wjPR+3Lyo3bbJyNyhiYn1a1g1U0M HpfzEGP/BlFLvmYLjeu0GkrO4xoh4kxU6tbE9zBRhDhZdiJtc1XVRdEjKA7Dh68Z g7WeZLf9aU0xjIqnMU94W89K9x4YQZ0+I+nq3dc2sTDXRJGZ+WHlnH3eU9qCGA4P 283PbrwkD/xeapjpicxnKT1DXcaV58tBHH3cA4ywJP7qEYcTAXf7Etf285iQ42Ot yEjvYg4pWiLWQqr+EW1mHAQmgCFsOpAT -----END CERTIFICATE-----Generated at Tue Sep 9 07:52:20 2025 by rpki-client