$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: caWoxBDjk/E8kws6M2j5SDTorzyIgcOLQq2Isup8Oo0= Subject key identifier: BD:3F:55:42:79:56:23:A0:2D:4F:54:84:A0:B6:2E:96:24:21:ED:7F Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0202 Signing time: Sat 31 May 2025 02:17:42 +0000 Manifest this update: Sat 31 May 2025 02:17:41 +0000 Manifest next update: Sat 07 Jun 2025 02:17:41 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: rvgKPTtAztn9UyVt/ChDW7EvJqro5vXl3HpqSl3afzc=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: May 31 02:17:41 2025 GMT Not After : Jun 7 02:17:41 2025 GMT Subject: CN=683a66c6-e381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:43:70:60:bb:2a:8d:6e:98:48:20:45:79:e4: 76:1c:72:ea:4f:70:23:43:ad:fc:f0:78:33:b6:9f: b8:db:5b:9e:a0:53:78:9c:15:5b:62:77:3e:3d:3d: de:b5:30:b1:f3:77:c0:1c:66:24:cf:32:ef:f0:47: 1f:63:39:77:a8:25:a8:52:38:98:e1:9b:02:e9:1b: ea:4d:30:23:5f:fe:2d:b3:bf:e1:38:bf:dc:61:7b: e2:fd:4c:5f:fe:a4:c9:b1:a9:1d:d9:a7:09:4f:20: 65:8b:dc:9c:a1:4c:d8:73:25:34:ee:0f:4a:74:5b: 41:2b:72:47:09:96:14:f0:23:43:85:55:d1:96:9a: 5a:74:ba:e5:d5:98:12:ef:38:42:82:96:ca:5d:ac: a6:70:c2:9e:e6:b6:d5:3b:2b:e6:ec:37:5f:6d:ce: 87:db:65:8a:83:56:27:7c:22:3e:54:3a:0b:26:70: 78:84:65:ba:0a:99:4f:df:e6:d1:33:83:55:9d:cd: 74:58:ff:92:39:ef:d4:ac:38:4f:99:bf:d5:26:bb: ec:fc:89:d1:3d:26:0d:10:fb:8c:d5:1d:7c:43:3d: 6e:69:25:fc:2a:28:b6:f6:a0:cc:b7:49:5d:03:8d: 33:22:11:49:ca:76:1b:58:2a:3f:b4:9d:a7:91:5f: 12:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3F:55:42:79:56:23:A0:2D:4F:54:84:A0:B6:2E:96:24:21:ED:7F X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:2c:4e:ef:2a:a9:7d:eb:e7:ea:28:7e:18:25:18:76:61:ba: 3e:ad:83:de:b4:92:22:19:ff:cd:ad:b1:64:e2:da:62:c0:87: 2e:3a:8b:9a:29:c9:93:ae:41:eb:71:f3:37:9d:82:9e:cf:71: db:e5:36:0a:b1:8d:4a:24:2b:27:2e:96:a6:13:02:95:77:9e: f5:1b:be:f2:f6:c7:4a:42:eb:e3:27:5d:e9:e0:25:56:3a:a3: 19:23:fb:26:eb:99:36:dc:6d:d9:a7:86:fe:ed:89:c8:28:40: 5e:9c:38:73:da:88:5b:7d:71:37:f8:74:7b:84:bd:0b:05:1e: 29:e5:18:ed:c3:0c:bb:5a:ee:6a:09:38:07:40:6f:85:b7:8e: 40:b7:8a:02:a6:65:54:8c:3f:bf:f6:0c:e1:21:58:be:9e:58: 1b:11:52:d4:a8:2b:9c:ef:7f:6a:cd:db:a2:f0:d6:b2:93:2c: 70:06:32:24:e7:d0:81:fd:a7:64:c2:95:63:f7:ac:55:ed:0f: e0:f0:20:46:7b:88:e7:9c:ff:94:c8:44:bd:81:6d:65:19:57: 40:06:f2:c7:a8:31:cb:78:39:b8:c3:5f:50:00:d7:6e:b5:a8: c8:96:0b:3d:2f:5f:48:8c:8d:d4:d5:20:d1:39:41:21:b0:26: 11:d2:f6:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwNTMxMDIxNzQxWhcNMjUwNjA3MDIxNzQxWjAYMRYwFAYD VQQDEw02ODNhNjZjNi1lMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ENwYLsqjW6YSCBFeeR2HHLqT3AjQ6388Hgztp+421ueoFN4nBVbYnc+PT3e tTCx83fAHGYkzzLv8EcfYzl3qCWoUjiY4ZsC6RvqTTAjX/4ts7/hOL/cYXvi/Uxf /qTJsakd2acJTyBli9ycoUzYcyU07g9KdFtBK3JHCZYU8CNDhVXRlppadLrl1ZgS 7zhCgpbKXaymcMKe5rbVOyvm7Ddfbc6H22WKg1YnfCI+VDoLJnB4hGW6CplP3+bR M4NVnc10WP+SOe/UrDhPmb/VJrvs/InRPSYNEPuM1R18Qz1uaSX8Kii29qDMt0ld A40zIhFJynYbWCo/tJ2nkV8SBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0/VUJ5 ViOgLU9UhKC2LpYkIe1/MB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARLE7vKql96+fqKH4YJRh2Ybo+rYPetJIiGf/NrbFk4tpiwIcuOoua KcmTrkHrcfM3nYKez3Hb5TYKsY1KJCsnLpamEwKVd571G77y9sdKQuvjJ13p4CVW OqMZI/sm65k23G3Zp4b+7YnIKEBenDhz2ohbfXE3+HR7hL0LBR4p5Rjtwwy7Wu5q CTgHQG+Ft45At4oCpmVUjD+/9gzhIVi+nlgbEVLUqCuc739qzdui8NaykyxwBjIk 59CB/adkwpVj96xV7Q/g8CBGe4jnnP+UyES9gW1lGVdABvLHqDHLeDm4w19QANdu tajIlgs9L19IjI3U1SDROUEhsCYR0vZh -----END CERTIFICATE-----Generated at Sat May 31 17:44:02 2025 by rpki-client