$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: G2C1oGz8Bq9lb+FxZgfn4+LsoWTvfU2AD0Fj1nCsua8= Subject key identifier: 16:4E:A1:FB:FB:23:7B:3D:87:FD:1D:3F:67:35:22:11:EB:9D:01:5F Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 01FB Signing time: Thu 15 May 2025 02:07:29 +0000 Manifest this update: Thu 15 May 2025 02:07:28 +0000 Manifest next update: Thu 22 May 2025 02:07:28 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: t/9GJZr9IHqjB8s/DCnNNtXxrKXV2Vsx/DjYq9sy+qc=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: May 15 02:07:28 2025 GMT Not After : May 22 02:07:28 2025 GMT Subject: CN=68254c61-2df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0f:2c:6e:a2:c0:7a:17:96:ec:ec:84:63:64: 6d:c8:1f:94:cd:8e:ce:26:3f:b7:ca:2d:6b:bc:81: 94:5b:3b:0d:d2:13:55:e3:aa:6a:b8:2c:6f:27:61: 80:69:37:47:68:5e:31:58:0e:e7:4b:1f:6e:33:ea: 4e:a6:f6:10:f8:2c:a3:90:33:8f:ad:58:6d:05:d4: 9a:02:fe:78:ad:90:55:f0:52:f4:5b:ad:f0:34:93: 0d:81:25:34:c0:c3:2b:ae:87:92:26:6b:42:be:da: 37:28:0f:c6:34:09:e6:f8:6e:fa:84:6a:5a:0b:d3: 73:01:86:f7:df:df:34:8d:f9:d5:c9:4d:6b:28:36: 0b:90:97:56:fd:65:79:f7:70:21:2c:e6:ef:4b:cb: 9f:eb:6b:4f:11:c7:34:28:d1:83:a2:a3:49:c6:f8: db:b3:92:15:d1:eb:a7:33:21:2c:0c:af:9c:d4:1e: cb:0b:c9:5f:e7:84:28:fd:27:89:dd:73:20:b6:c2: 87:59:79:36:11:95:39:cc:46:fe:17:ed:06:00:b6: 74:75:c6:2c:3c:b5:29:27:5f:c0:45:96:74:24:3f: 7f:a7:fc:25:95:96:ea:bc:87:49:cb:e1:fc:c3:a8: 02:93:73:c8:0e:28:57:e7:f5:7e:f7:44:e6:84:02: 74:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4E:A1:FB:FB:23:7B:3D:87:FD:1D:3F:67:35:22:11:EB:9D:01:5F X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:b2:bb:b0:07:a2:0a:a1:f2:13:21:e5:73:2a:fb:46:4d:af: d7:2b:57:bc:53:d9:19:30:12:17:ab:fd:a1:ad:87:a8:95:ee: 5b:fa:d7:80:f7:14:0a:99:ae:37:37:fc:2a:f1:e9:ad:06:8d: 71:77:a1:a8:09:62:97:bb:67:47:2b:b6:2f:78:e0:17:99:8e: d9:ae:3d:4d:f8:fb:44:33:58:df:01:05:f4:71:3c:af:91:c4: e4:32:49:10:ff:3a:4e:44:9e:2f:e9:d5:47:21:2d:16:b3:bf: 0e:69:d4:bc:92:71:06:46:a6:61:5f:06:a9:61:27:0e:29:fd: b7:44:95:15:47:6e:fc:3b:d7:03:6a:23:c7:9d:bc:25:ba:f4: d7:2f:43:d2:8b:e6:32:c2:50:a9:58:db:67:fb:59:71:bd:7c: 1b:c4:bc:ec:89:f4:6a:95:ba:b2:00:27:c6:f5:b4:27:9c:7c: 0c:57:da:d9:16:ef:dc:54:23:8b:4e:c6:f3:2b:87:39:0c:e5: c2:c2:79:17:d4:d4:ba:b8:b9:4f:8b:d6:8d:aa:b5:5f:b9:5c: db:42:7e:21:89:63:25:9b:99:00:62:08:89:68:87:27:02:87: fa:8a:7b:7c:05:44:e1:d2:8b:b0:db:61:0e:db:cb:9a:51:e9: 89:54:0c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwNTE1MDIwNzI4WhcNMjUwNTIyMDIwNzI4WjAYMRYwFAYD VQQDEw02ODI1NGM2MS0yZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A8sbqLAeheW7OyEY2RtyB+UzY7OJj+3yi1rvIGUWzsN0hNV46pquCxvJ2GA aTdHaF4xWA7nSx9uM+pOpvYQ+CyjkDOPrVhtBdSaAv54rZBV8FL0W63wNJMNgSU0 wMMrroeSJmtCvto3KA/GNAnm+G76hGpaC9NzAYb33980jfnVyU1rKDYLkJdW/WV5 93AhLObvS8uf62tPEcc0KNGDoqNJxvjbs5IV0eunMyEsDK+c1B7LC8lf54Qo/SeJ 3XMgtsKHWXk2EZU5zEb+F+0GALZ0dcYsPLUpJ1/ARZZ0JD9/p/wllZbqvIdJy+H8 w6gCk3PIDihX5/V+90TmhAJ0fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZOofv7 I3s9h/0dP2c1IhHrnQFfMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMsruwB6IKofITIeVzKvtGTa/XK1e8U9kZMBIXq/2hrYeole5b+teA 9xQKma43N/wq8emtBo1xd6GoCWKXu2dHK7YveOAXmY7Zrj1N+PtEM1jfAQX0cTyv kcTkMkkQ/zpORJ4v6dVHIS0Ws78OadS8knEGRqZhXwapYScOKf23RJUVR278O9cD aiPHnbwluvTXL0PSi+YywlCpWNtn+1lxvXwbxLzsifRqlbqyACfG9bQnnHwMV9rZ Fu/cVCOLTsbzK4c5DOXCwnkX1NS6uLlPi9aNqrVfuVzbQn4hiWMlm5kAYgiJaIcn Aof6int8BUTh0ouw22EO28uaUemJVAxK -----END CERTIFICATE-----Generated at Fri May 16 07:17:58 2025 by rpki-client