$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: mlHPSv8CRYyIvkZDCxnDZuvmZ5bZn11jUnxBlx2GAwc= Subject key identifier: 7D:85:F0:C0:40:7F:0E:38:2F:8C:2F:2A:E8:A7:F7:3F:25:30:63:AB Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0213 Signing time: Thu 03 Jul 2025 02:27:43 +0000 Manifest this update: Thu 03 Jul 2025 02:27:42 +0000 Manifest next update: Thu 10 Jul 2025 02:27:42 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: AwEhx4+3MbmQerVgU3bNhfZNoGJWiIbhWDTTExlDITc=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Jul 3 02:27:42 2025 GMT Not After : Jul 10 02:27:42 2025 GMT Subject: CN=6865ea9e-6f46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:f9:e1:e2:f0:21:26:6f:d5:92:e9:cc:37: e9:3c:5c:04:00:c7:6e:e5:52:18:17:61:76:a7:ec: 5d:4a:21:09:b4:4c:c3:bd:8a:28:5a:1a:0f:a8:df: 8f:15:08:c4:0e:a0:80:be:f1:82:f4:70:44:d4:29: cf:de:13:57:d1:75:b0:a2:aa:ff:1b:43:ee:f4:84: b6:ec:1c:80:31:5c:a6:20:3c:bd:2f:4c:20:eb:42: 58:1d:73:7c:ea:87:4e:cf:d1:60:0a:f0:b6:9d:3e: 59:d6:82:cc:86:88:1c:6d:a7:9b:26:e7:4d:37:2c: e9:39:b4:57:20:9d:d1:86:c1:b2:a5:5c:95:4e:a7: fb:df:22:d4:35:87:82:26:21:f2:ad:e1:a2:54:9b: cd:87:1d:3a:86:31:e6:02:74:73:80:b8:40:4c:b4: 51:9a:48:ae:6a:2f:2e:b9:57:0c:70:11:9e:c5:17: 32:4b:a2:4e:96:b6:49:0e:89:e5:47:33:32:6d:eb: a9:4b:a4:f7:26:04:db:9d:8b:e0:ab:98:79:9d:a2: 21:41:bc:fe:c7:f9:c2:67:82:2a:fd:3c:4f:ed:5e: 40:20:ae:a9:e4:bb:02:d9:18:6a:e5:98:97:42:d2: 96:f7:1d:8d:01:5a:13:49:e8:d0:a6:ba:3f:a5:0f: bd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:85:F0:C0:40:7F:0E:38:2F:8C:2F:2A:E8:A7:F7:3F:25:30:63:AB X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d9:38:00:e0:0e:b4:0b:04:cf:38:42:5b:66:48:8b:89:32: cb:b3:6f:e1:9e:ac:2e:67:4b:ae:ff:b4:55:b3:e9:48:da:6f: d8:43:4d:57:44:52:3f:d9:11:69:e0:ce:d7:e8:70:49:8c:d8: 9f:da:34:ab:d4:e5:b3:f6:2e:b7:8d:2f:7e:92:b3:b5:8d:1e: 63:2e:81:78:21:62:ab:fe:e8:a7:ae:c7:86:5e:da:a6:ea:1f: a8:15:84:4f:8e:33:8a:d0:3a:07:70:56:47:0c:36:b0:ad:a9: ae:75:78:59:c2:a0:ec:83:09:c3:dc:6b:2b:67:18:04:29:6d: b8:d9:e4:c1:03:fc:6d:8e:f8:5d:68:98:f7:97:fc:8e:a5:bd: 3a:57:0a:78:7b:b2:3c:c8:64:cc:eb:58:bf:ba:6b:99:25:5d: 40:6d:d9:ad:a1:34:f4:0a:fd:fd:d2:b3:83:6a:cc:69:c9:f6: 07:86:e9:28:c2:4c:1a:fe:2b:93:dc:a0:9d:c8:75:22:93:04: ea:a1:5a:26:b4:94:f9:5c:35:b2:a6:fe:9c:5b:2e:58:28:50: 1b:00:3a:a9:09:de:7c:10:76:3f:50:d9:7c:97:4a:cf:23:3e: eb:43:81:6f:da:59:3c:26:fc:55:7b:b4:14:34:7c:67:df:1e: 87:ad:c8:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwNzAzMDIyNzQyWhcNMjUwNzEwMDIyNzQyWjAYMRYwFAYD VQQDEw02ODY1ZWE5ZS02ZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23H54eLwISZv1ZLpzDfpPFwEAMdu5VIYF2F2p+xdSiEJtEzDvYooWhoPqN+P FQjEDqCAvvGC9HBE1CnP3hNX0XWwoqr/G0Pu9IS27ByAMVymIDy9L0wg60JYHXN8 6odOz9FgCvC2nT5Z1oLMhogcbaebJudNNyzpObRXIJ3RhsGypVyVTqf73yLUNYeC JiHyreGiVJvNhx06hjHmAnRzgLhATLRRmkiuai8uuVcMcBGexRcyS6JOlrZJDonl RzMybeupS6T3JgTbnYvgq5h5naIhQbz+x/nCZ4Iq/TxP7V5AIK6p5LsC2Rhq5ZiX QtKW9x2NAVoTSejQpro/pQ+9dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2F8MBA fw44L4wvKuin9z8lMGOrMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO2TgA4A60CwTPOEJbZkiLiTLLs2/hnqwuZ0uu/7RVs+lI2m/YQ01X RFI/2RFp4M7X6HBJjNif2jSr1OWz9i63jS9+krO1jR5jLoF4IWKr/uinrseGXtqm 6h+oFYRPjjOK0DoHcFZHDDawramudXhZwqDsgwnD3GsrZxgEKW242eTBA/xtjvhd aJj3l/yOpb06Vwp4e7I8yGTM61i/umuZJV1AbdmtoTT0Cv390rODasxpyfYHhuko wkwa/iuT3KCdyHUikwTqoVomtJT5XDWypv6cWy5YKFAbADqpCd58EHY/UNl8l0rP Iz7rQ4Fv2lk8JvxVe7QUNHxn3x6Hrcjz -----END CERTIFICATE-----Generated at Fri Jul 4 08:20:48 2025 by rpki-client