$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: FlNYaRnCg8vWLCHO9+CGDhkcsGFEQQ0084Z2frerJVc= Subject key identifier: 02:6B:1F:BA:28:8C:B5:2D:8E:77:3D:69:CE:31:F8:B0:1B:E8:3F:DF Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 02A1 Signing time: Wed 25 Mar 2026 01:13:00 +0000 Manifest this update: Wed 25 Mar 2026 01:12:59 +0000 Manifest next update: Wed 01 Apr 2026 01:12:59 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: i2IaNWDAmz96DBAXGwkyWvuKZ+Ya6HD3vvWlok1NUuI=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: d181Z1DYLcItp5l9IsZ1mcEBRFCLJxml8DnOv1hi/n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Mar 25 01:12:59 2026 GMT Not After : Apr 1 01:12:59 2026 GMT Subject: CN=69c3369c-a725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:1b:7d:34:39:76:b9:e8:4c:a2:1f:1d:a2: 87:b8:03:8b:33:49:81:80:36:1b:49:c4:a1:ec:e2: 64:2e:49:c6:d6:c0:37:c7:9c:32:0d:a8:35:dd:3f: ac:ff:76:ba:9b:ed:39:48:96:3c:ab:17:fa:f3:02: a2:e3:73:3b:a1:2d:a7:1a:93:eb:c5:9f:fc:77:27: 3e:94:ca:f0:8c:3d:91:01:05:68:62:0c:e1:a5:fd: d4:bd:f4:82:f8:19:46:4f:58:c5:fc:1d:5d:1e:41: 2d:09:a3:1a:ac:1a:4f:10:40:f5:d9:3a:59:b3:35: 9d:46:ac:0d:98:42:6b:01:81:47:d1:2b:8e:c8:86: 4a:b6:67:8c:87:72:e4:81:d2:47:08:7d:5f:4d:cc: 55:58:12:46:bc:0b:bb:ea:ce:f5:87:52:1a:07:fa: 69:ef:3b:98:f0:3d:8f:09:fc:1d:9a:2b:ce:7a:5a: 30:7f:4f:2e:87:47:f9:73:45:8d:06:5d:c4:86:2e: e1:c9:bd:47:19:20:00:b3:38:aa:49:d0:7b:c5:35: f0:4e:95:35:c1:f1:13:42:35:c0:b1:d2:46:ba:9e: b7:ba:2e:cc:59:69:83:3c:3a:74:bc:4f:16:af:72: f8:79:07:e0:78:7d:89:1c:ae:84:0e:b6:ff:b6:c1: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:6B:1F:BA:28:8C:B5:2D:8E:77:3D:69:CE:31:F8:B0:1B:E8:3F:DF X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:04:a4:c5:88:d7:41:89:e3:19:ea:f3:1a:0e:09:f4:f7:39: f1:f1:36:7d:2e:8c:4d:31:bc:69:6a:b1:9c:c1:d9:85:52:09: 80:a2:c3:08:35:b8:5b:5d:c2:8f:c7:83:fa:05:8d:00:0d:39: 1c:94:0f:44:6b:65:d0:0d:09:22:50:97:25:ae:94:00:d7:6c: 00:e5:37:7d:c2:15:b6:06:06:ff:a7:be:a2:cc:25:6b:43:e8: da:fc:f8:d0:65:74:9a:2a:2a:0b:09:70:85:10:ff:68:ca:2e: 1f:a8:7f:88:ba:ad:61:16:02:5f:5e:2f:77:da:da:36:97:b1: 0a:83:9a:ae:9e:b7:8a:5b:62:61:0e:3f:02:d0:ca:f2:e9:66: e9:c3:5b:10:fd:6f:3a:38:88:4e:d2:64:e8:93:99:4f:d4:f6: 54:ef:fb:be:ed:d7:11:0a:1d:d9:47:70:48:47:30:ea:d7:a8: 62:3c:94:f5:af:fc:1b:b8:16:3b:af:5c:dd:b1:5f:6c:cc:de: 17:1f:49:9d:bc:55:ad:56:73:95:2b:d7:e3:61:59:c5:02:1b: 57:3e:02:4d:2d:d2:8d:6a:cb:a5:b1:35:69:cd:6e:e6:eb:46: 03:8a:22:aa:ff:68:0d:6b:51:a2:c0:8b:e2:58:df:56:cd:70: ec:28:1a:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjYwMzI1MDExMjU5WhcNMjYwNDAxMDExMjU5WjAYMRYwFAYD VQQDEw02OWMzMzY5Yy1hNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE4bfTQ5drnoTKIfHaKHuAOLM0mBgDYbScSh7OJkLknG1sA3x5wyDag13T+s /3a6m+05SJY8qxf68wKi43M7oS2nGpPrxZ/8dyc+lMrwjD2RAQVoYgzhpf3UvfSC +BlGT1jF/B1dHkEtCaMarBpPEED12TpZszWdRqwNmEJrAYFH0SuOyIZKtmeMh3Lk gdJHCH1fTcxVWBJGvAu76s71h1IaB/pp7zuY8D2PCfwdmivOelowf08uh0f5c0WN Bl3Ehi7hyb1HGSAAsziqSdB7xTXwTpU1wfETQjXAsdJGup63ui7MWWmDPDp0vE8W r3L4eQfgeH2JHK6EDrb/tsG8mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAJrH7oo jLUtjnc9ac4x+LAb6D/fMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3wSkxYjXQYnjGerzGg4J9Pc58fE2fS6MTTG8aWqxnMHZhVIJgKLDCDW4W13C j8eD+gWNAA05HJQPRGtl0A0JIlCXJa6UANdsAOU3fcIVtgYG/6e+oswla0Po2vz4 0GV0mioqCwlwhRD/aMouH6h/iLqtYRYCX14vd9raNpexCoOarp63iltiYQ4/AtDK 8ulm6cNbEP1vOjiITtJk6JOZT9T2VO/7vu3XEQod2UdwSEcw6teoYjyU9a/8G7gW O69c3bFfbMzeFx9JnbxVrVZzlSvX42FZxQIbVz4CTS3SjWrLpbE1ac1u5utGA4oi qv9oDWtRosCL4ljfVs1w7CgaQQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:21:20 2026 by rpki-client