$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: OIER7h3Pl90K1XP+mujtKmGRpWYrYhk5rBGyr5hwVY0= Subject key identifier: AF:44:36:AE:01:CF:D3:BF:F6:72:8A:83:4E:54:A5:7F:E5:2D:D1:B4 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0250 Signing time: Sun 19 Oct 2025 04:05:58 +0000 Manifest this update: Sun 19 Oct 2025 04:05:57 +0000 Manifest next update: Sun 26 Oct 2025 04:05:57 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: Ywh+uoRt0kV8MNjKzyWEwvkkiTx0rbLcqRlrOFLJhTo=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 04Cy+y4IVlv3nSRQiE3T4udS3Y09bNADoSP454aG6f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Oct 19 04:05:57 2025 GMT Not After : Oct 26 04:05:57 2025 GMT Subject: CN=68f463a6-795c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0c:08:25:8d:21:42:25:6f:0d:93:aa:e1:0f: 6c:41:3e:e9:54:08:ba:da:bf:3f:df:26:da:0b:09: 9f:0f:c1:62:9c:8a:7b:f8:78:c4:02:5e:a5:42:cd: 4d:6b:a4:69:c5:b8:f4:23:9b:68:3b:5b:74:c5:60: bf:1e:5f:d2:b4:ba:0d:0b:a9:bf:40:9f:f2:d8:36: 85:b5:3e:5f:b9:a5:a5:b6:65:20:4b:23:ae:f7:85: ab:c0:64:33:8f:56:32:36:cb:d8:b6:12:34:02:6c: 2b:59:2e:43:1a:89:8b:f4:05:14:7b:a2:e4:5e:50: f8:b6:db:0d:67:80:2f:45:d9:97:d7:6c:0a:da:e6: 4f:44:4b:26:10:53:46:8e:c4:df:b4:99:14:f8:f9: 38:da:f3:cf:67:99:58:fa:6c:14:8d:ed:98:95:eb: c4:c9:70:01:d9:e4:b6:ae:68:20:e5:2f:7f:44:fe: 8c:5a:b7:de:15:1c:bd:07:c3:1e:3b:f0:f1:f2:69: bb:36:06:48:a1:6c:15:5f:67:b9:9e:19:f3:1b:ca: 35:34:84:ca:cc:74:db:a8:46:20:05:a7:99:5b:f9: f2:1b:3d:55:c7:16:6e:c4:e4:5f:07:60:1f:08:3d: 0b:c3:62:0d:be:56:41:e7:56:0e:f2:1e:a4:5a:ec: e1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:44:36:AE:01:CF:D3:BF:F6:72:8A:83:4E:54:A5:7F:E5:2D:D1:B4 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:df:ca:62:bd:a8:5e:0e:0c:a1:94:31:da:54:a0:f9:10:a4: fa:2d:bd:2f:79:98:e2:bc:c8:e2:ec:fe:82:0d:3c:8e:0d:15: b9:ee:16:6e:30:31:a1:a4:f2:7e:b1:02:d5:0d:f8:59:8a:5a: d1:7b:e7:ba:7b:e1:77:9b:41:44:2f:a3:18:b1:f5:47:c7:62: 71:85:61:c6:03:c5:8b:a7:41:19:2c:4f:6c:ae:59:6c:92:71: 99:56:74:2f:05:00:e8:f7:27:06:b7:f9:de:18:0b:bd:3f:77: d4:f2:63:3a:e8:12:8f:b8:5b:dd:35:01:b0:46:22:82:c1:4a: 88:c0:a1:eb:f0:83:c6:0a:51:71:c2:22:d1:7e:d7:e1:7a:8f: f4:c3:3c:40:7a:08:8d:a9:d7:bd:c3:b9:52:0c:85:d8:28:b1: fc:6f:e9:a4:40:0a:82:86:b2:6b:31:a8:a7:a9:14:94:1c:d7: 20:65:ff:22:4b:58:47:4d:eb:a9:70:81:13:1a:f5:c4:5e:9d: 4f:8d:85:61:16:d2:97:cc:d2:f5:aa:23:fb:c7:21:a7:ad:28: 9b:a9:c5:22:b7:d4:6c:e5:ee:5b:98:fd:c8:18:dd:c9:f8:8b: c7:12:86:bb:9f:fc:a7:3b:78:9f:63:e4:34:b2:1a:cb:99:f8: 61:91:3c:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUxMDE5MDQwNTU3WhcNMjUxMDI2MDQwNTU3WjAYMRYwFAYD VQQDEw02OGY0NjNhNi03OTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QwIJY0hQiVvDZOq4Q9sQT7pVAi62r8/3ybaCwmfD8FinIp7+HjEAl6lQs1N a6Rpxbj0I5toO1t0xWC/Hl/StLoNC6m/QJ/y2DaFtT5fuaWltmUgSyOu94WrwGQz j1YyNsvYthI0AmwrWS5DGomL9AUUe6LkXlD4ttsNZ4AvRdmX12wK2uZPREsmEFNG jsTftJkU+Pk42vPPZ5lY+mwUje2YlevEyXAB2eS2rmgg5S9/RP6MWrfeFRy9B8Me O/Dx8mm7NgZIoWwVX2e5nhnzG8o1NITKzHTbqEYgBaeZW/nyGz1VxxZuxORfB2Af CD0Lw2INvlZB51YO8h6kWuzh1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9ENq4B z9O/9nKKg05UpX/lLdG0MB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC38pivaheDgyhlDHaVKD5EKT6Lb0veZjivMji7P6CDTyODRW57hZu MDGhpPJ+sQLVDfhZilrRe+e6e+F3m0FEL6MYsfVHx2JxhWHGA8WLp0EZLE9srlls knGZVnQvBQDo9ycGt/neGAu9P3fU8mM66BKPuFvdNQGwRiKCwUqIwKHr8IPGClFx wiLRftfheo/0wzxAegiNqde9w7lSDIXYKLH8b+mkQAqChrJrMainqRSUHNcgZf8i S1hHTeupcIETGvXEXp1PjYVhFtKXzNL1qiP7xyGnrSibqcUit9Rs5e5bmP3IGN3J +IvHEoa7n/ynO3ifY+Q0shrLmfhhkTxD -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:12 2025 by rpki-client