$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: gE2kSy0+h7EDCVKCoqgSYDgxlgU4d+jw3NCBhuU51kI= Subject key identifier: F5:81:F1:21:5B:0B:73:A9:50:16:4F:EC:45:2A:91:67:0B:9F:A5:AD Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 022D Signing time: Sat 23 Aug 2025 02:13:30 +0000 Manifest this update: Sat 23 Aug 2025 02:13:29 +0000 Manifest next update: Sat 30 Aug 2025 02:13:29 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: sDQcDWJRdCa8A/qbcqBava4/TrnQBA/z2gYRPyvh8rM=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Aug 23 02:13:29 2025 GMT Not After : Aug 30 02:13:29 2025 GMT Subject: CN=68a923ca-e0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:41:fc:e7:68:e8:37:bf:e3:75:3c:ab:83:d9: 05:c8:4c:0d:75:1c:40:38:97:9a:a6:e5:bc:22:7a: 50:06:23:9e:d5:44:bc:8d:c3:96:8f:de:70:4f:45: 2c:67:3d:17:da:c2:3f:b4:0c:48:08:a9:cf:b4:a1: e2:e0:55:b3:e7:fe:bd:80:df:51:3a:f8:2f:47:40: 45:4b:f8:3f:4c:52:33:cd:52:29:92:46:21:2f:e6: f6:ac:e2:08:39:66:01:c2:73:a0:2b:7f:0e:e7:00: 1a:53:39:0b:04:84:cc:16:ae:5c:3e:4e:e6:c4:c9: 29:30:44:a8:5f:70:10:27:88:97:b1:96:48:29:d5: 25:60:32:58:ab:c9:c5:5c:ee:88:a8:55:75:c4:75: 4b:9d:ce:36:70:fd:f8:7b:9d:99:3f:93:df:e5:52: ab:ff:0d:cb:78:75:c0:ba:23:72:7c:f5:fb:74:b5: cb:bf:9f:76:32:44:88:a4:48:91:37:60:6e:4a:64: 34:27:06:2f:60:47:dc:af:ae:de:bd:ab:61:ab:36: 16:47:e6:13:49:35:74:05:6b:6d:40:d3:a1:9d:72: 30:1e:e5:62:a6:4c:b0:99:20:b4:55:24:49:bc:3a: 1a:b5:da:86:f5:bf:c0:16:67:6d:d8:18:ad:b6:47: 00:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:81:F1:21:5B:0B:73:A9:50:16:4F:EC:45:2A:91:67:0B:9F:A5:AD X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:98:dc:dd:b6:37:51:2a:43:8e:e8:8c:a9:c4:77:74:75:6d: 90:93:c1:ee:e1:d3:72:a2:f0:25:36:ee:c2:d0:f1:23:e7:48: 1b:dd:6c:7c:8e:48:bf:02:2a:b1:3b:22:3f:af:8e:5e:1a:87: b2:86:cf:ac:13:8f:7c:82:f6:50:ca:a2:e5:0f:92:61:31:c5: e8:af:68:e8:33:31:c9:98:e7:66:dd:a9:c8:5f:fd:79:a9:01: a8:1c:a7:b0:99:7f:1c:2e:40:7e:52:c5:ce:14:0d:07:0c:52: 73:07:b3:c6:4f:96:f0:e8:52:ee:94:35:8b:e5:db:a7:59:82: 69:51:a0:d5:50:f7:e4:4b:a9:63:38:c5:f8:33:b7:ec:70:56: 02:98:99:c1:0e:1e:e8:1a:49:9c:b9:80:9c:3a:24:08:2a:ac: a9:4c:8d:4b:dd:d6:75:2b:88:cd:b8:b4:0e:a4:68:0a:5f:f0: f4:50:8d:de:57:cc:ec:1d:ac:81:c9:1e:33:92:c2:65:ab:98: 3f:e2:d1:1a:6d:cd:46:ed:54:e7:83:d6:df:c5:2a:0b:9f:a8: 24:22:af:df:26:d7:60:dd:a3:c1:fa:e3:24:b4:62:99:06:03: 0b:83:1f:91:66:d4:b5:15:9a:0f:ea:59:8e:6d:a2:99:2e:40: 29:1e:cc:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwODIzMDIxMzI5WhcNMjUwODMwMDIxMzI5WjAYMRYwFAYD VQQDEw02OGE5MjNjYS1lMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70H852joN7/jdTyrg9kFyEwNdRxAOJeapuW8InpQBiOe1US8jcOWj95wT0Us Zz0X2sI/tAxICKnPtKHi4FWz5/69gN9ROvgvR0BFS/g/TFIzzVIpkkYhL+b2rOII OWYBwnOgK38O5wAaUzkLBITMFq5cPk7mxMkpMESoX3AQJ4iXsZZIKdUlYDJYq8nF XO6IqFV1xHVLnc42cP34e52ZP5Pf5VKr/w3LeHXAuiNyfPX7dLXLv592MkSIpEiR N2BuSmQ0JwYvYEfcr67evathqzYWR+YTSTV0BWttQNOhnXIwHuVipkywmSC0VSRJ vDoatdqG9b/AFmdt2BittkcAnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWB8SFb C3OpUBZP7EUqkWcLn6WtMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxmNzdtjdRKkOO6IypxHd0dW2Qk8Hu4dNyovAlNu7C0PEj50gb3Wx8 jki/AiqxOyI/r45eGoeyhs+sE498gvZQyqLlD5JhMcXor2joMzHJmOdm3anIX/15 qQGoHKewmX8cLkB+UsXOFA0HDFJzB7PGT5bw6FLulDWL5dunWYJpUaDVUPfkS6lj OMX4M7fscFYCmJnBDh7oGkmcuYCcOiQIKqypTI1L3dZ1K4jNuLQOpGgKX/D0UI3e V8zsHayByR4zksJlq5g/4tEabc1G7VTng9bfxSoLn6gkIq/fJtdg3aPB+uMktGKZ BgMLgx+RZtS1FZoP6lmObaKZLkApHsxl -----END CERTIFICATE-----Generated at Sat Aug 23 22:39:49 2025 by rpki-client