$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: Dey+4l8Qg5BfBasCwjQQ0eBjcXDFoISITS9KMJcM8Eg= Subject key identifier: 3E:58:F7:49:20:53:50:BE:31:FC:F4:DB:96:2E:53:54:B7:4A:4C:CD Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0C1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0C11 Signing time: Fri 04 Apr 2025 18:45:11 +0000 Manifest this update: Fri 04 Apr 2025 18:45:10 +0000 Manifest next update: Fri 11 Apr 2025 18:45:10 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: wYoMZ0yCMUTmzjw/IlbMZ0yhTbPY9VoXWxPHA+A1Ogg=) 2: DBE709060AA511EA86C8E31DC4F9AE02.roa (hash: zgjsHos2MHOxvntym+ulSXBT66zLuQ8zyiMRNeqJYvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3101 (0xc1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC Validity Not Before: Apr 4 18:45:10 2025 GMT Not After : Apr 11 18:45:10 2025 GMT Subject: CN=67f028b6-309e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6d:e8:5a:9f:68:70:e4:83:1c:fe:d9:09:8b: b5:e6:bd:28:55:56:cb:41:71:a9:71:c8:a4:67:77: ff:83:4a:51:fb:70:ff:da:bd:23:48:c1:2d:a6:89: d3:4a:e8:b1:da:b7:82:f7:d9:fb:dd:ec:15:7a:50: f5:cc:46:c7:11:dc:34:26:29:eb:8d:07:a5:1e:4b: 88:50:17:c5:4c:aa:a7:05:15:81:f7:14:90:90:65: 47:da:17:e6:dc:32:f3:f6:35:8b:66:96:8a:db:ff: e9:c7:45:e2:cd:f6:2b:2d:b9:9d:8b:7f:b3:68:f8: 69:85:81:47:cb:5d:59:d3:9d:04:b8:49:50:32:5e: 93:5f:6c:7c:96:a1:96:e7:27:f5:ed:86:6e:21:be: eb:a4:06:f8:33:a0:d1:00:b5:84:24:7b:8c:3c:b8: 5f:bd:84:13:63:54:53:39:aa:a2:f9:4e:45:ef:38: 98:0d:76:86:1b:c1:8a:80:7f:a5:49:6d:b3:95:63: 0d:d1:c1:0a:41:de:8b:81:af:d3:15:42:ee:6a:6e: 50:8c:3a:11:30:5e:75:70:75:1d:cc:4f:de:7d:45: a3:0c:d5:1e:1b:68:78:2e:c4:9b:aa:14:5a:7f:aa: d1:17:7c:18:e4:09:a6:a3:a5:c0:43:8b:2c:8a:97: 35:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:58:F7:49:20:53:50:BE:31:FC:F4:DB:96:2E:53:54:B7:4A:4C:CD X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:75:97:89:95:63:2c:40:8f:d3:85:35:c4:e1:72:fc:9c:6d: 47:5c:17:e5:cf:6d:52:27:9b:c5:1d:16:a3:08:24:fc:ef:31: 62:ac:48:a9:5b:a5:67:53:df:7e:ce:a7:8d:7a:28:f4:41:ca: f1:f7:2d:2e:44:49:a9:24:16:b5:86:27:bd:d4:3f:f8:35:21: 09:fe:4c:be:23:ae:09:fa:eb:13:b0:11:d2:c1:3c:59:30:8c: a3:ff:6f:c0:4d:33:5a:ec:5d:a8:27:35:4a:6b:46:88:d1:a9: 98:c6:d4:e1:f4:f5:43:cc:de:74:51:52:ef:cc:d2:20:e8:d2: 3e:96:36:f2:6b:90:e3:a2:e4:b2:a3:23:ab:2a:4b:56:fb:4f: 83:b6:87:e8:69:4f:94:57:da:cb:14:31:62:b5:e8:69:1d:40: 36:22:25:d5:8d:bb:b7:59:14:71:45:b5:9e:d0:7d:a8:9d:d3: e7:bf:67:82:b4:58:f2:e4:b3:71:07:2d:4a:c1:ec:9f:6d:9b: 6c:02:c2:b5:70:e9:62:2c:15:43:66:a3:b4:e1:7f:49:5a:e9: c2:22:7b:2d:54:d0:fe:09:c0:44:8e:35:71:c7:cb:7f:2c:68: a9:76:45:9e:9c:da:64:e3:e3:dc:cb:41:b7:3e:c2:34:b5:62: 0f:26:79:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjUwNDA0MTg0NTEwWhcNMjUwNDExMTg0NTEwWjAYMRYwFAYD VQQDEw02N2YwMjhiNi0zMDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6m3oWp9ocOSDHP7ZCYu15r0oVVbLQXGpccikZ3f/g0pR+3D/2r0jSMEtponT Suix2reC99n73ewVelD1zEbHEdw0JinrjQelHkuIUBfFTKqnBRWB9xSQkGVH2hfm 3DLz9jWLZpaK2//px0XizfYrLbmdi3+zaPhphYFHy11Z050EuElQMl6TX2x8lqGW 5yf17YZuIb7rpAb4M6DRALWEJHuMPLhfvYQTY1RTOaqi+U5F7ziYDXaGG8GKgH+l SW2zlWMN0cEKQd6Lga/TFULuam5QjDoRMF51cHUdzE/efUWjDNUeG2h4LsSbqhRa f6rRF3wY5Ammo6XAQ4ssipc1ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5Y90kg U1C+Mfz025YuU1S3SkzNMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSdZeJlWMsQI/ThTXE4XL8nG1HXBflz21SJ5vFHRajCCT87zFirEip W6VnU99+zqeNeij0Qcrx9y0uREmpJBa1hie91D/4NSEJ/ky+I64J+usTsBHSwTxZ MIyj/2/ATTNa7F2oJzVKa0aI0amYxtTh9PVDzN50UVLvzNIg6NI+ljbya5DjouSy oyOrKktW+0+DtofoaU+UV9rLFDFitehpHUA2IiXVjbu3WRRxRbWe0H2ondPnv2eC tFjy5LNxBy1KweyfbZtsAsK1cOliLBVDZqO04X9JWunCInstVND+CcBEjjVxx8t/ LGipdkWenNpk4+Pcy0G3PsI0tWIPJnmG -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:41 2025 by rpki-client