$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: pXH9UMAHTPgk93ehuh+fiJScq8mhK+5N2mBJa47NgnI= Subject key identifier: 92:E5:75:FA:40:3A:20:4A:73:DF:08:67:E6:6A:1D:ED:45:DD:3B:D3 Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0C74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0C67 Signing time: Thu 18 Sep 2025 18:41:44 +0000 Manifest this update: Thu 18 Sep 2025 18:41:44 +0000 Manifest next update: Thu 25 Sep 2025 18:41:44 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: BHG7b+0UquDT/bfPB2R+x9YwUIm8Fajg9/e73QoKOjM=) 2: DBE709060AA511EA86C8E31DC4F9AE02.roa (hash: YQqO3/GsQMAf9ewsQANIfWPP9RflccXF2o5PRECWCc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC, serialNumber=B543198287AC99125200786297B93697F8F248AE Validity Not Before: Sep 18 18:41:44 2025 GMT Not After : Sep 25 18:41:44 2025 GMT Subject: CN=68cc5268-852f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:08:53:df:73:3d:0b:16:58:14:83:ce:ac:f2: 7f:6b:38:fa:4c:14:fa:74:e9:c5:1b:54:f3:fa:69: ef:3b:fd:19:77:67:65:62:dc:11:89:8c:3d:be:92: 1f:e7:2e:21:b3:72:ce:61:e2:e8:13:b6:f3:2c:3d: 83:96:e1:75:82:bf:39:a4:1d:49:f5:54:5c:c2:09: ba:de:61:c8:cc:9b:65:ea:31:17:c6:aa:ea:56:ed: 15:8f:1d:0e:ca:fd:e1:fa:60:6f:f4:03:ab:1b:fb: 6e:bf:3d:1d:31:10:4e:d2:cf:12:83:62:8e:7a:ac: 96:da:bc:9d:74:5e:3c:18:d1:bd:8f:eb:8a:c1:74: 21:ae:13:6a:b7:72:36:0e:08:32:d9:92:67:94:78: 73:ff:53:44:9a:9d:0e:c0:1b:6d:b8:e3:4b:21:fd: 15:a4:8f:ef:ad:7e:ab:1f:45:7b:a9:30:6f:93:f7: 26:b9:cc:e5:68:80:e9:f3:a8:9d:9f:fe:80:c1:32: c7:ee:16:0d:61:49:42:6a:3b:6d:3d:3b:e1:33:9d: 83:6a:2f:68:ac:bf:c9:39:c1:dd:7b:3a:9a:2f:9f: 74:cd:7c:16:fd:10:72:ad:fc:0c:87:2c:e9:39:96: 1a:a4:07:21:df:99:4e:0d:00:18:b4:8c:d7:fe:0a: 26:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E5:75:FA:40:3A:20:4A:73:DF:08:67:E6:6A:1D:ED:45:DD:3B:D3 X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:81:59:42:25:54:f0:94:07:9e:69:b8:91:86:6f:99:f4:15: dc:c3:e7:b5:a3:48:d2:85:6c:75:8f:df:83:7f:12:97:45:01: ac:37:64:42:dd:c8:da:cf:d9:9b:18:0b:c8:f0:b2:e0:3b:7e: 6e:27:b9:84:b9:d7:be:77:38:6a:99:70:6b:1f:ce:66:c3:84: e2:39:e9:8e:be:98:ee:84:6d:28:22:d3:06:07:53:12:a9:3e: ae:a5:06:76:f4:c5:8d:94:8b:28:f5:50:50:69:11:49:76:6b: ce:20:30:38:ab:46:06:50:61:53:08:b2:72:ca:6e:66:8e:fd: bc:95:b9:09:f3:21:3a:7a:08:8a:d5:1b:54:87:cd:39:4f:56: d5:1e:2f:e2:1e:a3:ee:f0:5c:c2:23:69:59:ec:39:53:bd:e3: ce:04:70:6e:30:ae:30:ea:bb:6b:91:70:4d:1d:63:20:46:bf: b1:06:6f:9f:26:03:01:a0:3b:d5:72:90:8a:b2:f5:7d:00:b1: 92:62:01:40:40:98:fc:59:dc:95:a3:b9:f9:c5:dd:9e:97:2a: 6f:50:02:e8:68:ae:38:c9:77:31:5d:24:6d:05:26:bd:32:d9: 84:3c:fa:43:1d:62:be:c3:26:bb:97:15:7a:93:a0:75:c6:bf: 3a:fb:aa:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjUwOTE4MTg0MTQ0WhcNMjUwOTI1MTg0MTQ0WjAYMRYwFAYD VQQDEw02OGNjNTI2OC04NTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QhT33M9CxZYFIPOrPJ/azj6TBT6dOnFG1Tz+mnvO/0Zd2dlYtwRiYw9vpIf 5y4hs3LOYeLoE7bzLD2DluF1gr85pB1J9VRcwgm63mHIzJtl6jEXxqrqVu0Vjx0O yv3h+mBv9AOrG/tuvz0dMRBO0s8Sg2KOeqyW2ryddF48GNG9j+uKwXQhrhNqt3I2 Dggy2ZJnlHhz/1NEmp0OwBttuONLIf0VpI/vrX6rH0V7qTBvk/cmuczlaIDp86id n/6AwTLH7hYNYUlCajttPTvhM52Dai9orL/JOcHdezqaL590zXwW/RByrfwMhyzp OZYapAch35lODQAYtIzX/gomrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLldfpA OiBKc98IZ+ZqHe1F3TvTMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqgVlCJVTwlAeeabiRhm+Z9BXcw+e1o0jShWx1j9+DfxKXRQGsN2RC 3cjaz9mbGAvI8LLgO35uJ7mEude+dzhqmXBrH85mw4TiOemOvpjuhG0oItMGB1MS qT6upQZ29MWNlIso9VBQaRFJdmvOIDA4q0YGUGFTCLJyym5mjv28lbkJ8yE6egiK 1RtUh805T1bVHi/iHqPu8FzCI2lZ7DlTvePOBHBuMK4w6rtrkXBNHWMgRr+xBm+f JgMBoDvVcpCKsvV9ALGSYgFAQJj8WdyVo7n5xd2elypvUALoaK44yXcxXSRtBSa9 MtmEPPpDHWK+wya7lxV6k6B1xr86+6pp -----END CERTIFICATE-----Generated at Thu Sep 18 23:29:29 2025 by rpki-client