$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: vI+LO/uq+Rm3ZnsA+Ncd6DmNghYtp0wIvL0QUIaFXt4= Subject key identifier: CF:D9:D0:63:B0:10:87:BA:68:1C:81:B6:6B:C1:BD:17:28:EE:9B:01 Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0C3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0C2E Signing time: Fri 30 May 2025 18:46:51 +0000 Manifest this update: Fri 30 May 2025 18:46:50 +0000 Manifest next update: Fri 06 Jun 2025 18:46:50 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: dGcTO7lq0aPSYXJ9yhIvOcldZdkTa4eXMIrxQFfHph0=) 2: DBE709060AA511EA86C8E31DC4F9AE02.roa (hash: YQqO3/GsQMAf9ewsQANIfWPP9RflccXF2o5PRECWCc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC, serialNumber=B543198287AC99125200786297B93697F8F248AE Validity Not Before: May 30 18:46:50 2025 GMT Not After : Jun 6 18:46:50 2025 GMT Subject: CN=6839fd1b-edfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3b:9b:bd:4d:67:91:d5:f3:34:c4:45:ce:09: 10:80:62:6f:1e:23:40:d9:5d:fe:36:7d:82:c8:c1: 2a:03:98:d3:6e:af:0d:a5:53:5b:4c:44:6c:9f:5a: f0:96:2d:93:c5:ad:ae:dc:f5:70:9f:3b:7d:e2:ed: 1e:73:ab:85:d2:5f:10:ae:a0:ca:40:11:af:5f:82: 00:d7:5b:87:02:34:ef:10:c3:27:95:79:d9:ab:2e: 37:cc:4e:a5:65:54:df:45:23:2b:26:b3:4d:33:69: c6:e3:b9:42:de:a8:4d:a7:5d:b7:c3:e5:08:ae:92: d4:85:2a:96:f0:8a:25:b6:6f:3a:e7:f2:77:21:76: d2:5e:b7:95:3a:b4:8c:7d:c1:dd:0e:1b:8e:de:f8: 39:02:d4:fb:5e:d0:fa:31:29:84:eb:00:da:4f:93: 90:73:87:f2:7f:47:8c:4d:a2:eb:d1:99:b9:32:3b: 8b:61:87:98:9a:df:58:9b:f0:23:1e:89:fb:a4:4f: 26:66:1d:05:2d:f8:84:15:00:6f:3e:10:09:53:e7: 83:c3:49:87:d1:78:74:36:bf:d9:8f:f5:25:3f:73: 07:74:24:e6:f2:6f:71:c4:6e:d1:48:a4:ee:0c:25: 68:cd:f6:66:6b:ee:01:25:fb:27:5d:d7:45:1e:26: 7a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D9:D0:63:B0:10:87:BA:68:1C:81:B6:6B:C1:BD:17:28:EE:9B:01 X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:25:01:f3:ae:a9:bb:98:ae:7a:f5:aa:b7:05:b5:9c:32:a1: 0c:f6:4f:6c:51:9a:ad:90:8f:f4:6f:d4:e8:7f:1d:ec:2c:f6: 21:2d:f5:18:54:3b:22:fc:55:4c:1e:c2:cd:96:b6:af:c2:b5: fa:ac:f8:88:60:58:06:fa:2f:1d:30:fa:e6:d3:c0:e4:16:4a: dc:ee:ad:a4:c6:47:7b:d8:50:19:0d:b4:ea:74:3b:a8:02:5e: a8:90:49:a2:80:e0:a2:41:a3:b4:c4:2f:d2:3e:0f:bb:3f:3b: a6:02:79:ba:3a:78:92:77:2e:80:17:22:04:94:f5:af:27:f0: 15:dc:93:13:a0:84:f0:48:be:97:d0:d9:a0:4d:d2:1e:3b:69: fa:a1:88:fc:fd:3f:86:c4:1b:27:29:fd:82:ef:a1:b7:54:5d: 7b:fc:8c:33:9a:04:3a:7b:a0:70:7e:0e:65:97:84:7c:07:f1: ea:9d:14:00:b9:67:1c:be:07:11:a7:4b:5f:f9:0a:07:3e:fb: b7:f7:03:93:ea:47:fb:7a:32:32:6f:87:62:a7:4b:2d:ab:b3: 60:9d:87:ce:7f:e9:78:de:cf:26:8c:c2:6b:b8:9d:60:90:ab: 15:26:10:6e:4c:30:1c:18:7d:22:0a:9c:6b:f1:2b:91:e1:a1: 0a:f7:5d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjUwNTMwMTg0NjUwWhcNMjUwNjA2MTg0NjUwWjAYMRYwFAYD VQQDEw02ODM5ZmQxYi1lZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjubvU1nkdXzNMRFzgkQgGJvHiNA2V3+Nn2CyMEqA5jTbq8NpVNbTERsn1rw li2Txa2u3PVwnzt94u0ec6uF0l8QrqDKQBGvX4IA11uHAjTvEMMnlXnZqy43zE6l ZVTfRSMrJrNNM2nG47lC3qhNp123w+UIrpLUhSqW8Ioltm865/J3IXbSXreVOrSM fcHdDhuO3vg5AtT7XtD6MSmE6wDaT5OQc4fyf0eMTaLr0Zm5MjuLYYeYmt9Ym/Aj Hon7pE8mZh0FLfiEFQBvPhAJU+eDw0mH0Xh0Nr/Zj/UlP3MHdCTm8m9xxG7RSKTu DCVozfZma+4BJfsnXddFHiZ6mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/Z0GOw EIe6aByBtmvBvRco7psBMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAJQHzrqm7mK569aq3BbWcMqEM9k9sUZqtkI/0b9Tofx3sLPYhLfUY VDsi/FVMHsLNlravwrX6rPiIYFgG+i8dMPrm08DkFkrc7q2kxkd72FAZDbTqdDuo Al6okEmigOCiQaO0xC/SPg+7PzumAnm6OniSdy6AFyIElPWvJ/AV3JMToITwSL6X 0NmgTdIeO2n6oYj8/T+GxBsnKf2C76G3VF17/IwzmgQ6e6Bwfg5ll4R8B/HqnRQA uWccvgcRp0tf+QoHPvu39wOT6kf7ejIyb4dip0stq7NgnYfOf+l43s8mjMJruJ1g kKsVJhBuTDAcGH0iCpxr8SuR4aEK912M -----END CERTIFICATE-----Generated at Sat May 31 17:27:46 2025 by rpki-client