$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: AZ1THVYDOZuMkM6xbyiSds9y7miITnutKMgLQjCk880= Subject key identifier: 4E:D9:86:30:E4:CB:3D:A9:8F:7C:17:F4:65:D4:C3:FD:4F:9E:E5:04 Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0CFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0CEC Signing time: Wed 20 May 2026 18:22:53 +0000 Manifest this update: Wed 20 May 2026 18:22:53 +0000 Manifest next update: Wed 27 May 2026 18:22:53 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: dnCosKTJ6RjFWmHK6FlV/zSHcW9+PxTmssBRlJrVxKE=) 2: C3401DEC16E811F1A339CAE0373D8C67.roa (hash: yBowxfuCjhrMqbpO4ruB7+0RN+biV4Rph+HZV83yUAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3325 (0xcfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC, serialNumber=B543198287AC99125200786297B93697F8F248AE Validity Not Before: May 20 18:22:53 2026 GMT Not After : May 27 18:22:53 2026 GMT Subject: CN=6a0dfbfd-a1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d7:8a:32:03:57:f2:9a:44:4a:c1:fb:0d:0f: 43:d0:ad:49:12:dc:99:99:33:a0:de:cb:03:6e:aa: 52:23:cf:d5:fb:17:37:14:1b:0f:c9:4d:c9:79:4f: bf:43:6e:03:55:35:55:5c:16:96:05:b9:b2:27:19: aa:63:e6:51:0a:f0:e8:2b:5d:1f:96:a6:f1:ff:be: 06:6b:5b:65:61:81:86:4d:be:65:8b:56:e4:36:2e: 26:69:0b:05:30:d8:d1:aa:a7:b0:63:4f:92:fd:f9: 3d:1a:02:48:91:ff:d6:a9:f7:f5:82:9e:2b:57:cb: 87:7f:17:1d:74:11:4c:c5:14:c5:cc:d4:5d:ee:23: a5:e0:30:e0:3f:66:7f:1a:1b:ea:07:e1:6e:cc:2a: 7d:15:43:76:ba:ca:14:68:64:eb:51:2d:35:bc:14: ad:cf:30:ae:70:6b:34:9a:e5:f5:0b:2e:84:ab:5b: d8:32:85:ce:3b:e6:58:54:58:2a:55:f2:2e:74:77: 92:2f:48:8e:f2:af:36:5c:ed:42:75:75:c5:6c:5e: 19:1d:2d:60:2e:ac:0d:9e:3e:7e:1a:ba:0b:53:f8: 62:b4:a9:ac:a0:84:fb:8b:e0:69:e6:8b:61:91:08: c8:0a:4c:05:8c:90:7a:8f:c3:84:ef:c4:fd:2b:37: 45:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D9:86:30:E4:CB:3D:A9:8F:7C:17:F4:65:D4:C3:FD:4F:9E:E5:04 X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:6c:98:d3:60:80:1d:e2:6e:33:78:7f:2e:ab:b4:e7:31:ce: 45:40:7a:01:0c:a7:2d:81:62:7d:38:60:9b:6b:da:b8:83:2c: 3c:82:c0:00:4f:43:1c:51:1b:37:e8:f1:99:96:5f:d2:54:29: e2:b8:40:bd:b9:69:04:c5:a5:f1:a7:3d:52:f2:86:f9:47:5f: 16:c8:dd:ff:69:cf:f5:79:b9:54:fe:6d:bb:bb:50:da:33:4a: d3:31:39:98:35:19:77:4e:0a:a6:23:c4:c2:7d:23:99:1f:4c: 10:50:85:48:b3:da:2b:0c:f9:9f:71:6b:7f:a5:fe:c1:65:0f: 20:4f:91:9d:97:6d:f9:54:f4:68:d2:13:f0:f5:d2:f5:9b:5a: 14:2c:e6:1b:d0:66:43:ad:14:cb:63:69:ab:c3:ca:84:b5:53: 79:b9:85:9c:9b:13:ae:38:a5:20:0f:6e:7c:d4:07:67:ed:b7: 06:5c:b5:9b:c4:9d:e8:62:7d:e9:88:92:76:07:2c:bb:e2:97: 21:14:54:21:48:0c:67:65:e8:c3:7c:8c:32:14:f0:41:a4:33: c8:ea:94:b6:6a:75:fb:5b:c6:a7:bd:e7:52:08:2e:18:9d:3c: e7:da:85:8a:93:31:51:7f:c6:f3:5f:73:ab:74:f4:69:57:5e: 88:85:12:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjYwNTIwMTgyMjUzWhcNMjYwNTI3MTgyMjUzWjAYMRYwFAYD VQQDEw02YTBkZmJmZC1hMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdeKMgNX8ppESsH7DQ9D0K1JEtyZmTOg3ssDbqpSI8/V+xc3FBsPyU3JeU+/ Q24DVTVVXBaWBbmyJxmqY+ZRCvDoK10flqbx/74Ga1tlYYGGTb5li1bkNi4maQsF MNjRqqewY0+S/fk9GgJIkf/Wqff1gp4rV8uHfxcddBFMxRTFzNRd7iOl4DDgP2Z/ GhvqB+FuzCp9FUN2usoUaGTrUS01vBStzzCucGs0muX1Cy6Eq1vYMoXOO+ZYVFgq VfIudHeSL0iO8q82XO1CdXXFbF4ZHS1gLqwNnj5+GroLU/hitKmsoIT7i+Bp5oth kQjICkwFjJB6j8OE78T9KzdFhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE7ZhjDk yz2pj3wX9GXUw/1PnuUEMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALGyY02CAHeJuM3h/Lqu05zHORUB6AQynLYFifThgm2vauIMsPILAAE9DHFEb N+jxmZZf0lQp4rhAvblpBMWl8ac9UvKG+UdfFsjd/2nP9Xm5VP5tu7tQ2jNK0zE5 mDUZd04KpiPEwn0jmR9MEFCFSLPaKwz5n3Frf6X+wWUPIE+RnZdt+VT0aNIT8PXS 9ZtaFCzmG9BmQ60Uy2Npq8PKhLVTebmFnJsTrjilIA9ufNQHZ+23Bly1m8Sd6GJ9 6YiSdgcsu+KXIRRUIUgMZ2Xow3yMMhTwQaQzyOqUtmp1+1vGp73nUgguGJ0859qF ipMxUX/G819zq3T0aVdeiIUSGw== -----END CERTIFICATE-----Generated at Thu May 21 11:05:15 2026 by rpki-client