$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: xzY5HPKyxoNMpW3E97S3Bg//N/xUkE3WG7NlsNeZh9Y= Subject key identifier: 6D:73:F3:7F:25:A1:01:47:33:2E:72:31:3B:14:B9:61:2A:26:6F:72 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 034D Signing time: Sun 19 Oct 2025 03:03:10 +0000 Manifest this update: Sun 19 Oct 2025 03:03:10 +0000 Manifest next update: Sun 26 Oct 2025 03:03:10 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: ZChCsBhm0Wqxq1FxZC3FyOfuyzhHgnpaEd987r0Gnz0=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: T+/E3ylnKO/PWrVwuEVYj1NKgrY3/SChhT5eNdM1fbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Oct 19 03:03:10 2025 GMT Not After : Oct 26 03:03:10 2025 GMT Subject: CN=68f454ee-9e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fb:49:ea:ed:54:8e:05:0a:d9:af:cd:0c:dd: e9:df:40:c2:80:2e:6f:33:22:ba:8c:b6:c9:f5:ae: b6:12:db:80:6d:ef:9e:3d:87:90:36:54:c8:55:1a: 2d:e9:69:c4:33:77:54:6b:b7:c1:d6:26:23:f8:7e: c0:22:ce:60:7c:c4:e9:36:f0:c4:00:cd:60:8b:be: 9c:da:06:2b:5b:88:e9:8c:97:c0:b9:c1:d5:6f:d2: cb:05:7d:56:67:7a:8d:fe:56:8e:a1:5f:9d:bd:d7: 25:69:80:9b:34:63:23:f9:d5:88:16:ab:1e:c7:76: 9d:c9:5b:cc:20:4f:8a:b1:37:92:65:19:29:31:e8: f3:3c:85:1f:79:ee:66:66:ce:df:aa:4d:89:c4:31: 53:c7:7b:a8:63:2f:41:f0:4c:d3:5e:9f:ec:6d:09: 8f:90:fc:fc:3f:80:28:bf:35:da:97:91:9a:4a:b1: 4e:f0:0a:c7:c8:cd:3b:69:4e:64:07:24:a2:f2:26: 58:3d:59:7a:d4:83:6c:28:0d:d7:93:0c:b6:70:b4: 76:28:2a:07:70:9e:d8:f8:56:be:6b:19:68:62:8f: d0:c6:a7:cf:10:58:5f:b2:1a:e0:bf:d4:c5:53:74: 89:46:6e:b1:84:dd:24:e1:9c:45:30:2d:d0:e0:1d: 9c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:73:F3:7F:25:A1:01:47:33:2E:72:31:3B:14:B9:61:2A:26:6F:72 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:da:cc:8f:1f:15:ac:73:88:78:80:55:8c:00:b0:2b:66:c8: a0:e4:9c:ea:a1:51:ee:68:dc:be:c5:9f:c6:34:ae:4d:52:f0: 36:25:12:00:36:43:1d:66:ae:42:65:3f:1f:2d:63:ef:fd:2d: 4a:1b:ae:3d:05:c6:d2:a8:31:37:6d:39:28:37:c4:f5:0d:fa: ba:b7:c8:ba:60:a1:56:aa:8a:30:ef:34:b2:df:42:42:ab:5f: 04:39:e6:57:45:75:c9:66:08:c5:fa:64:f6:30:6d:80:97:d8: a0:c8:1e:9e:3c:a9:13:5d:9b:24:53:ca:d7:31:39:c2:a8:8c: cc:98:f0:06:a2:b3:aa:3b:e8:58:f3:6e:6c:b3:3c:88:f3:9f: 10:55:21:31:0b:b1:38:98:e7:80:36:58:81:94:1a:79:2a:f1: 62:c3:c7:52:8f:1b:d1:18:c8:cf:9a:de:77:e6:bc:a5:3a:0c: 9f:c3:6f:3a:91:fb:4b:9a:6c:36:c1:2f:76:de:c9:2f:aa:d0: 22:1a:a3:15:7c:18:4f:0f:5a:f4:69:00:9e:50:00:9b:3f:9a: 0c:53:47:9b:f0:72:48:50:0c:64:07:33:bc:85:c1:28:09:2a: f1:69:6e:86:1a:c8:5e:d9:0b:46:be:a8:d4:3a:d1:bc:80:40: 29:8c:58:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUxMDE5MDMwMzEwWhcNMjUxMDI2MDMwMzEwWjAYMRYwFAYD VQQDEw02OGY0NTRlZS05ZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvtJ6u1UjgUK2a/NDN3p30DCgC5vMyK6jLbJ9a62EtuAbe+ePYeQNlTIVRot 6WnEM3dUa7fB1iYj+H7AIs5gfMTpNvDEAM1gi76c2gYrW4jpjJfAucHVb9LLBX1W Z3qN/laOoV+dvdclaYCbNGMj+dWIFqsex3adyVvMIE+KsTeSZRkpMejzPIUfee5m Zs7fqk2JxDFTx3uoYy9B8EzTXp/sbQmPkPz8P4AovzXal5GaSrFO8ArHyM07aU5k BySi8iZYPVl61INsKA3Xkwy2cLR2KCoHcJ7Y+Fa+axloYo/QxqfPEFhfshrgv9TF U3SJRm6xhN0k4ZxFMC3Q4B2cHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1z838l oQFHMy5yMTsUuWEqJm9yMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP2syPHxWsc4h4gFWMALArZsig5JzqoVHuaNy+xZ/GNK5NUvA2JRIA NkMdZq5CZT8fLWPv/S1KG649BcbSqDE3bTkoN8T1Dfq6t8i6YKFWqoow7zSy30JC q18EOeZXRXXJZgjF+mT2MG2Al9igyB6ePKkTXZskU8rXMTnCqIzMmPAGorOqO+hY 825sszyI858QVSExC7E4mOeANliBlBp5KvFiw8dSjxvRGMjPmt535rylOgyfw286 kftLmmw2wS923skvqtAiGqMVfBhPD1r0aQCeUACbP5oMU0eb8HJIUAxkBzO8hcEo CSrxaW6GGshe2QtGvqjUOtG8gEApjFjx -----END CERTIFICATE-----Generated at Mon Oct 20 21:45:20 2025 by rpki-client