$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: CoqBCSRVGQg6eECxk/K2eatFBHqxrdz8kKqFNGJZVqI= Subject key identifier: A6:45:8E:80:ED:B2:59:84:AB:26:B8:D6:4C:72:4A:8E:83:F9:F8:A8 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 03A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 039E Signing time: Wed 25 Mar 2026 00:23:59 +0000 Manifest this update: Wed 25 Mar 2026 00:23:58 +0000 Manifest next update: Wed 01 Apr 2026 00:23:58 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: jHfeRi2fHq9TbXVwWwEsT6xrAqIE+4F+CRxiyeCzMY4=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: PgJ9XNDU/ajrVdWQinUWewn6SR1kOOmwJgma6udOIns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Mar 25 00:23:58 2026 GMT Not After : Apr 1 00:23:58 2026 GMT Subject: CN=69c32b1f-22f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a2:cf:37:5b:da:d4:68:6e:45:87:e0:ba:e9: e3:5e:0f:c5:6a:53:5f:30:1d:c9:d0:69:45:68:dc: 0d:75:7d:ac:92:5b:3d:92:66:f1:07:af:8d:d6:2d: 28:ca:25:76:19:1f:d6:50:10:7c:8f:5a:c0:49:96: ae:27:c4:55:32:01:a9:64:aa:a0:3d:a4:0a:d6:a3: 9a:83:ea:62:75:e2:f6:8e:86:a8:9d:bc:dd:68:f3: 65:82:1e:b1:11:fa:78:4f:21:2b:1a:9c:5f:ce:ea: 9c:00:9d:12:2b:6e:fe:83:af:c3:17:d4:50:8a:8f: 78:75:29:0c:12:67:aa:db:aa:1e:45:4f:1b:52:97: a3:d4:cf:d4:2d:2c:91:85:a7:45:69:66:0a:9e:79: a8:12:8f:0b:93:60:87:14:f2:8a:1c:e9:9a:6d:eb: 01:d6:7a:6a:8c:38:70:30:84:dd:2f:bd:5c:e9:f5: 04:de:49:c5:54:72:5f:e7:7b:c1:21:dd:47:fa:2a: 26:fb:d7:e0:04:48:7d:bc:7f:5f:c4:0d:fd:60:66: 2a:6e:c8:f9:2a:7f:4c:97:62:f4:f2:ff:f4:73:a9: c2:f9:ba:65:6d:d2:b7:70:04:4c:6e:3d:b2:79:0b: 32:a8:06:5d:2a:b0:19:3d:fb:c3:e8:6a:3e:10:b1: 8a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:45:8E:80:ED:B2:59:84:AB:26:B8:D6:4C:72:4A:8E:83:F9:F8:A8 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:36:a2:ee:86:19:4c:3b:88:f0:57:56:93:bf:04:29:e5:21: 4d:47:ef:7c:4b:52:06:4b:7e:a1:aa:e9:f5:98:b0:ed:8e:fb: ff:5f:04:41:8f:a1:f6:5f:26:af:63:8d:af:8a:02:84:8a:8a: c5:b0:d8:c2:ff:f1:dd:36:fe:82:2c:53:c0:52:d0:ff:65:f0: 87:52:74:4d:33:52:5c:f0:ce:db:1f:1f:37:42:49:ef:80:42: 8b:93:7d:02:7b:33:7f:30:42:6e:76:64:9c:ce:8b:6c:1a:37: a8:72:47:0c:da:eb:14:e1:5d:27:f1:ee:36:79:5d:a6:76:9c: 97:d2:c6:e9:bb:00:64:51:31:42:48:11:6e:e4:ba:8d:68:33: de:e6:2e:54:c9:80:ed:1e:42:8e:5c:0f:56:34:ec:69:42:18: c9:0e:10:15:fc:5e:fa:c0:9d:b8:5b:08:66:d8:b4:d8:dc:38: 59:e6:8e:5f:39:96:7a:2d:e4:ff:e7:c9:0f:dc:0a:6c:18:23: 4f:78:0c:7c:f2:52:ae:2f:38:9b:43:c1:56:91:35:eb:f3:9e: 18:bf:ba:42:8d:13:d6:bc:fe:4b:08:fc:16:3d:9f:f0:10:47: 0f:99:76:93:45:50:85:8c:0d:5e:0c:db:a5:03:8e:fe:89:34: 99:d4:09:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjYwMzI1MDAyMzU4WhcNMjYwNDAxMDAyMzU4WjAYMRYwFAYD VQQDEw02OWMzMmIxZi0yMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqLPN1va1GhuRYfguunjXg/FalNfMB3J0GlFaNwNdX2skls9kmbxB6+N1i0o yiV2GR/WUBB8j1rASZauJ8RVMgGpZKqgPaQK1qOag+pideL2joaonbzdaPNlgh6x Efp4TyErGpxfzuqcAJ0SK27+g6/DF9RQio94dSkMEmeq26oeRU8bUpej1M/ULSyR hadFaWYKnnmoEo8Lk2CHFPKKHOmabesB1npqjDhwMITdL71c6fUE3knFVHJf53vB Id1H+iom+9fgBEh9vH9fxA39YGYqbsj5Kn9Ml2L08v/0c6nC+bplbdK3cARMbj2y eQsyqAZdKrAZPfvD6Go+ELGKFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKZFjoDt slmEqya41kxySo6D+fioMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZzai7oYZTDuI8FdWk78EKeUhTUfvfEtSBkt+oarp9Ziw7Y77/18EQY+h9l8m r2ONr4oChIqKxbDYwv/x3Tb+gixTwFLQ/2Xwh1J0TTNSXPDO2x8fN0JJ74BCi5N9 AnszfzBCbnZknM6LbBo3qHJHDNrrFOFdJ/HuNnldpnacl9LG6bsAZFExQkgRbuS6 jWgz3uYuVMmA7R5CjlwPVjTsaUIYyQ4QFfxe+sCduFsIZti02Nw4WeaOXzmWei3k /+fJD9wKbBgjT3gMfPJSri84m0PBVpE16/OeGL+6Qo0T1rz+Swj8Fj2f8BBHD5l2 k0VQhYwNXgzbpQOO/ok0mdQJFQ== -----END CERTIFICATE-----Generated at Thu Mar 26 21:11:20 2026 by rpki-client