$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: ktFcYuRx2SZ3YXg4W8QdOXyYWUeiU0VdGDqueoRSMhk= Subject key identifier: 29:60:42:EA:C6:07:E3:E1:54:13:6E:9E:E8:33:3D:D8:81:E7:D9:21 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 031A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 0316 Signing time: Thu 03 Jul 2025 01:34:13 +0000 Manifest this update: Thu 03 Jul 2025 01:34:13 +0000 Manifest next update: Thu 10 Jul 2025 01:34:13 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: DPgltIiFTMLE2heoHDm5Jmm6E083YNm4L3/fJOCPgUg=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: T+/E3ylnKO/PWrVwuEVYj1NKgrY3/SChhT5eNdM1fbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Jul 3 01:34:13 2025 GMT Not After : Jul 10 01:34:13 2025 GMT Subject: CN=6865de15-eeaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:8d:da:82:0c:8e:76:90:91:46:de:aa:0d: 55:1c:1c:15:d4:ec:58:ac:c4:ea:f1:ac:56:b8:df: 76:49:c1:85:2d:b0:49:19:f3:81:12:7a:7a:b3:e2: 07:ff:ea:d5:bc:9f:6e:a3:70:fb:78:c2:0f:87:65: 4f:76:eb:f7:a5:ae:8e:24:af:01:65:34:a6:ec:26: 7c:2a:96:b8:59:49:2e:01:15:9b:68:63:87:92:08: 23:af:97:87:cd:2b:93:47:ea:80:6a:26:27:67:ad: 2d:80:19:69:77:6b:29:1c:13:d3:a2:80:63:2c:53: d9:7a:a3:5b:eb:ba:c0:4b:49:56:55:7d:d3:3e:ff: ec:61:f6:95:9b:a6:6c:96:ec:f0:b3:04:e3:64:48: cc:ae:3c:ef:1e:23:2d:d0:c8:c5:9a:c2:f1:de:91: 39:8e:45:30:fd:65:40:45:c4:1e:09:1b:66:28:d8: 57:df:7a:7c:e8:2c:ab:d5:2a:25:30:26:07:39:c1: f7:5f:cb:ca:c5:f9:bb:41:a4:dd:5c:f7:7b:83:a1: 60:9e:4d:94:20:3e:74:d1:9e:2e:7c:01:ea:63:59: 91:88:96:37:f7:09:0d:6b:dc:61:e1:f8:c4:42:63: 6b:be:74:ad:33:8f:05:0c:b3:d3:e2:9a:4a:91:29: 07:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:60:42:EA:C6:07:E3:E1:54:13:6E:9E:E8:33:3D:D8:81:E7:D9:21 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ef:2d:ee:1a:2f:3f:52:8f:ea:fb:93:76:d6:7e:2f:49:3b: 03:ea:b2:c5:a4:5e:31:6a:26:73:fc:be:5f:cd:f1:a1:96:7f: 8e:c4:c8:13:9d:32:0c:ad:cc:7c:ba:4d:93:d3:7d:b4:c3:38: f3:ea:eb:4f:f0:0c:ba:da:59:34:c2:01:1c:3c:69:ed:1e:fa: 08:4f:8d:dc:b1:e4:74:29:62:68:74:01:bb:64:50:0d:23:45: 6e:b7:66:d7:19:d4:0c:e8:13:7c:ee:a9:bb:ed:66:35:b0:63: 1a:fc:8e:22:06:ce:9b:eb:b0:a6:92:da:44:25:ba:b9:2d:9b: a7:2e:f9:e3:fa:71:bb:5e:d8:d5:90:4f:12:53:09:da:b7:c7: 3e:8c:85:2a:4f:64:4d:fc:e0:96:d4:b2:2b:62:09:ea:61:44: c5:b7:5e:b0:33:d8:fd:f3:51:f4:39:d7:2c:e7:52:59:ff:2b: 57:35:b4:39:79:1d:7a:b3:10:26:7d:22:67:5f:f9:e5:87:dc: 7b:97:64:b4:4c:d9:eb:68:2b:7a:17:81:3a:a5:36:15:b5:31: c3:cb:90:55:18:32:0c:52:22:45:5a:2b:3a:59:9f:a4:3d:40: d0:7b:41:21:2d:24:94:08:a5:a1:90:80:d7:45:be:49:01:83: 6d:bb:d7:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwNzAzMDEzNDEzWhcNMjUwNzEwMDEzNDEzWjAYMRYwFAYD VQQDEw02ODY1ZGUxNS1lZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt52N2oIMjnaQkUbeqg1VHBwV1OxYrMTq8axWuN92ScGFLbBJGfOBEnp6s+IH /+rVvJ9uo3D7eMIPh2VPduv3pa6OJK8BZTSm7CZ8Kpa4WUkuARWbaGOHkggjr5eH zSuTR+qAaiYnZ60tgBlpd2spHBPTooBjLFPZeqNb67rAS0lWVX3TPv/sYfaVm6Zs luzwswTjZEjMrjzvHiMt0MjFmsLx3pE5jkUw/WVARcQeCRtmKNhX33p86Cyr1Sol MCYHOcH3X8vKxfm7QaTdXPd7g6Fgnk2UID500Z4ufAHqY1mRiJY39wkNa9xh4fjE QmNrvnStM48FDLPT4ppKkSkHkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClgQurG B+PhVBNunugzPdiB59khMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr7y3uGi8/Uo/q+5N21n4vSTsD6rLFpF4xaiZz/L5fzfGhln+OxMgT nTIMrcx8uk2T0320wzjz6utP8Ay62lk0wgEcPGntHvoIT43cseR0KWJodAG7ZFAN I0Vut2bXGdQM6BN87qm77WY1sGMa/I4iBs6b67CmktpEJbq5LZunLvnj+nG7XtjV kE8SUwnat8c+jIUqT2RN/OCW1LIrYgnqYUTFt16wM9j981H0Odcs51JZ/ytXNbQ5 eR16sxAmfSJnX/nlh9x7l2S0TNnraCt6F4E6pTYVtTHDy5BVGDIMUiJFWis6WZ+k PUDQe0EhLSSUCKWhkIDXRb5JAYNtu9cU -----END CERTIFICATE-----Generated at Thu Jul 3 18:01:07 2025 by rpki-client