$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: 5L8HwKtoAwbVQenwJu/8tGJYGiSDCP0PZ/r95CdPrgg= Subject key identifier: B2:C6:11:07:43:45:09:06:F2:0B:4A:CE:43:63:DB:66:FF:1A:0F:A3 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 0330 Signing time: Sat 23 Aug 2025 01:21:29 +0000 Manifest this update: Sat 23 Aug 2025 01:21:28 +0000 Manifest next update: Sat 30 Aug 2025 01:21:28 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: ACHUwD5DkyvH5S4u1BGuVzFUNJOnGRW1Y/f59jzcWQo=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: T+/E3ylnKO/PWrVwuEVYj1NKgrY3/SChhT5eNdM1fbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Aug 23 01:21:28 2025 GMT Not After : Aug 30 01:21:28 2025 GMT Subject: CN=68a91799-0e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:47:20:29:e0:47:88:24:b0:14:e4:57:bb:06: 26:e4:54:2a:33:93:04:03:2c:06:9a:b2:c0:37:4d: 14:08:3e:96:0c:88:cd:d3:ac:3c:26:f9:30:c3:75: ba:a6:51:19:1f:f5:30:10:7e:52:e4:d9:59:63:f4: b6:40:c3:96:d1:fd:47:e2:0b:c1:67:04:3d:f9:1e: 0d:fe:30:48:7e:de:9b:73:c7:1d:ee:5e:c3:0f:82: c4:c9:36:9e:b1:ca:23:eb:50:bc:d5:20:41:b7:cb: ac:37:16:01:00:01:7e:92:82:48:f4:1f:15:8d:c4: f0:70:0e:12:94:a8:eb:5e:95:55:18:d2:5b:e5:8e: 39:2f:68:1c:ff:da:ea:ab:02:b8:b9:71:13:94:d5: 16:9e:a4:89:e1:3c:8a:7b:b4:8c:30:8d:94:c0:58: 3e:61:6f:4e:c5:1c:b2:e4:06:7f:6d:98:f6:19:47: 10:c9:7d:34:d3:fd:d4:30:92:01:1f:08:8e:c8:42: d5:31:d1:d5:a0:fd:7b:50:6d:2d:94:52:b3:8d:9d: 17:8c:93:b5:2b:c0:6c:66:f4:7b:36:43:ee:da:2e: c9:17:bb:8a:5f:c3:80:b0:7a:03:96:9f:b1:76:4c: 61:e2:f7:0d:64:36:08:62:a6:90:43:22:aa:99:d4: 83:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C6:11:07:43:45:09:06:F2:0B:4A:CE:43:63:DB:66:FF:1A:0F:A3 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:ac:5c:d9:71:6f:5c:72:1c:9c:d3:5c:1a:60:36:3a:3f:7f: af:2b:f5:b3:ec:79:9e:9a:01:54:32:21:86:aa:ea:51:a4:ed: 22:36:34:4f:f7:9c:0d:96:c6:5b:d8:16:1c:3b:e5:fb:d9:79: 94:dc:7c:f7:36:3e:5b:46:bc:13:0c:01:83:2c:f3:07:d4:e5: 8e:db:25:1d:db:4a:b0:9a:0a:0f:46:75:c5:df:51:74:8b:55: 08:74:fc:40:e5:67:f1:43:b9:82:6c:a6:eb:83:6e:3d:f7:a8: 6e:48:f9:56:23:55:d2:b2:4d:0f:aa:fe:2b:15:b6:70:45:e3: dd:86:98:f4:d3:8c:19:cd:9a:ea:16:01:92:e0:5a:89:a1:53: 60:d7:f9:14:02:37:ec:12:7f:d9:3e:5a:63:c1:5c:ff:77:11: c4:a7:71:23:09:7b:12:c5:67:52:83:8a:83:73:3d:05:d7:13: 65:ef:e3:58:63:25:48:d7:40:8e:e6:62:0e:41:33:2e:ea:f1: 37:ea:da:0c:e1:f5:6a:c3:b7:15:da:69:8f:ca:22:62:c7:44: 28:d4:8c:6b:37:db:f2:4f:70:ff:2e:01:5b:60:f9:a9:66:7b: a7:2d:3d:11:c8:ce:c8:0b:2c:16:8d:b2:24:51:98:3a:47:9a: 03:ca:1c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwODIzMDEyMTI4WhcNMjUwODMwMDEyMTI4WjAYMRYwFAYD VQQDEw02OGE5MTc5OS0wZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUcgKeBHiCSwFORXuwYm5FQqM5MEAywGmrLAN00UCD6WDIjN06w8Jvkww3W6 plEZH/UwEH5S5NlZY/S2QMOW0f1H4gvBZwQ9+R4N/jBIft6bc8cd7l7DD4LEyTae scoj61C81SBBt8usNxYBAAF+koJI9B8VjcTwcA4SlKjrXpVVGNJb5Y45L2gc/9rq qwK4uXETlNUWnqSJ4TyKe7SMMI2UwFg+YW9OxRyy5AZ/bZj2GUcQyX000/3UMJIB HwiOyELVMdHVoP17UG0tlFKzjZ0XjJO1K8BsZvR7NkPu2i7JF7uKX8OAsHoDlp+x dkxh4vcNZDYIYqaQQyKqmdSD7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLGEQdD RQkG8gtKzkNj22b/Gg+jMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLrFzZcW9cchyc01waYDY6P3+vK/Wz7HmemgFUMiGGqupRpO0iNjRP 95wNlsZb2BYcO+X72XmU3Hz3Nj5bRrwTDAGDLPMH1OWO2yUd20qwmgoPRnXF31F0 i1UIdPxA5WfxQ7mCbKbrg24996huSPlWI1XSsk0Pqv4rFbZwRePdhpj004wZzZrq FgGS4FqJoVNg1/kUAjfsEn/ZPlpjwVz/dxHEp3EjCXsSxWdSg4qDcz0F1xNl7+NY YyVI10CO5mIOQTMu6vE36toM4fVqw7cV2mmPyiJix0Qo1IxrN9vyT3D/LgFbYPmp ZnunLT0RyM7ICywWjbIkUZg6R5oDyhze -----END CERTIFICATE-----Generated at Sat Aug 23 20:44:19 2025 by rpki-client