$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: lgsAT6d7pYmgsLCZVOn61KsGcrV93Q3OUiby/GrNZeo= Subject key identifier: EA:F5:4E:5F:9E:40:AD:26:9A:69:78:6B:2C:A2:EE:79:24:6F:DF:4D Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0300 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 02FD Signing time: Sat 17 May 2025 01:30:19 +0000 Manifest this update: Sat 17 May 2025 01:30:19 +0000 Manifest next update: Sat 24 May 2025 01:30:19 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: Mdg+daz0xVZzNVNGA5/eaDQSCbe4VWjAKiAfWC26QZU=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: Ndv96M8Ng8Yhc+hqMCZXKR8WR+dlXaccNTf0miARuPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 01:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: May 17 01:30:19 2025 GMT Not After : May 24 01:30:19 2025 GMT Subject: CN=6827e6ab-d546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ac:86:c0:52:3f:61:2e:b6:18:9f:b4:f2:0f: 0f:54:41:97:ce:5a:ff:5f:c3:10:e6:3a:be:1b:df: 31:a2:5b:a4:e1:4a:c5:79:c1:8a:2e:61:f0:26:02: b1:bb:de:ce:00:18:19:8e:0f:03:41:0a:bd:3c:b4: 9a:47:7e:f6:12:fe:19:f1:44:e2:26:f3:77:9e:e2: ef:fd:8b:dd:24:e5:11:47:b6:73:4b:4c:04:2f:6a: 51:02:8a:36:b4:37:25:3f:c1:a5:4e:ef:84:83:6d: 37:2b:d5:b0:2f:ac:9d:6e:2d:dc:b5:1a:86:df:6f: 43:0b:4e:9e:81:f8:18:f4:c0:7d:d5:10:96:ce:ad: ce:4e:fc:da:e9:3f:70:d5:77:4e:ba:35:5c:30:f2: 19:1a:3c:bd:0d:fb:3b:ff:1a:40:95:9c:af:49:a3: e1:be:89:83:33:e5:f4:97:02:a5:33:6c:7e:24:bc: ad:6f:a7:9e:a4:69:d4:74:4a:60:3b:cc:b6:da:83: 52:56:23:f0:bf:88:1b:b0:27:25:bd:38:82:c1:6d: e2:d7:37:58:c5:ae:73:83:e7:b4:c2:7d:df:63:36: 24:80:73:d4:e1:fc:8c:e2:03:26:35:8e:7a:70:7d: 8b:b1:9f:dc:a4:a8:63:ce:85:bf:f5:2c:0f:a2:2f: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F5:4E:5F:9E:40:AD:26:9A:69:78:6B:2C:A2:EE:79:24:6F:DF:4D X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:af:97:f6:c3:97:41:b2:e6:1f:5a:b0:aa:31:c1:80:4e:cc: c6:46:0c:95:74:e7:f6:95:d7:35:5f:4c:66:56:e3:c4:aa:68: 10:4e:35:57:84:70:4b:81:21:df:f8:f5:0b:3b:45:7d:60:51: e6:ce:2d:3e:a4:ed:af:a9:8e:00:0c:22:0a:fe:ff:28:62:49: db:68:d6:60:a4:0c:96:9c:eb:cd:fb:ce:24:4d:4c:fc:ba:46: b9:b5:35:ad:5f:d0:60:47:1a:89:42:b5:3c:1c:b2:f4:f5:56: 9e:56:53:87:9e:a1:ca:b6:73:43:9e:74:c5:ce:34:bb:c9:3b: f0:21:c3:5d:44:7f:78:de:47:51:95:99:a8:79:67:fc:fa:de: bc:25:aa:05:d5:da:6a:c8:68:85:ce:93:45:b9:98:71:10:ca: 39:85:a3:f3:e4:61:02:13:86:bf:62:03:a7:24:e1:b3:5d:cb: a7:f2:9a:0f:94:22:16:bb:0a:1c:90:1d:8b:8f:4d:c9:5a:4c: cf:7b:fe:23:a3:8e:1d:cb:03:07:f1:0f:5d:80:c9:82:b8:20: ba:27:dd:20:29:02:ed:f3:92:1b:ff:48:19:be:a0:84:37:c1: 74:1a:a7:0d:b9:8d:ce:ca:72:52:ce:4d:1f:79:9a:78:76:13: 6d:1d:04:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwNTE3MDEzMDE5WhcNMjUwNTI0MDEzMDE5WjAYMRYwFAYD VQQDEw02ODI3ZTZhYi1kNTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KyGwFI/YS62GJ+08g8PVEGXzlr/X8MQ5jq+G98xoluk4UrFecGKLmHwJgKx u97OABgZjg8DQQq9PLSaR372Ev4Z8UTiJvN3nuLv/YvdJOURR7ZzS0wEL2pRAoo2 tDclP8GlTu+Eg203K9WwL6ydbi3ctRqG329DC06egfgY9MB91RCWzq3OTvza6T9w 1XdOujVcMPIZGjy9Dfs7/xpAlZyvSaPhvomDM+X0lwKlM2x+JLytb6eepGnUdEpg O8y22oNSViPwv4gbsCclvTiCwW3i1zdYxa5zg+e0wn3fYzYkgHPU4fyM4gMmNY56 cH2LsZ/cpKhjzoW/9SwPoi/ZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr1Tl+e QK0mmml4ayyi7nkkb99NMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1r5f2w5dBsuYfWrCqMcGATszGRgyVdOf2ldc1X0xmVuPEqmgQTjVX hHBLgSHf+PULO0V9YFHmzi0+pO2vqY4ADCIK/v8oYknbaNZgpAyWnOvN+84kTUz8 uka5tTWtX9BgRxqJQrU8HLL09VaeVlOHnqHKtnNDnnTFzjS7yTvwIcNdRH943kdR lZmoeWf8+t68JaoF1dpqyGiFzpNFuZhxEMo5haPz5GECE4a/YgOnJOGzXcun8poP lCIWuwockB2Lj03JWkzPe/4jo44dywMH8Q9dgMmCuCC6J90gKQLt85Ib/0gZvqCE N8F0GqcNuY3OynJSzk0feZp4dhNtHQQY -----END CERTIFICATE-----Generated at Sat May 17 05:06:30 2025 by rpki-client