$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: yi35z8jlpD2aduJ0nHtTBfL9nOP21c8X2HcvIeaah5U= Subject key identifier: DA:EB:81:B1:9F:60:A2:20:E8:7A:17:44:F5:F7:C1:94:C3:A9:2E:54 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 02EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 02E8 Signing time: Sat 05 Apr 2025 01:28:08 +0000 Manifest this update: Sat 05 Apr 2025 01:28:08 +0000 Manifest next update: Sat 12 Apr 2025 01:28:08 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: 1vXf6f56o36/QVEPCv2D2vHgj/BETLNk6IS7brk81YQ=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: Ndv96M8Ng8Yhc+hqMCZXKR8WR+dlXaccNTf0miARuPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2 Validity Not Before: Apr 5 01:28:08 2025 GMT Not After : Apr 12 01:28:08 2025 GMT Subject: CN=67f08728-16a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7f:9f:de:4b:a9:f0:d8:dd:f5:7d:2e:c6:64: 1d:57:70:2f:62:86:ff:ed:5f:96:8e:47:a0:b9:77: 8c:f6:06:1b:c1:5f:ce:1a:9c:aa:77:cc:54:20:88: 84:01:a6:77:57:ae:00:43:0c:77:a7:48:9e:5a:55: a7:f2:83:32:80:b3:ff:3d:7a:99:7f:3f:19:1e:f2: f7:62:82:10:f6:0f:6e:e8:42:47:d1:5c:8b:3e:21: fa:c5:a9:af:3e:2d:08:7a:8d:9c:4f:44:87:dc:31: 58:2c:62:14:1a:ad:69:a2:dd:ef:bd:e2:d1:04:ce: 8b:71:c9:8b:1b:60:00:c4:6f:fe:16:44:b6:e7:0d: 1b:39:45:ae:a0:92:f4:a0:7e:c0:4a:18:12:07:7a: f1:09:fe:ea:1d:50:3b:5f:1e:e6:dd:a4:9a:96:d9: 88:3d:4e:f9:b1:91:f2:b5:1f:05:67:f6:93:d1:b3: 17:98:3e:60:fc:73:c6:39:61:c8:a6:19:05:01:d0: 80:65:9d:1b:f8:8e:5a:c1:a6:91:c2:d4:0e:7a:1d: 62:6b:a1:7f:ca:aa:5e:e4:e0:f4:b9:62:21:0f:0e: 9f:e0:72:60:18:77:73:f3:1f:be:1c:30:44:d1:df: 65:87:b5:57:8d:a2:05:cc:45:34:7d:b0:b1:3a:f5: f2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:EB:81:B1:9F:60:A2:20:E8:7A:17:44:F5:F7:C1:94:C3:A9:2E:54 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:3e:9d:79:d5:52:9f:0e:78:ed:25:6f:37:bd:fe:50:ba:e9: 07:25:6e:7e:0f:9a:e5:52:64:2a:6f:3f:26:51:19:49:92:72: 23:ed:3d:78:4e:0f:a0:6e:63:a3:eb:8a:68:d7:67:99:33:9e: 39:9f:91:6a:48:b7:3c:e5:6f:80:5b:bb:b0:b9:d8:c0:3c:50: 7f:c1:79:f8:21:eb:de:ab:90:99:fc:6c:b0:41:59:ef:b1:db: 4e:31:e8:4a:02:0a:fd:bf:19:a2:b6:b9:25:e5:28:9c:f4:65: 92:38:a3:0e:35:97:9a:98:9f:2f:de:b5:4d:f2:3d:9a:c6:de: 25:a2:df:46:78:e4:5f:f9:3b:8a:37:3a:66:cd:be:36:f9:a1: 53:18:17:27:43:79:66:e2:6c:72:a3:20:28:b4:b5:f6:49:46: 15:de:ff:6b:ac:4f:c8:de:7d:91:f9:74:5f:e5:75:c5:e1:f4: 19:e6:41:82:7a:46:0f:6d:94:87:55:24:4a:5f:b1:05:9f:5f: cb:8b:59:62:70:b7:35:9c:17:5d:d6:41:8e:d0:1f:06:0f:85: 6f:4d:90:f6:14:c4:e7:d9:ff:23:27:fe:3f:24:c5:02:e4:09: e8:71:ea:7d:11:39:a3:cb:81:58:2c:5b:ea:6d:1b:35:c7:72: aa:5f:2c:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwNDA1MDEyODA4WhcNMjUwNDEyMDEyODA4WjAYMRYwFAYD VQQDEw02N2YwODcyOC0xNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H+f3kup8Njd9X0uxmQdV3AvYob/7V+WjkeguXeM9gYbwV/OGpyqd8xUIIiE AaZ3V64AQwx3p0ieWlWn8oMygLP/PXqZfz8ZHvL3YoIQ9g9u6EJH0VyLPiH6xamv Pi0Ieo2cT0SH3DFYLGIUGq1pot3vveLRBM6LccmLG2AAxG/+FkS25w0bOUWuoJL0 oH7AShgSB3rxCf7qHVA7Xx7m3aSaltmIPU75sZHytR8FZ/aT0bMXmD5g/HPGOWHI phkFAdCAZZ0b+I5awaaRwtQOeh1ia6F/yqpe5OD0uWIhDw6f4HJgGHdz8x++HDBE 0d9lh7VXjaIFzEU0fbCxOvXyiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrrgbGf YKIg6HoXRPX3wZTDqS5UMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLPp151VKfDnjtJW83vf5QuukHJW5+D5rlUmQqbz8mURlJknIj7T14 Tg+gbmOj64po12eZM545n5FqSLc85W+AW7uwudjAPFB/wXn4Ieveq5CZ/GywQVnv sdtOMehKAgr9vxmitrkl5Sic9GWSOKMONZeamJ8v3rVN8j2axt4lot9GeORf+TuK Nzpmzb42+aFTGBcnQ3lm4mxyoyAotLX2SUYV3v9rrE/I3n2R+XRf5XXF4fQZ5kGC ekYPbZSHVSRKX7EFn1/Li1licLc1nBdd1kGO0B8GD4VvTZD2FMTn2f8jJ/4/JMUC 5Anocep9ETmjy4FYLFvqbRs1x3KqXyyL -----END CERTIFICATE-----Generated at Sat Apr 5 21:08:40 2025 by rpki-client