$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: IYQWPpxSG84oZ4SbPAgAPqodPBIa5RweVMurWdCHKiA= Subject key identifier: 50:62:42:41:11:4B:13:28:D4:58:4A:EF:B7:11:D2:06:16:FE:B5:81 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 0355 Signing time: Wed 05 Nov 2025 01:03:31 +0000 Manifest this update: Wed 05 Nov 2025 01:03:31 +0000 Manifest next update: Wed 12 Nov 2025 01:03:31 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: LwNzXptxTucphOKWPKWRJa9uHj7YMRfi5ygiVb2TkLI=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: T+/E3ylnKO/PWrVwuEVYj1NKgrY3/SChhT5eNdM1fbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Nov 5 01:03:31 2025 GMT Not After : Nov 12 01:03:31 2025 GMT Subject: CN=690aa263-b4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:96:6a:e2:ee:2e:e1:73:9f:63:28:dc:58: 87:ce:b6:67:52:df:19:f8:3b:31:52:67:b1:bd:38: c6:c9:f9:52:5d:b3:f1:5f:2f:c2:b7:1e:ca:19:3d: 58:db:3c:19:d9:e2:e3:15:e9:42:20:d4:34:39:dd: 75:7e:85:1c:32:55:cf:43:49:6d:61:66:99:95:75: 8f:c7:f7:35:d7:f1:c2:a7:d2:26:25:e5:3d:08:a0: 02:eb:a1:dc:7f:c0:42:57:84:e9:b4:38:31:f4:b2: 23:55:50:8d:09:4d:3c:94:33:53:c5:13:f4:32:2c: 7a:33:4a:d7:df:fc:d9:de:63:7c:9f:ff:d4:da:0f: 4a:c1:83:e1:af:59:01:ec:5e:9c:76:a3:22:24:02: 82:88:f0:22:cd:fc:43:b6:54:f4:e2:3c:9c:ca:65: 00:c9:67:03:ce:09:26:21:e4:fa:32:e0:36:6a:e6: da:8c:46:b2:e6:f4:ca:aa:24:7d:3d:58:89:32:9c: e5:90:b1:84:59:72:f8:26:17:22:f5:b4:c9:fa:3c: 20:b2:3e:c1:69:8e:77:14:ff:3d:90:22:a3:f8:15: 4d:d3:3d:2c:81:72:cd:ec:1f:79:3b:6a:36:fa:52: 81:86:a9:7b:f0:ad:aa:a2:ca:69:f8:e7:d1:3f:98: 8a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:62:42:41:11:4B:13:28:D4:58:4A:EF:B7:11:D2:06:16:FE:B5:81 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:45:ad:36:ee:61:fb:4c:16:20:7d:90:60:5b:11:f1:d0:f8: 03:e7:44:f7:d4:2f:83:1b:c3:30:58:c7:a8:d2:d8:b3:9c:19: 35:43:7b:d4:3b:57:07:63:10:f9:9a:de:a1:94:8f:11:81:93: 20:d8:84:49:9c:9b:0b:27:65:9d:94:44:e5:ac:cc:f0:86:ec: 79:c7:7f:73:92:58:28:37:c6:41:64:fe:fb:d5:9e:c8:75:3a: c2:bd:be:8b:ff:56:6c:f9:f4:d0:40:bb:2f:bb:ae:b0:36:57: c4:d8:22:18:2f:50:ac:82:df:e3:76:6b:c1:e7:f5:fd:6c:24: be:98:9c:d7:ca:e4:80:63:bf:e3:5e:df:5b:50:39:6f:26:3a: d0:c8:a7:4d:6c:0c:1f:48:c2:60:6d:9b:54:21:e4:a3:fc:ec: 02:35:06:22:2d:6e:34:b3:de:88:75:55:1b:27:8a:a1:4e:ba: fd:b3:7a:1e:2a:10:6e:58:ef:02:48:77:2a:17:eb:c6:bf:d6: 8b:9e:c4:59:40:a6:59:b3:91:0e:dd:0c:d6:25:ea:2d:0f:80: 50:4e:cb:0f:9c:4c:5b:3b:49:ff:41:d7:87:46:d6:56:e6:03: 34:04:68:ae:27:2d:26:a7:21:33:f1:82:5c:b6:b4:04:07:c1: 3d:37:4c:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUxMTA1MDEwMzMxWhcNMjUxMTEyMDEwMzMxWjAYMRYwFAYD VQQDEw02OTBhYTI2My1iNGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSSWauLuLuFzn2Mo3FiHzrZnUt8Z+DsxUmexvTjGyflSXbPxXy/Ctx7KGT1Y 2zwZ2eLjFelCINQ0Od11foUcMlXPQ0ltYWaZlXWPx/c11/HCp9ImJeU9CKAC66Hc f8BCV4TptDgx9LIjVVCNCU08lDNTxRP0Mix6M0rX3/zZ3mN8n//U2g9KwYPhr1kB 7F6cdqMiJAKCiPAizfxDtlT04jycymUAyWcDzgkmIeT6MuA2aubajEay5vTKqiR9 PViJMpzlkLGEWXL4Jhci9bTJ+jwgsj7BaY53FP89kCKj+BVN0z0sgXLN7B95O2o2 +lKBhql78K2qospp+OfRP5iKUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBiQkER SxMo1FhK77cR0gYW/rWBMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFRa027mH7TBYgfZBgWxHx0PgD50T31C+DG8MwWMeo0tiznBk1Q3vU O1cHYxD5mt6hlI8RgZMg2IRJnJsLJ2WdlETlrMzwhux5x39zklgoN8ZBZP771Z7I dTrCvb6L/1Zs+fTQQLsvu66wNlfE2CIYL1Csgt/jdmvB5/X9bCS+mJzXyuSAY7/j Xt9bUDlvJjrQyKdNbAwfSMJgbZtUIeSj/OwCNQYiLW40s96IdVUbJ4qhTrr9s3oe KhBuWO8CSHcqF+vGv9aLnsRZQKZZs5EO3QzWJeotD4BQTssPnExbO0n/QdeHRtZW 5gM0BGiuJy0mpyEz8YJctrQEB8E9N0y0 -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:02 2025 by rpki-client