$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: C+XosXDPcNZlmBEQOj2vXdyLfw+SPcyGDX2XhXI5daY= Subject key identifier: 85:0C:B6:16:42:7B:9D:5D:EE:CD:BB:12:12:2A:67:68:1D:D9:D1:8E Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0309 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 0306 Signing time: Thu 05 Jun 2025 01:05:16 +0000 Manifest this update: Thu 05 Jun 2025 01:05:15 +0000 Manifest next update: Thu 12 Jun 2025 01:05:15 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: rubBtfbqnFZ9cNMqVDyBOgavy3ouVRWVTGEdPM4/JnE=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: Ndv96M8Ng8Yhc+hqMCZXKR8WR+dlXaccNTf0miARuPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Jun 5 01:05:15 2025 GMT Not After : Jun 12 01:05:15 2025 GMT Subject: CN=6840ed4b-c29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ce:3a:3c:c7:de:97:15:70:7e:66:2b:ac:97: 36:13:ba:93:de:51:81:7e:65:13:19:d1:66:d1:22: 4f:a7:e0:55:da:a6:9d:9c:28:b0:13:15:88:49:db: c3:57:33:d5:a4:39:06:fd:4a:29:1f:97:82:79:c3: ea:6c:19:2e:52:6a:16:0d:62:18:47:d1:4a:d4:ae: b1:42:ed:8f:77:bc:ff:9b:51:ae:e2:89:1b:56:63: e7:e6:0f:d7:12:0c:47:10:7b:c7:c8:f9:83:01:0e: 40:38:a7:da:c2:f9:f6:68:73:23:65:50:57:a0:5f: 9f:85:8d:a8:a4:24:97:1c:10:c9:d6:4b:c3:4b:72: c9:bc:76:09:02:1d:04:72:58:36:fa:3b:19:2f:04: 10:69:cf:a1:99:ee:7e:9f:91:5b:ac:16:dc:8c:29: 22:9b:56:60:c3:04:35:ba:f4:75:a0:bb:ae:21:df: 0e:4b:5d:ca:e0:94:f1:76:ae:cb:59:2f:bc:eb:05: 6b:ea:57:e5:4e:87:21:d9:6e:82:1c:bc:08:d6:65: 6e:d2:1c:8e:d5:1a:92:88:05:11:12:13:e8:01:1a: c4:fa:0b:13:fc:c1:f3:9d:39:3e:28:bd:65:74:53: 55:d0:f9:42:ee:0d:34:28:5e:b2:6b:12:2f:22:00: ea:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0C:B6:16:42:7B:9D:5D:EE:CD:BB:12:12:2A:67:68:1D:D9:D1:8E X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f1:c5:72:fa:31:36:15:a8:62:f4:5e:91:b3:f0:e0:db:9f: e3:7e:96:32:8a:93:89:c1:70:8a:7c:e0:2e:3a:fe:ad:08:31: da:58:bb:59:c3:45:ec:f7:ac:14:da:e3:15:f3:5b:46:68:28: 2a:70:7f:20:ea:f3:dc:36:42:57:d4:bc:cf:36:bb:b5:66:fd: 7e:2d:a7:5c:b2:d3:59:30:b4:b7:ad:91:8d:5d:5a:37:fb:4b: e7:80:86:9a:6f:d5:c1:da:8a:75:cb:59:db:85:9a:4c:5c:eb: db:2c:7e:53:2a:5d:74:8e:e3:6c:48:29:97:3b:47:01:5a:30: 0f:45:84:d0:ac:c9:46:f1:57:52:ba:8e:4f:ab:69:8e:23:d1: 68:7b:86:ec:5b:62:66:35:3b:f5:4e:6c:ca:db:a8:4a:c6:23: 93:19:5c:74:a8:2f:b5:5f:f8:9a:d4:f1:e9:71:9b:10:7c:c9: a7:d3:4f:5c:19:3d:5e:52:33:f4:d8:67:d6:fc:ac:4a:28:de: 8c:4c:71:16:67:78:44:42:68:f7:0d:53:df:69:5f:3c:e3:48: 08:3c:3a:24:ef:c5:f2:91:ca:52:10:12:25:74:b4:6e:5c:bd: 44:65:a2:5b:6e:a2:5f:a7:80:5a:1d:79:f2:2b:d7:2d:f7:dc: 3a:02:ad:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwNjA1MDEwNTE1WhcNMjUwNjEyMDEwNTE1WjAYMRYwFAYD VQQDEw02ODQwZWQ0Yi1jMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzM46PMfelxVwfmYrrJc2E7qT3lGBfmUTGdFm0SJPp+BV2qadnCiwExWISdvD VzPVpDkG/UopH5eCecPqbBkuUmoWDWIYR9FK1K6xQu2Pd7z/m1Gu4okbVmPn5g/X EgxHEHvHyPmDAQ5AOKfawvn2aHMjZVBXoF+fhY2opCSXHBDJ1kvDS3LJvHYJAh0E clg2+jsZLwQQac+hme5+n5FbrBbcjCkim1ZgwwQ1uvR1oLuuId8OS13K4JTxdq7L WS+86wVr6lflToch2W6CHLwI1mVu0hyO1RqSiAUREhPoARrE+gsT/MHznTk+KL1l dFNV0PlC7g00KF6yaxIvIgDq5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUMthZC e51d7s27EhIqZ2gd2dGOMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI8cVy+jE2Fahi9F6Rs/Dg25/jfpYyipOJwXCKfOAuOv6tCDHaWLtZ w0Xs96wU2uMV81tGaCgqcH8g6vPcNkJX1LzPNru1Zv1+LadcstNZMLS3rZGNXVo3 +0vngIaab9XB2op1y1nbhZpMXOvbLH5TKl10juNsSCmXO0cBWjAPRYTQrMlG8VdS uo5Pq2mOI9Foe4bsW2JmNTv1TmzK26hKxiOTGVx0qC+1X/ia1PHpcZsQfMmn009c GT1eUjP02GfW/KxKKN6MTHEWZ3hEQmj3DVPfaV8840gIPDok78XykcpSEBIldLRu XL1EZaJbbqJfp4BaHXnyK9ct99w6Aq1W -----END CERTIFICATE-----Generated at Thu Jun 5 20:08:19 2025 by rpki-client