$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: ERKyCM1HF3sqhG20EDxMcd/Gz2t+QGOgow16TripgCo= Subject key identifier: 7A:21:1E:78:3C:60:98:46:DB:EE:B9:FB:29:E1:00:79:5B:53:BE:5B Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 03AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 03A4 Signing time: Sun 05 Apr 2026 00:29:44 +0000 Manifest this update: Sun 05 Apr 2026 00:29:44 +0000 Manifest next update: Sun 12 Apr 2026 00:29:44 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: R2E9xAAbhZ5xLrnrZI41QoJM2ndimpeRqHI0c4aY5sI=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: PgJ9XNDU/ajrVdWQinUWewn6SR1kOOmwJgma6udOIns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Apr 5 00:29:44 2026 GMT Not After : Apr 12 00:29:44 2026 GMT Subject: CN=69d1acf8-76a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:30:72:d3:33:17:1a:0d:9d:41:5c:35:28:29: cf:53:dd:aa:6b:28:47:5d:95:d3:40:ac:dd:3e:88: 26:8b:aa:ca:e0:dd:f8:32:92:b5:2a:71:73:e8:87: ac:bc:4f:15:81:45:c4:cc:1c:2f:0b:9c:b8:20:ca: 8f:76:3b:6a:b5:7f:27:3a:1e:7d:27:af:85:fd:28: 6a:9b:f3:04:fb:3b:08:52:9d:05:4a:06:94:0a:86: bd:36:18:bd:8b:c0:a5:cc:e8:06:17:b8:8f:92:15: 51:0e:71:44:30:e8:9a:a6:65:a2:84:bd:12:56:89: d8:12:d8:41:da:7f:82:d3:2a:e4:17:af:18:86:59: 53:91:66:58:51:a5:96:2d:15:f1:27:4d:7a:06:6e: 06:60:b1:95:01:a9:31:fd:b9:2a:22:72:0e:1c:73: 35:7b:7b:5a:fe:13:a8:42:44:01:7a:02:d2:2e:e0: 85:31:6c:45:52:41:76:9d:26:3e:f3:5a:27:7a:98: d6:32:05:51:6e:02:c2:5d:4e:71:ab:fc:e2:b3:8e: fc:79:98:72:8c:40:f0:06:80:dc:fa:19:de:50:c1: 52:4c:b9:db:66:9c:4b:b4:85:a9:8a:fb:fa:bf:71: 8b:e2:34:ab:4e:bc:f4:f4:e7:1c:fd:bd:40:b5:bd: b2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:21:1E:78:3C:60:98:46:DB:EE:B9:FB:29:E1:00:79:5B:53:BE:5B X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:71:ae:72:aa:a7:0b:eb:43:1d:1b:6f:f9:e9:73:c3:91:5d: 7b:ae:a2:11:fb:6c:b8:1e:2c:49:c9:b1:dd:a5:ab:28:f5:8a: ff:ed:c5:ee:2e:44:fe:8c:09:1d:fc:06:e9:8e:e4:5d:c4:5b: 77:66:d1:68:ed:a4:49:d6:cd:f9:25:75:93:02:35:c9:ee:5e: 12:81:39:ce:1f:b6:bb:d3:4f:f4:60:ef:cb:ca:c3:ca:26:89: 4a:7d:64:f6:31:10:df:e5:89:3f:cd:61:91:64:36:dc:8d:65: e4:ab:21:2f:96:0f:20:92:5a:3e:c8:b1:17:86:7b:ac:20:2e: 1d:a2:00:d1:b6:b6:cd:08:7f:69:1c:a9:d3:af:cc:c3:55:2e: 74:60:16:10:c2:11:35:ed:e9:97:0a:48:a7:e0:ed:7b:46:8e: 9c:55:cb:9a:20:68:06:66:c6:50:6c:4d:d6:4c:5b:61:77:a7: dd:1f:be:8a:c4:40:e7:bc:01:ad:03:bb:be:1c:d7:ea:bd:2c: a6:59:42:1e:6c:4b:64:f9:6c:5b:9f:92:c6:e1:a8:44:0b:bb: bf:7e:29:ea:0e:e4:05:a2:1c:6c:60:2a:bb:ff:51:ed:f8:26: 63:64:ce:f3:09:91:75:ac:60:9e:c0:2e:38:23:c0:aa:c8:63: de:2f:37:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjYwNDA1MDAyOTQ0WhcNMjYwNDEyMDAyOTQ0WjAYMRYwFAYD VQQDEw02OWQxYWNmOC03NmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojBy0zMXGg2dQVw1KCnPU92qayhHXZXTQKzdPogmi6rK4N34MpK1KnFz6Ies vE8VgUXEzBwvC5y4IMqPdjtqtX8nOh59J6+F/Shqm/ME+zsIUp0FSgaUCoa9Nhi9 i8ClzOgGF7iPkhVRDnFEMOiapmWihL0SVonYEthB2n+C0yrkF68YhllTkWZYUaWW LRXxJ016Bm4GYLGVAakx/bkqInIOHHM1e3ta/hOoQkQBegLSLuCFMWxFUkF2nSY+ 81onepjWMgVRbgLCXU5xq/zis478eZhyjEDwBoDc+hneUMFSTLnbZpxLtIWpivv6 v3GL4jSrTrz09Occ/b1Atb2yOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHohHng8 YJhG2+65+ynhAHlbU75bMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbXGucqqnC+tDHRtv+elzw5Fde66iEftsuB4sScmx3aWrKPWK/+3F7i5E/owJ HfwG6Y7kXcRbd2bRaO2kSdbN+SV1kwI1ye5eEoE5zh+2u9NP9GDvy8rDyiaJSn1k 9jEQ3+WJP81hkWQ23I1l5KshL5YPIJJaPsixF4Z7rCAuHaIA0ba2zQh/aRyp06/M w1UudGAWEMIRNe3plwpIp+Dte0aOnFXLmiBoBmbGUGxN1kxbYXen3R++isRA57wB rQO7vhzX6r0spllCHmxLZPlsW5+SxuGoRAu7v34p6g7kBaIcbGAqu/9R7fgmY2TO 8wmRdaxgnsAuOCPAqshj3i83Vg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:04:19 2026 by rpki-client