$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: +qDyC83xfeUwGia4aS1TzeY11PI4EcSeHe9gZPAfcRE= Subject key identifier: 08:DD:D7:C3:0F:57:8D:32:4E:0D:E9:12:05:3A:3D:58:CE:3B:0E:00 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 032F Signing time: Thu 21 Aug 2025 01:16:44 +0000 Manifest this update: Thu 21 Aug 2025 01:16:43 +0000 Manifest next update: Thu 28 Aug 2025 01:16:43 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: Dir4gbH2O+kTSjZ8tmcgnLARw8pjJ97d76SGKmv7lnE=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: T+/E3ylnKO/PWrVwuEVYj1NKgrY3/SChhT5eNdM1fbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Aug 21 01:16:43 2025 GMT Not After : Aug 28 01:16:43 2025 GMT Subject: CN=68a6737b-8c17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:14:e0:a4:aa:4a:16:45:6a:f9:6b:7b:41:af: ed:a3:d0:05:67:97:b5:0f:8d:4d:a0:07:87:77:ca: d3:cf:8f:23:14:a0:5d:fb:ec:ec:1f:1f:e5:b5:08: a8:c9:de:d3:9e:6c:55:ef:a8:72:a0:35:54:29:f1: 71:20:e2:6b:92:ae:0c:f2:90:42:54:9c:2c:6c:1f: dc:71:b1:02:78:20:5f:94:ff:07:aa:e9:6c:b2:63: 78:b1:2c:1c:f0:c1:2b:d5:9d:af:45:36:7b:25:c9: a8:a3:04:0f:ca:92:dd:bb:7f:bf:47:81:e9:97:0e: b5:03:ee:69:46:c3:23:b5:75:4e:de:45:44:5f:ff: d0:23:87:b5:cc:66:37:6a:af:2e:b9:f4:5a:f1:73: d4:5a:20:ec:ca:5e:84:c4:2c:16:de:07:e7:c3:4b: d6:38:0e:c6:78:7e:b6:e9:84:7d:08:5b:26:7b:d0: 40:45:f5:ee:7c:eb:4c:8d:ef:57:58:95:eb:0a:96: 05:a3:a6:8a:38:6f:9e:3d:37:64:40:ad:1d:f0:34: 2b:ad:e2:7f:ef:47:32:33:64:bc:a1:cb:e7:06:fb: 58:58:7c:78:02:be:25:9d:a3:cc:3c:c7:ff:67:fe: f4:f6:4b:a8:30:a9:8e:d4:58:b1:7f:6e:9e:2c:6d: d6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:DD:D7:C3:0F:57:8D:32:4E:0D:E9:12:05:3A:3D:58:CE:3B:0E:00 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f1:3d:d2:af:56:1e:7b:3a:0d:4e:29:5d:8a:25:63:a2:8d: ca:9f:d9:0a:0b:33:7c:8d:ff:25:bf:64:52:e5:c2:41:3e:30: df:09:f4:63:a2:53:f3:09:0f:b3:22:3a:78:04:9a:3b:b3:cd: c9:92:9a:67:c5:18:89:06:9e:ec:9e:2b:31:59:98:61:21:56: ab:4c:cb:82:c8:e0:b3:39:73:ce:c8:2e:25:29:e8:a5:c5:7e: ee:37:ba:82:39:c2:dd:f2:9f:5b:3a:9c:e0:98:65:e5:49:d1: 4e:47:04:57:ee:10:cb:71:7f:e2:25:08:70:03:de:76:16:c8: ed:d1:fb:d1:bd:b3:b2:87:ac:fb:0a:42:d9:02:38:8d:e9:1b: 34:1a:d8:0c:02:8f:b9:90:63:46:83:6f:f3:2c:01:ed:12:75: e6:5d:02:ba:1a:22:7c:51:31:4e:f0:37:04:5a:6a:3e:a0:85: 45:4c:62:5d:5a:18:ec:3f:4b:c9:17:48:f1:38:b0:6f:0e:d8: 66:8a:b4:d4:38:97:2e:a0:dd:b8:ff:cc:d0:20:2b:2a:c9:62: fb:92:84:9b:b7:dd:12:cf:6b:cd:9e:15:7e:f5:53:eb:92:07: 05:b8:78:aa:80:d8:f7:d6:49:e1:a9:84:e2:e7:38:ba:98:9b: b2:4a:5c:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwODIxMDExNjQzWhcNMjUwODI4MDExNjQzWjAYMRYwFAYD VQQDEw02OGE2NzM3Yi04YzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBTgpKpKFkVq+Wt7Qa/to9AFZ5e1D41NoAeHd8rTz48jFKBd++zsHx/ltQio yd7TnmxV76hyoDVUKfFxIOJrkq4M8pBCVJwsbB/ccbECeCBflP8HqulssmN4sSwc 8MEr1Z2vRTZ7JcmoowQPypLdu3+/R4Hplw61A+5pRsMjtXVO3kVEX//QI4e1zGY3 aq8uufRa8XPUWiDsyl6ExCwW3gfnw0vWOA7GeH626YR9CFsme9BARfXufOtMje9X WJXrCpYFo6aKOG+ePTdkQK0d8DQrreJ/70cyM2S8ocvnBvtYWHx4Ar4lnaPMPMf/ Z/709kuoMKmO1Fixf26eLG3W2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjd18MP V40yTg3pEgU6PVjOOw4AMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA08T3Sr1YeezoNTildiiVjoo3Kn9kKCzN8jf8lv2RS5cJBPjDfCfRj olPzCQ+zIjp4BJo7s83JkppnxRiJBp7snisxWZhhIVarTMuCyOCzOXPOyC4lKeil xX7uN7qCOcLd8p9bOpzgmGXlSdFORwRX7hDLcX/iJQhwA952Fsjt0fvRvbOyh6z7 CkLZAjiN6Rs0GtgMAo+5kGNGg2/zLAHtEnXmXQK6GiJ8UTFO8DcEWmo+oIVFTGJd WhjsP0vJF0jxOLBvDthmirTUOJcuoN24/8zQICsqyWL7koSbt90Sz2vNnhV+9VPr kgcFuHiqgNj31knhqYTi5zi6mJuySlxc -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:15 2025 by rpki-client