$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: XdRIf+lgaCrH4qhjwlGyjyGlZw0m5TyjSykL8tzQ8js= Subject key identifier: 5C:0D:48:8A:A7:37:76:5E:29:99:F1:F0:E0:D4:E9:3E:88:DD:6B:02 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 02F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 02F2 Signing time: Fri 25 Apr 2025 01:03:33 +0000 Manifest this update: Fri 25 Apr 2025 01:03:33 +0000 Manifest next update: Fri 02 May 2025 01:03:33 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: i48taFSbxv3hzVrXnesWUTsG8MJiqDp/3t7jIIkGVpM=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: Ndv96M8Ng8Yhc+hqMCZXKR8WR+dlXaccNTf0miARuPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Apr 25 01:03:33 2025 GMT Not After : May 2 01:03:33 2025 GMT Subject: CN=680adf65-8b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6a:2d:58:5f:a3:09:dd:6d:b0:55:a1:e9:59: 6c:8d:d1:9f:14:2c:72:69:a7:b5:a5:76:ba:f6:6e: e5:87:89:37:8e:13:97:41:7e:34:ca:c1:e9:c1:4f: ca:b9:f9:2f:be:70:ef:2a:4f:30:66:a9:0d:f0:ec: 0a:e4:5a:54:92:9c:10:27:89:c3:20:61:6c:81:fd: 4b:b2:0d:20:15:b7:95:bb:77:e9:e0:65:51:c6:55: aa:64:96:44:db:fd:5a:41:cf:02:4f:d5:1e:c6:57: f8:b4:bf:16:4c:7b:2f:04:38:30:e0:89:f6:e0:4c: 63:94:a3:33:84:ef:e3:78:c7:f0:87:68:3c:d2:60: 5d:ae:aa:b1:c2:75:dc:6e:5c:f5:87:ac:07:6c:1c: 24:f0:5e:bb:6e:73:82:e5:8a:c4:40:9d:8f:d0:47: 81:af:b6:6f:5d:5e:6e:bf:20:ec:33:2f:0e:8d:74: 4c:46:93:55:81:96:e9:e5:5e:00:76:3a:f9:95:a6: e1:d1:1c:43:23:3b:e6:18:3a:18:94:38:c9:32:f8: 65:43:74:07:93:f9:68:e8:ef:66:c7:46:b4:b3:3e: c6:a4:2b:b3:b9:39:27:09:fb:71:be:51:85:64:b1: a2:bd:f9:9a:7f:5d:6f:8f:a6:d1:23:f3:be:c7:2a: 6f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0D:48:8A:A7:37:76:5E:29:99:F1:F0:E0:D4:E9:3E:88:DD:6B:02 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:e9:78:5d:35:b6:1a:c2:93:02:cb:6e:c0:eb:a6:47:1c:47: e2:44:b3:f3:be:5d:b5:23:1a:7c:e5:d6:91:a2:b8:8f:39:02: 3e:51:dd:a1:6b:dd:0b:cb:a6:94:65:3f:5d:83:ce:9f:70:57: 01:21:b0:af:42:7c:f9:fc:d4:2f:15:84:9f:db:66:0e:d9:74: 68:3f:13:2e:8a:f1:ee:4d:0c:f0:f4:3b:6a:7d:9b:ee:14:61: 69:11:6a:93:71:49:7c:bc:0e:be:44:b2:96:68:60:d8:ee:17: 4c:f5:3a:bd:31:bd:d9:cf:c7:2e:b0:35:07:05:54:06:63:e3: 78:6d:e1:d8:d5:aa:b0:1c:63:a4:9e:cd:ad:5e:e4:f7:cc:d9: 27:c2:b1:b0:60:69:77:6e:0a:99:17:4d:3d:1a:85:7d:3d:c9: c5:e2:0e:5c:f0:1f:ac:77:04:36:74:96:32:e0:f5:9e:ce:5d: aa:ca:86:37:22:38:f3:71:03:d8:7e:63:a5:68:67:d0:0b:4f: 28:78:f9:58:e1:8e:0d:69:13:09:04:15:94:38:9c:4c:8a:6d: 8e:e9:57:a7:ad:b2:f7:8e:97:99:21:f9:9e:ed:96:1d:ce:0a: c6:f0:45:a9:b3:08:29:49:ad:4c:bf:bf:26:25:1d:46:7e:db: 47:da:f6:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwNDI1MDEwMzMzWhcNMjUwNTAyMDEwMzMzWjAYMRYwFAYD VQQDEw02ODBhZGY2NS04YjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2otWF+jCd1tsFWh6VlsjdGfFCxyaae1pXa69m7lh4k3jhOXQX40ysHpwU/K ufkvvnDvKk8wZqkN8OwK5FpUkpwQJ4nDIGFsgf1Lsg0gFbeVu3fp4GVRxlWqZJZE 2/1aQc8CT9Uexlf4tL8WTHsvBDgw4In24ExjlKMzhO/jeMfwh2g80mBdrqqxwnXc blz1h6wHbBwk8F67bnOC5YrEQJ2P0EeBr7ZvXV5uvyDsMy8OjXRMRpNVgZbp5V4A djr5labh0RxDIzvmGDoYlDjJMvhlQ3QHk/lo6O9mx0a0sz7GpCuzuTknCftxvlGF ZLGivfmaf11vj6bRI/O+xypvJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwNSIqn N3ZeKZnx8ODU6T6I3WsCMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ6XhdNbYawpMCy27A66ZHHEfiRLPzvl21Ixp85daRoriPOQI+Ud2h a90Ly6aUZT9dg86fcFcBIbCvQnz5/NQvFYSf22YO2XRoPxMuivHuTQzw9DtqfZvu FGFpEWqTcUl8vA6+RLKWaGDY7hdM9Tq9Mb3Zz8cusDUHBVQGY+N4beHY1aqwHGOk ns2tXuT3zNknwrGwYGl3bgqZF009GoV9PcnF4g5c8B+sdwQ2dJYy4PWezl2qyoY3 IjjzcQPYfmOlaGfQC08oePlY4Y4NaRMJBBWUOJxMim2O6VenrbL3jpeZIfme7ZYd zgrG8EWpswgpSa1Mv78mJR1GfttH2vYG -----END CERTIFICATE-----Generated at Sat Apr 26 12:39:51 2025 by rpki-client