$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: bkUOymK2Ff3xX0OuYKVmcGWLUNkoywUFBDsiWFeehuo= Subject key identifier: 76:47:F9:08:46:2C:46:64:91:37:41:A5:29:2F:C7:51:D7:91:AF:14 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 032E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 032A Signing time: Mon 11 Aug 2025 01:20:26 +0000 Manifest this update: Mon 11 Aug 2025 01:20:26 +0000 Manifest next update: Mon 18 Aug 2025 01:20:26 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: G7M4z6m2JlbktbuEL/Ti9ItME+SrRYAGp54wPfJezhI=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: T+/E3ylnKO/PWrVwuEVYj1NKgrY3/SChhT5eNdM1fbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 814 (0x32e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2, serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Aug 11 01:20:26 2025 GMT Not After : Aug 18 01:20:26 2025 GMT Subject: CN=6899455a-2d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c4:f2:6d:91:19:4e:b9:39:ae:f6:7b:6f:66: f4:7a:0b:df:28:09:de:fd:5b:85:2e:98:d5:11:85: 6b:f9:6f:f5:9f:fb:a0:d3:18:92:e7:3a:84:58:f2: 42:fb:bd:25:c2:57:fc:8f:b2:15:97:8b:6f:63:ed: 84:42:09:f9:90:9f:15:a5:b3:a8:b6:a7:b4:c2:a5: 87:1d:59:bd:b3:f9:f1:45:3d:bf:52:2b:8f:e2:5f: d1:64:a3:2d:0c:59:98:85:15:6b:ee:48:da:86:54: ec:87:ba:66:38:7c:46:ee:7c:e7:1f:be:18:86:3c: c6:ab:e0:c9:10:ce:b9:00:24:95:d0:54:6b:c3:38: db:3f:ca:88:37:51:5d:86:dd:18:2a:34:d3:00:c7: 6e:29:22:4f:ae:c8:e3:eb:60:09:e9:ed:b8:22:10: cd:31:19:70:05:86:de:8b:4f:23:fa:e3:23:5e:bf: fc:64:a1:1c:05:d9:59:dc:34:42:71:d9:8c:b4:fb: c2:a8:1d:48:cf:06:4a:41:15:74:44:38:76:28:ca: ea:3d:81:70:d8:f5:86:e8:a3:6e:9e:8e:7f:dc:d2: 9d:b1:87:54:a9:98:a9:d4:3c:74:e2:41:44:b5:2f: 78:33:ac:50:8f:63:c3:80:ed:a1:c7:11:d0:9e:f1: c9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:47:F9:08:46:2C:46:64:91:37:41:A5:29:2F:C7:51:D7:91:AF:14 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:65:5d:0c:09:a5:c2:ef:3f:38:4c:4d:da:c9:75:a0:75:65: 17:9a:0f:88:10:96:fb:d2:d1:34:fe:f9:34:83:3f:ce:f2:74: 6a:8d:89:3f:43:8c:bb:60:c6:dc:56:96:30:88:4a:71:b3:d9: 09:cb:06:6a:c4:2d:ea:64:3a:66:8f:64:78:10:14:03:f4:4f: 67:57:fd:9d:ed:14:c2:a2:4d:ea:dc:1a:c7:ec:b1:70:5b:a5: a0:36:25:45:3d:11:33:14:84:2e:2d:35:9a:77:b1:6c:27:31: ff:9c:cc:c0:00:23:03:4a:8f:53:49:aa:c9:75:07:82:c4:39: fe:62:35:70:91:b3:87:12:aa:e7:f6:95:d5:a0:45:ae:b7:4e: 59:6c:b5:c6:9b:7f:57:ce:3d:b0:2e:fb:b7:f2:ff:46:13:79: 5d:84:98:57:22:98:92:36:31:62:f0:83:21:f0:86:01:ff:04: 8b:d5:f5:5a:05:f4:7a:48:34:94:98:bc:7a:49:bc:c3:87:62: 44:33:bb:a0:e6:af:ab:4a:33:a1:dc:77:fc:f1:11:e7:1f:ef: e5:bd:57:65:13:a1:5c:14:41:2f:22:95:ac:17:39:58:58:99: 83:d0:ea:47:fe:43:36:8f:cc:37:76:3e:51:65:1d:41:b0:4b: 45:63:e3:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjUwODExMDEyMDI2WhcNMjUwODE4MDEyMDI2WjAYMRYwFAYD VQQDEw02ODk5NDU1YS0yZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8TybZEZTrk5rvZ7b2b0egvfKAne/VuFLpjVEYVr+W/1n/ug0xiS5zqEWPJC +70lwlf8j7IVl4tvY+2EQgn5kJ8VpbOotqe0wqWHHVm9s/nxRT2/UiuP4l/RZKMt DFmYhRVr7kjahlTsh7pmOHxG7nznH74YhjzGq+DJEM65ACSV0FRrwzjbP8qIN1Fd ht0YKjTTAMduKSJPrsjj62AJ6e24IhDNMRlwBYbei08j+uMjXr/8ZKEcBdlZ3DRC cdmMtPvCqB1IzwZKQRV0RDh2KMrqPYFw2PWG6KNuno5/3NKdsYdUqZip1Dx04kFE tS94M6xQj2PDgO2hxxHQnvHJhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZH+QhG LEZkkTdBpSkvx1HXka8UMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcZV0MCaXC7z84TE3ayXWgdWUXmg+IEJb70tE0/vk0gz/O8nRqjYk/ Q4y7YMbcVpYwiEpxs9kJywZqxC3qZDpmj2R4EBQD9E9nV/2d7RTCok3q3BrH7LFw W6WgNiVFPREzFIQuLTWad7FsJzH/nMzAACMDSo9TSarJdQeCxDn+YjVwkbOHEqrn 9pXVoEWut05ZbLXGm39Xzj2wLvu38v9GE3ldhJhXIpiSNjFi8IMh8IYB/wSL1fVa BfR6SDSUmLx6SbzDh2JEM7ug5q+rSjOh3Hf88RHnH+/lvVdlE6FcFEEvIpWsFzlY WJmD0OpH/kM2j8w3dj5RZR1BsEtFY+Mx -----END CERTIFICATE-----Generated at Mon Aug 11 10:32:12 2025 by rpki-client