$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: S6qbiU59JjURQUeVgI7YI6RQu9zVlUTnt1fF/r1SeiU= Subject key identifier: A4:0A:1A:A0:21:9F:E5:83:28:61:F3:D1:9D:A9:82:97:1B:56:B1:9F Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0AC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0ABB Signing time: Fri 08 Aug 2025 19:47:33 +0000 Manifest this update: Fri 08 Aug 2025 19:47:32 +0000 Manifest next update: Fri 15 Aug 2025 19:47:32 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: 0wI4KyKLCI05nbONMIIN9vHPmvi9/S/teRJCQXZqr+Y=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Aug 8 19:47:32 2025 GMT Not After : Aug 15 19:47:32 2025 GMT Subject: CN=68965454-810f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c8:45:e0:ed:49:1d:4e:41:35:9e:93:cf:e0: 63:73:53:32:02:cf:c7:fd:97:8c:f4:ea:c9:fd:c9: 66:57:22:d8:d7:34:77:dc:5e:bc:bc:12:89:36:61: fa:fd:80:29:ed:5b:a9:43:98:81:06:5b:2e:a9:25: fb:48:30:57:de:5e:a1:ed:40:f7:32:0c:3b:21:c1: 98:d0:ef:03:26:34:21:69:20:16:e1:37:57:4e:7c: f1:6c:97:06:e1:63:7f:4a:61:cc:9d:68:94:19:b0: d5:79:19:69:b7:97:4a:1e:71:5f:db:d8:29:5d:73: f6:6f:0f:fa:96:c7:a2:2a:55:2b:0f:61:ee:dd:d5: 8b:c6:52:cf:1c:a7:3b:1e:36:e8:64:6a:ac:6b:1f: 9e:0d:43:7c:c5:98:dc:ad:c0:00:63:93:6d:5b:c0: 29:13:3e:45:02:42:ca:b2:e3:be:97:42:3e:5a:83: a7:91:b8:f9:9e:45:d9:83:04:fd:8a:cb:c6:85:48: 46:c1:c4:5e:ac:f4:5f:03:ab:57:7d:9e:7e:92:8d: 45:8b:a9:96:1b:36:ab:67:c2:f1:d8:f7:da:6e:77: 98:94:57:3b:04:16:23:b4:9a:ab:d3:f2:d3:28:de: 65:97:71:17:d2:6a:17:0c:29:5d:76:68:22:20:f1: c3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0A:1A:A0:21:9F:E5:83:28:61:F3:D1:9D:A9:82:97:1B:56:B1:9F X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b1:2c:b8:87:c0:52:0e:a3:f8:68:3a:50:77:d2:fd:25:fb: f5:8a:42:3f:b6:b1:16:cb:07:cd:fe:6e:08:e6:c1:88:06:22: 25:fa:53:79:e5:93:89:9e:9c:74:43:e3:b8:8c:82:8a:0e:37: f1:fa:31:22:5b:e8:b6:af:05:2f:ea:b8:08:1c:ce:8b:9f:2a: 6e:1d:fd:7a:ba:76:b4:f3:33:f2:9c:82:46:57:4b:d0:8d:7b: 31:57:1c:49:37:95:ef:78:97:11:90:3f:08:59:58:a1:4d:18: b4:4d:c3:23:dc:31:10:40:80:a8:c9:a2:95:b5:cd:ca:d1:e5: 9e:dc:6e:ad:5d:2c:6b:9e:f4:e2:ee:3c:db:63:50:da:9d:54: 60:d8:9c:df:62:db:2d:4d:af:67:7f:25:c0:15:7d:9e:1e:58: 69:35:fa:0a:f1:0c:3b:bf:d4:40:f9:a5:72:4f:14:c6:69:a0: b1:b2:a3:33:84:4b:cc:cc:3d:86:2d:64:a5:2d:73:da:17:58: 64:9b:cf:bd:7f:ce:b9:76:62:4e:69:61:b0:f6:76:12:25:25: b6:1c:fb:d8:4a:9a:5f:88:2e:45:2b:c0:59:ed:b5:2b:51:6f: cf:26:b9:61:ad:0a:f8:56:d0:aa:c8:ce:93:39:0b:f2:df:58: 8f:11:b1:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUwODA4MTk0NzMyWhcNMjUwODE1MTk0NzMyWjAYMRYwFAYD VQQDEw02ODk2NTQ1NC04MTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMhF4O1JHU5BNZ6Tz+Bjc1MyAs/H/ZeM9OrJ/clmVyLY1zR33F68vBKJNmH6 /YAp7VupQ5iBBlsuqSX7SDBX3l6h7UD3Mgw7IcGY0O8DJjQhaSAW4TdXTnzxbJcG 4WN/SmHMnWiUGbDVeRlpt5dKHnFf29gpXXP2bw/6lseiKlUrD2Hu3dWLxlLPHKc7 HjboZGqsax+eDUN8xZjcrcAAY5NtW8ApEz5FAkLKsuO+l0I+WoOnkbj5nkXZgwT9 isvGhUhGwcRerPRfA6tXfZ5+ko1Fi6mWGzarZ8Lx2PfabneYlFc7BBYjtJqr0/LT KN5ll3EX0moXDClddmgiIPHDIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQKGqAh n+WDKGHz0Z2pgpcbVrGfMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLsSy4h8BSDqP4aDpQd9L9Jfv1ikI/trEWywfN/m4I5sGIBiIl+lN5 5ZOJnpx0Q+O4jIKKDjfx+jEiW+i2rwUv6rgIHM6LnypuHf16una08zPynIJGV0vQ jXsxVxxJN5XveJcRkD8IWVihTRi0TcMj3DEQQICoyaKVtc3K0eWe3G6tXSxrnvTi 7jzbY1DanVRg2JzfYtstTa9nfyXAFX2eHlhpNfoK8Qw7v9RA+aVyTxTGaaCxsqMz hEvMzD2GLWSlLXPaF1hkm8+9f865dmJOaWGw9nYSJSW2HPvYSppfiC5FK8BZ7bUr UW/PJrlhrQr4VtCqyM6TOQvy31iPEbHw -----END CERTIFICATE-----Generated at Sat Aug 9 05:47:42 2025 by rpki-client