$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: J0kFmY2cKCoaonoH9GjfaAIdCswRcZI+ex6FdIIQmko= Subject key identifier: F8:04:63:38:F1:73:D4:44:7C:8E:83:1B:B9:06:B4:8C:54:20:6E:51 Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0A8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0A86 Signing time: Thu 24 Apr 2025 19:28:57 +0000 Manifest this update: Thu 24 Apr 2025 19:28:57 +0000 Manifest next update: Thu 01 May 2025 19:28:57 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: WdobgXYBaIz6cIbbc2ec3P5SCFYsZ1E98oVG+9u/NvA=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2701 (0xa8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Apr 24 19:28:57 2025 GMT Not After : May 1 19:28:57 2025 GMT Subject: CN=680a90f9-9957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:cc:cc:12:16:ad:ac:70:a7:52:db:27:d1: 59:d6:83:80:49:3b:5d:e8:e0:5d:fd:40:74:bb:22: d9:6a:11:3a:00:84:b0:45:30:c9:bb:01:3d:f8:d6: 16:e4:1e:94:00:e2:2e:9a:a0:43:e9:b9:3c:87:d1: 7d:69:4f:9e:a9:d4:21:75:60:05:3b:32:5c:55:90: 47:06:95:2f:e6:bc:2a:c3:ef:ed:50:d6:7b:f8:d2: 59:96:08:b1:27:bf:a7:3a:82:49:15:3b:61:92:5c: d8:6e:1c:4d:12:ab:97:64:5e:7e:b3:38:c4:e9:3c: 20:de:64:f8:42:0f:d6:80:fb:d8:14:65:55:af:69: 15:36:3c:4f:08:7e:61:82:f1:cd:1d:a9:fd:ca:05: 81:23:2f:8d:26:98:8d:30:22:57:98:58:a1:9e:15: e0:2b:74:5c:22:ab:d7:36:e6:aa:3a:df:77:2c:62: 16:44:77:ce:0c:45:2c:67:f8:5c:b0:c1:5f:66:76: 16:0c:dc:e1:50:f9:c6:d7:a2:0c:9f:25:ba:ea:ee: b8:49:c5:d0:99:6b:86:77:2a:86:61:28:bd:2c:7c: 1d:58:a1:8a:67:50:01:4a:a9:bc:06:3b:4f:67:c9: 46:05:37:a3:f8:5d:6a:1e:24:b7:fd:ad:95:b4:cf: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:04:63:38:F1:73:D4:44:7C:8E:83:1B:B9:06:B4:8C:54:20:6E:51 X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:04:35:4a:e0:b5:fc:2b:dd:3d:b8:43:19:ca:ab:f1:e8:49: c0:9c:44:c0:ba:81:cb:53:ad:ea:0f:f3:9d:41:9c:d6:a7:ae: 47:5c:9b:e4:fd:3e:ac:8c:d1:c0:02:21:73:19:72:e2:8c:22: ec:16:8d:f7:95:52:d4:10:a1:3a:f3:ea:54:c0:fc:46:96:72: 0a:bd:56:4b:3a:0f:7c:0e:39:d2:8d:96:3f:f5:15:c8:f8:61: fa:69:07:22:43:c8:6c:61:36:1a:2c:b5:f7:dd:9d:61:ad:b0: 46:8c:13:92:03:b6:8c:6f:01:bf:10:71:24:b1:4d:8a:61:e7: 11:61:b4:32:ea:84:27:34:0b:6c:e2:77:b3:6b:e7:da:7f:51: 14:ec:b5:9b:c9:16:78:c8:5b:eb:c3:3b:98:e9:38:74:8e:d1: 1e:ff:8a:7b:2c:89:1b:64:cd:46:97:65:5d:90:fe:31:61:cf: db:9e:cf:32:a0:84:b7:a4:dd:52:02:0a:03:4c:a9:f5:a2:1a: ff:85:a5:bc:3f:7c:12:90:12:27:19:44:fe:2a:ff:7a:30:e4: fa:4c:52:ad:43:d0:45:34:c6:60:58:a1:77:db:c1:48:42:df: c0:0f:29:d2:6d:93:7d:20:80:c6:5c:c5:d1:3e:c9:59:41:60: 98:4b:11:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUwNDI0MTkyODU3WhcNMjUwNTAxMTkyODU3WjAYMRYwFAYD VQQDEw02ODBhOTBmOS05OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw43MzBIWraxwp1LbJ9FZ1oOASTtd6OBd/UB0uyLZahE6AISwRTDJuwE9+NYW 5B6UAOIumqBD6bk8h9F9aU+eqdQhdWAFOzJcVZBHBpUv5rwqw+/tUNZ7+NJZlgix J7+nOoJJFTthklzYbhxNEquXZF5+szjE6Twg3mT4Qg/WgPvYFGVVr2kVNjxPCH5h gvHNHan9ygWBIy+NJpiNMCJXmFihnhXgK3RcIqvXNuaqOt93LGIWRHfODEUsZ/hc sMFfZnYWDNzhUPnG16IMnyW66u64ScXQmWuGdyqGYSi9LHwdWKGKZ1ABSqm8BjtP Z8lGBTej+F1qHiS3/a2VtM+ZnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgEYzjx c9REfI6DG7kGtIxUIG5RMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwBDVK4LX8K909uEMZyqvx6EnAnETAuoHLU63qD/OdQZzWp65HXJvk /T6sjNHAAiFzGXLijCLsFo33lVLUEKE68+pUwPxGlnIKvVZLOg98DjnSjZY/9RXI +GH6aQciQ8hsYTYaLLX33Z1hrbBGjBOSA7aMbwG/EHEksU2KYecRYbQy6oQnNAts 4neza+faf1EU7LWbyRZ4yFvrwzuY6Th0jtEe/4p7LIkbZM1Gl2VdkP4xYc/bns8y oIS3pN1SAgoDTKn1ohr/haW8P3wSkBInGUT+Kv96MOT6TFKtQ9BFNMZgWKF328FI Qt/ADynSbZN9IIDGXMXRPslZQWCYSxHJ -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:09 2025 by rpki-client