$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: ZUu3rrWz8xAnueNryTx+gC0HUfxkBKw36qIv+VRx8Z8= Subject key identifier: B2:AE:A0:58:8A:AD:2A:9F:03:0C:51:FF:4C:AB:66:4B:4A:E3:31:45 Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0A96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0A8F Signing time: Mon 12 May 2025 19:25:23 +0000 Manifest this update: Mon 12 May 2025 19:25:23 +0000 Manifest next update: Mon 19 May 2025 19:25:23 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: jZ7643y7y+ioLX7QsKKEE4AGDUkhpuGeEkMHcckCfb4=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2710 (0xa96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: May 12 19:25:23 2025 GMT Not After : May 19 19:25:23 2025 GMT Subject: CN=68224b23-18e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:24:2a:fc:93:97:5a:48:ab:49:74:75:b2:bd: a7:fb:d9:79:92:41:56:54:2f:a4:c6:cd:50:70:1e: 50:90:17:68:00:a2:bf:27:df:c1:02:4f:01:47:1e: 4d:2e:c6:30:fb:d5:ec:65:95:9d:e8:e3:8b:ad:e9: 2c:da:cb:26:c4:f8:83:17:9d:86:dc:ea:83:53:14: 49:31:72:f6:6d:11:11:55:d2:fc:5a:db:34:5d:ee: fa:2e:2a:2d:95:71:dd:06:4d:00:83:4c:30:0a:c6: 21:95:83:2b:72:3c:cc:37:f5:4a:a7:6b:13:a1:95: 7f:aa:6c:c7:9b:03:fc:e5:e4:a3:9d:4f:d8:04:7a: 0e:21:fd:65:19:23:d4:24:f4:53:d9:48:87:e7:92: d1:8a:b1:c8:00:c1:fd:57:6f:32:eb:c6:5d:e2:05: 49:cc:06:ef:5f:84:ef:c8:c5:c0:02:0e:60:06:da: 08:59:52:4e:26:4c:44:7f:54:4f:d8:f1:9d:d0:b2: 7c:41:ca:ae:7a:11:25:e7:72:16:66:5f:c5:d3:e7: ec:c4:6e:5a:01:37:43:3a:b3:ba:57:d4:a2:0c:32: c1:21:a8:da:d9:8e:bf:03:62:65:4c:44:c7:4a:66: 41:f0:fa:f5:e1:80:b9:90:a1:fb:6c:cc:d6:55:a2: 70:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:AE:A0:58:8A:AD:2A:9F:03:0C:51:FF:4C:AB:66:4B:4A:E3:31:45 X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:19:5f:54:90:97:6a:32:0d:9c:32:68:81:9f:12:0f:96:ea: e9:08:23:f3:8c:47:0c:e1:7b:c2:cd:72:f8:f7:ba:bb:38:67: 2b:38:a8:31:e7:60:dd:3f:84:82:80:0d:7b:42:f0:53:a1:5c: bb:52:a8:f3:19:f1:7d:77:bb:56:6f:be:5c:40:5b:f7:5b:6c: df:ec:8e:c0:3a:ef:e6:42:43:a8:0e:2c:29:6d:ce:1a:ec:3a: a7:e6:f2:78:cb:5c:1a:4c:4f:f9:ba:b5:93:28:9d:f4:2a:97: 43:97:d1:49:ec:c3:18:86:c7:45:91:4a:e5:8e:18:5a:d1:a1: fa:24:dd:b3:f4:70:65:ca:79:16:87:2e:33:a9:88:bd:c2:43: 9c:fb:7b:c9:32:65:dd:70:91:d6:9a:be:3a:e5:05:8b:2e:9b: ee:cc:11:55:d6:20:0e:d2:f0:02:b1:65:8b:51:d2:57:aa:e7: 0d:a1:9e:f0:a7:35:b4:ba:04:56:0f:02:35:09:38:c4:58:a9: a9:52:83:3c:f8:eb:2b:6d:9f:b9:d4:4b:08:59:d4:5b:46:b5: 7b:dd:9f:c5:c9:38:57:7b:21:35:ed:20:4d:4a:fe:1f:ce:67: e3:a1:bb:07:c0:e8:39:48:83:e7:2c:d0:7a:4b:37:1d:bf:ac: 4f:6b:3a:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUwNTEyMTkyNTIzWhcNMjUwNTE5MTkyNTIzWjAYMRYwFAYD VQQDEw02ODIyNGIyMy0xOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyQq/JOXWkirSXR1sr2n+9l5kkFWVC+kxs1QcB5QkBdoAKK/J9/BAk8BRx5N LsYw+9XsZZWd6OOLreks2ssmxPiDF52G3OqDUxRJMXL2bRERVdL8Wts0Xe76Liot lXHdBk0Ag0wwCsYhlYMrcjzMN/VKp2sToZV/qmzHmwP85eSjnU/YBHoOIf1lGSPU JPRT2UiH55LRirHIAMH9V28y68Zd4gVJzAbvX4TvyMXAAg5gBtoIWVJOJkxEf1RP 2PGd0LJ8QcquehEl53IWZl/F0+fsxG5aATdDOrO6V9SiDDLBIaja2Y6/A2JlTETH SmZB8Pr14YC5kKH7bMzWVaJwIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKuoFiK rSqfAwxR/0yrZktK4zFFMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7GV9UkJdqMg2cMmiBnxIPlurpCCPzjEcM4XvCzXL497q7OGcrOKgx 52DdP4SCgA17QvBToVy7UqjzGfF9d7tWb75cQFv3W2zf7I7AOu/mQkOoDiwpbc4a 7Dqn5vJ4y1waTE/5urWTKJ30KpdDl9FJ7MMYhsdFkUrljhha0aH6JN2z9HBlynkW hy4zqYi9wkOc+3vJMmXdcJHWmr465QWLLpvuzBFV1iAO0vACsWWLUdJXqucNoZ7w pzW0ugRWDwI1CTjEWKmpUoM8+OsrbZ+51EsIWdRbRrV73Z/FyThXeyE17SBNSv4f zmfjobsHwOg5SIPnLNB6Szcdv6xPazoa -----END CERTIFICATE-----Generated at Tue May 13 02:43:49 2025 by rpki-client