$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: ZUyy4HWvUxLMcuddIjjCdx0qZTl8pR1dYWjEjzTInD8= Subject key identifier: BB:C5:87:FE:8E:F0:58:49:06:50:2B:A5:01:4A:07:0F:01:59:C9:5B Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0AE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0ADF Signing time: Sat 18 Oct 2025 20:21:42 +0000 Manifest this update: Sat 18 Oct 2025 20:21:41 +0000 Manifest next update: Sat 25 Oct 2025 20:21:41 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: kxBy0FZsaF/cFde6Q1P3dzMH8nLGQIzOoPhrisrHP74=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Oct 18 20:21:41 2025 GMT Not After : Oct 25 20:21:41 2025 GMT Subject: CN=68f3f6d5-9881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:ec:ec:48:22:00:43:3d:ef:cf:85:01:a3: a5:4d:63:81:4c:b6:d5:93:95:64:ce:82:f1:a5:78: d0:cf:dc:bd:c2:93:57:09:95:85:0f:ba:b3:b7:7d: 88:58:ba:35:55:62:af:34:96:10:69:ca:f5:86:25: d4:ad:f1:3b:27:e7:f5:09:d5:24:e9:03:65:0a:c6: c2:39:cc:33:3b:ff:47:f0:82:dd:5d:e2:19:72:e7: 5e:5e:3f:72:bb:31:94:39:bf:ff:fb:96:17:a7:0b: e3:74:f8:0d:b6:42:d5:b0:1f:f3:fb:ca:b8:27:22: d3:f5:17:21:81:d9:0f:ee:e9:6d:0a:56:56:97:cf: 44:1e:06:ac:c2:22:0b:6c:de:b3:d0:e5:34:2e:1e: 43:ae:e3:8b:7d:a8:d6:39:ab:f1:c6:dc:06:f4:63: 1f:33:a2:16:a1:f6:7f:89:0e:4a:99:76:7f:54:8a: df:fe:e5:c2:93:2c:60:b1:6a:2b:79:28:1f:ba:74: b2:a2:e2:7f:80:a7:7e:cf:10:52:33:02:64:47:b1: 76:27:d1:57:6f:a7:5f:43:7f:35:30:9f:d0:06:47: d1:f7:89:e1:d4:b3:6e:0e:65:44:07:9d:6e:15:92: 3f:8a:95:66:5e:d1:17:32:03:91:f8:82:9f:3f:23: a0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C5:87:FE:8E:F0:58:49:06:50:2B:A5:01:4A:07:0F:01:59:C9:5B X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:af:3a:46:8e:89:ab:0a:74:0a:5d:98:77:90:a4:d3:d0:64: 25:fa:51:9a:67:84:6b:d6:fa:05:6b:c3:34:87:a4:6e:02:c3: ca:42:fc:7e:44:a3:c1:76:d7:07:b0:9c:66:9f:da:b7:4d:e7: e8:c6:a1:98:66:bc:fc:d1:f8:55:54:69:b8:62:eb:0f:5f:3e: bb:f1:42:e2:79:e7:d3:fc:7e:82:ae:d2:a5:65:d5:8d:54:5c: 3e:68:a6:1c:72:d2:55:58:df:bf:64:f6:ad:80:1a:12:32:4e: f6:0c:c6:d6:61:b2:4b:20:77:b4:ae:a7:f2:68:3c:5e:7d:4e: 17:a0:08:8d:9d:90:27:71:03:ac:d8:ab:6b:f9:7e:c5:2e:af: 95:f6:0d:80:26:e3:00:a3:88:3a:4c:b2:bc:16:a9:0a:b7:cb: f6:ed:f4:a0:a4:af:38:98:89:f7:a0:06:c4:28:67:82:69:5a: 03:2b:06:d0:27:a3:ed:7f:d2:5d:9b:1c:6e:2b:06:37:b8:54: c6:57:d0:26:51:5c:a1:37:46:3b:73:0b:41:b8:e6:c3:b7:df: 0b:73:86:d7:62:a5:a6:3c:48:72:74:c8:1e:fa:67:dc:05:dc: 26:75:89:a8:a0:b6:21:26:8f:d7:14:a2:b8:af:c8:32:3b:d2: 62:ff:80:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUxMDE4MjAyMTQxWhcNMjUxMDI1MjAyMTQxWjAYMRYwFAYD VQQDEw02OGYzZjZkNS05ODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dvs7EgiAEM978+FAaOlTWOBTLbVk5VkzoLxpXjQz9y9wpNXCZWFD7qzt32I WLo1VWKvNJYQacr1hiXUrfE7J+f1CdUk6QNlCsbCOcwzO/9H8ILdXeIZcudeXj9y uzGUOb//+5YXpwvjdPgNtkLVsB/z+8q4JyLT9RchgdkP7ultClZWl89EHgaswiIL bN6z0OU0Lh5DruOLfajWOavxxtwG9GMfM6IWofZ/iQ5KmXZ/VIrf/uXCkyxgsWor eSgfunSyouJ/gKd+zxBSMwJkR7F2J9FXb6dfQ381MJ/QBkfR94nh1LNuDmVEB51u FZI/ipVmXtEXMgOR+IKfPyOgnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvFh/6O 8FhJBlArpQFKBw8BWclbMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZrzpGjomrCnQKXZh3kKTT0GQl+lGaZ4Rr1voFa8M0h6RuAsPKQvx+ RKPBdtcHsJxmn9q3TefoxqGYZrz80fhVVGm4YusPXz678ULieefT/H6CrtKlZdWN VFw+aKYcctJVWN+/ZPatgBoSMk72DMbWYbJLIHe0rqfyaDxefU4XoAiNnZAncQOs 2Ktr+X7FLq+V9g2AJuMAo4g6TLK8FqkKt8v27fSgpK84mIn3oAbEKGeCaVoDKwbQ J6Ptf9JdmxxuKwY3uFTGV9AmUVyhN0Y7cwtBuObDt98Lc4bXYqWmPEhydMge+mfc BdwmdYmooLYhJo/XFKK4r8gyO9Ji/4Au -----END CERTIFICATE-----Generated at Mon Oct 20 04:45:43 2025 by rpki-client