$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: KFicsnyROoaHOchtiKIuShG+++EfgojMxCsjA4NjA7c= Subject key identifier: D4:14:38:5B:3A:83:B1:5A:2D:5A:12:4C:63:66:11:31:F3:24:72:22 Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0AC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0AC2 Signing time: Fri 22 Aug 2025 19:36:55 +0000 Manifest this update: Fri 22 Aug 2025 19:36:55 +0000 Manifest next update: Fri 29 Aug 2025 19:36:55 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: wbz1G5YJ4t6rTVEhMB474Zd2EuIKm7PKtOGRho9jJlM=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2761 (0xac9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Aug 22 19:36:55 2025 GMT Not After : Aug 29 19:36:55 2025 GMT Subject: CN=68a8c6d7-4384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ff:fa:58:0f:1c:66:dd:43:e0:5f:b3:c8:11: f6:37:f0:4a:5a:ca:4b:34:ec:1b:46:8a:11:ee:42: fa:36:d6:7e:1f:9f:f6:60:70:4a:22:aa:58:88:b1: 1f:4f:96:05:8f:b3:f3:5d:da:b4:90:a6:30:a2:e0: 9a:c3:e4:9f:75:c5:3a:2e:0c:a7:20:86:cb:7a:18: e4:78:13:5b:39:68:bc:09:de:dc:9c:19:b5:1e:39: e4:01:ee:25:11:17:57:0f:62:d9:b8:1e:36:45:8e: e0:e2:52:5f:78:5d:53:88:88:64:56:39:e7:7e:25: 83:2b:e0:c2:1a:2b:2c:33:32:52:e4:0a:cb:d9:27: f4:a9:b0:5d:53:4a:ad:4e:46:c4:ef:98:1c:93:05: df:1e:a4:71:33:cd:57:1e:f4:2f:c4:7c:e5:04:6d: 98:90:ad:45:22:a7:c0:58:a3:8b:2b:b6:7f:f3:b8: 2c:a2:b9:91:b4:37:7a:6b:78:ce:33:26:c9:68:fc: 97:a1:ce:db:15:61:b0:9c:5e:1b:48:1c:57:d5:bf: b7:02:df:ee:ce:55:59:56:cb:96:9f:89:a4:88:35: 0e:43:95:5e:52:55:0d:e5:bf:2e:8b:32:80:5e:46: 10:cb:a3:94:13:69:1c:44:36:39:7f:de:54:87:6b: 8a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:14:38:5B:3A:83:B1:5A:2D:5A:12:4C:63:66:11:31:F3:24:72:22 X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:82:6e:62:d7:6a:f3:f0:43:3b:2b:87:bd:90:bc:3c:0e:dc: 06:eb:08:96:0b:d0:8f:68:ad:31:04:5e:6c:ef:04:1b:34:64: 75:50:d0:0a:29:97:a2:f0:d9:63:d6:f3:67:1b:50:0e:22:8f: f3:78:8c:9c:6f:73:7b:09:e1:2d:f8:65:55:f7:ba:4b:1e:bc: db:64:29:86:9d:d2:09:cb:14:49:6f:16:e8:e5:a4:d6:77:57: 47:79:83:eb:78:80:87:2c:40:99:a4:5d:76:c7:e3:43:d3:f9: 30:72:b7:d9:83:26:32:07:fe:35:f0:7f:39:b6:e2:19:47:36: ff:06:ce:c6:4a:3b:7b:43:05:6d:44:83:fb:d7:a4:cb:87:dd: 7a:b9:98:4f:43:1a:6c:32:ec:ff:14:5b:4c:cb:c7:12:d8:79: 94:d3:68:db:6b:89:48:f9:65:09:ca:2f:d0:29:a7:47:55:ae: d8:38:85:1d:91:2c:fa:72:3d:f1:91:79:35:90:f6:99:d1:5e: ae:a5:5c:08:4b:4e:9f:63:32:57:c1:9d:64:d6:10:c1:97:a3: 43:50:43:4e:03:85:de:4d:88:ce:04:c0:e4:11:56:d9:4b:7d: dc:ab:6e:ae:85:e8:37:69:47:be:4a:d2:ab:dc:fa:26:ee:58: 4f:05:ca:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUwODIyMTkzNjU1WhcNMjUwODI5MTkzNjU1WjAYMRYwFAYD VQQDEw02OGE4YzZkNy00Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsf/6WA8cZt1D4F+zyBH2N/BKWspLNOwbRooR7kL6NtZ+H5/2YHBKIqpYiLEf T5YFj7PzXdq0kKYwouCaw+SfdcU6LgynIIbLehjkeBNbOWi8Cd7cnBm1HjnkAe4l ERdXD2LZuB42RY7g4lJfeF1TiIhkVjnnfiWDK+DCGissMzJS5ArL2Sf0qbBdU0qt TkbE75gckwXfHqRxM81XHvQvxHzlBG2YkK1FIqfAWKOLK7Z/87gsormRtDd6a3jO MybJaPyXoc7bFWGwnF4bSBxX1b+3At/uzlVZVsuWn4mkiDUOQ5VeUlUN5b8uizKA XkYQy6OUE2kcRDY5f95Uh2uKxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQUOFs6 g7FaLVoSTGNmETHzJHIiMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkgm5i12rz8EM7K4e9kLw8DtwG6wiWC9CPaK0xBF5s7wQbNGR1UNAK KZei8Nlj1vNnG1AOIo/zeIycb3N7CeEt+GVV97pLHrzbZCmGndIJyxRJbxbo5aTW d1dHeYPreICHLECZpF12x+ND0/kwcrfZgyYyB/418H85tuIZRzb/Bs7GSjt7QwVt RIP716TLh916uZhPQxpsMuz/FFtMy8cS2HmU02jba4lI+WUJyi/QKadHVa7YOIUd kSz6cj3xkXk1kPaZ0V6upVwIS06fYzJXwZ1k1hDBl6NDUENOA4XeTYjOBMDkEVbZ S33cq26uheg3aUe+StKr3Pom7lhPBcod -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:07 2025 by rpki-client