$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: D9Z7qU49WJZc9lHlfQeZYb0LF8ifwNeTytyQRxwoDhs= Subject key identifier: 15:6C:5E:FE:52:B6:B7:38:6D:47:E2:5E:74:D7:AB:75:F6:6D:E4:FF Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 0182 Signing time: Wed 09 Apr 2025 02:39:51 +0000 Manifest this update: Wed 09 Apr 2025 02:39:51 +0000 Manifest next update: Wed 16 Apr 2025 02:39:51 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: 2mIqf4IMP0+v/6if0bQ/IeiB8CDLBivAtywWfPDGw5w=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 02:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16 Validity Not Before: Apr 9 02:39:51 2025 GMT Not After : Apr 16 02:39:51 2025 GMT Subject: CN=67f5ddf7-4485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:f1:8f:20:98:55:26:e8:ab:db:ee:8b:9e: 06:af:66:74:d1:68:2f:6e:0c:c6:11:23:c4:4c:78: 08:38:e9:ab:60:25:6c:11:5b:58:76:9d:ed:a1:15: 3d:0d:70:a1:ed:d6:4f:99:cb:83:f4:33:c0:ab:5f: 37:ba:10:ec:54:f6:a4:6f:e9:b3:54:0e:6d:3f:b2: 5b:90:17:ca:c6:4b:4f:10:54:83:a0:53:da:23:89: 8e:4c:71:51:5b:75:6e:9f:9b:83:d4:94:b0:4f:42: 75:08:f2:1a:fe:f4:f5:39:bf:2d:df:ad:a0:ff:2f: 6b:60:61:f7:11:8b:35:53:0b:b1:36:57:78:da:bc: 9e:cf:5c:7e:a3:18:65:ff:31:fe:88:b2:62:9c:5f: a0:22:f7:fa:b3:49:c9:0c:a6:fe:6b:35:bd:47:99: 6b:13:65:09:cf:6a:9b:0d:f5:f7:9c:7f:d0:a2:0a: 5b:3e:4f:67:2c:8d:af:c0:18:65:3d:6e:0d:fb:25: cf:6a:7e:9d:b4:e2:1d:54:0b:42:41:16:4a:66:37: 8a:0f:14:f2:25:41:f0:6f:16:f6:65:48:0a:fb:d4: d2:5c:b9:f8:3e:8c:5a:af:0b:03:8c:64:ca:d3:43: df:b6:79:0d:7a:a1:38:2f:89:55:6a:f2:35:4d:09: 3b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6C:5E:FE:52:B6:B7:38:6D:47:E2:5E:74:D7:AB:75:F6:6D:E4:FF X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:25:6b:55:42:0c:af:e0:43:e7:fd:68:82:17:7a:c4:c5:c2: 51:4d:32:a6:bf:d5:08:8c:c4:6b:5d:6c:a0:61:ce:15:f2:b9: d9:1a:54:09:d6:17:97:4d:c5:75:5c:78:07:3c:c2:94:bd:8b: 59:b8:04:7d:ad:db:d2:b0:c5:67:8f:c0:44:89:16:5f:77:b7: a8:b4:8d:f4:1f:5a:b2:7f:1f:b3:63:dd:ba:09:33:8b:83:5f: 66:30:2e:be:9b:32:e6:16:e5:d8:09:00:af:0c:83:13:2a:e6: d7:c8:b6:e1:99:bc:4a:c4:84:c1:a8:ea:1d:1f:60:ca:ed:ac: 4b:a5:53:ba:b2:71:91:88:06:3d:38:f4:c7:e1:ff:00:7e:ae: 42:8d:d8:3c:17:8d:92:91:e8:e5:4a:08:e6:f7:dd:69:7f:9a: b3:00:ee:6c:20:65:51:84:80:0b:50:0f:4e:0a:0d:fc:f8:c3: 0a:08:22:6c:66:61:e6:02:07:c2:ad:5f:7c:8e:be:33:91:bc: 61:8e:0a:d0:55:b5:03:13:2b:62:55:ee:49:34:d1:1b:d7:87: ea:ba:83:2c:a1:cc:d8:e2:1a:14:20:9c:3c:52:32:0e:86:96: ff:db:33:bf:34:02:d3:6a:14:25:22:cd:9d:24:ea:f2:fd:a1: e7:56:29:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwNDA5MDIzOTUxWhcNMjUwNDE2MDIzOTUxWjAYMRYwFAYD VQQDEw02N2Y1ZGRmNy00NDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHTxjyCYVSboq9vui54Gr2Z00WgvbgzGESPETHgIOOmrYCVsEVtYdp3toRU9 DXCh7dZPmcuD9DPAq183uhDsVPakb+mzVA5tP7JbkBfKxktPEFSDoFPaI4mOTHFR W3Vun5uD1JSwT0J1CPIa/vT1Ob8t362g/y9rYGH3EYs1UwuxNld42ryez1x+oxhl /zH+iLJinF+gIvf6s0nJDKb+azW9R5lrE2UJz2qbDfX3nH/QogpbPk9nLI2vwBhl PW4N+yXPan6dtOIdVAtCQRZKZjeKDxTyJUHwbxb2ZUgK+9TSXLn4PoxarwsDjGTK 00PftnkNeqE4L4lVavI1TQk7PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVsXv5S trc4bUfiXnTXq3X2beT/MB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3JWtVQgyv4EPn/WiCF3rExcJRTTKmv9UIjMRrXWygYc4V8rnZGlQJ 1heXTcV1XHgHPMKUvYtZuAR9rdvSsMVnj8BEiRZfd7eotI30H1qyfx+zY926CTOL g19mMC6+mzLmFuXYCQCvDIMTKubXyLbhmbxKxITBqOodH2DK7axLpVO6snGRiAY9 OPTH4f8Afq5Cjdg8F42SkejlSgjm991pf5qzAO5sIGVRhIALUA9OCg38+MMKCCJs ZmHmAgfCrV98jr4zkbxhjgrQVbUDEytiVe5JNNEb14fquoMsoczY4hoUIJw8UjIO hpb/2zO/NALTahQlIs2dJOry/aHnVinT -----END CERTIFICATE-----Generated at Thu Apr 10 18:33:56 2025 by rpki-client