$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft File: STXJCZ1YAoESreyiiRQ1_MWPuiw.mft (raw, json) Hash identifier: At1GGhnqJWoUTjRR6zlYTP06xkHTwF0qe79v/YKsqxo= Subject key identifier: 51:1F:8D:A9:C6:87:B5:1E:16:0D:A1:75:50:7F:CF:D0:1B:AC:E9:05 Authority key identifier: 49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C Certificate issuer: /CN=A9142E1E/serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft Manifest number: 7D Signing time: Sat 31 May 2025 06:16:02 +0000 Manifest this update: Sat 31 May 2025 06:16:01 +0000 Manifest next update: Sat 07 Jun 2025 06:16:01 +0000 Files and hashes: 1: STXJCZ1YAoESreyiiRQ1_MWPuiw.crl (hash: PeZnMIgmv+pha379dp/j3z2NbIZKLIe7OCarX9ZXzLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Validity Not Before: May 31 06:16:01 2025 GMT Not After : Jun 7 06:16:01 2025 GMT Subject: CN=683a9ea1-5145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:31:e0:c2:53:8a:9f:e4:44:ef:c8:87:d0: 26:21:5a:8e:b3:29:8f:3a:b5:6e:44:b0:30:3a:e7: 95:7b:d9:d5:58:3b:e9:3f:57:05:91:f5:11:5d:14: cd:90:b2:67:2c:e4:d5:95:2c:32:d8:ab:24:de:33: fb:e6:40:9d:16:59:4e:50:ca:2f:ba:e9:72:4c:5e: f9:ef:86:f5:21:4e:19:97:b8:e1:b0:8f:fd:c8:ba: 34:9d:e8:7e:e3:bb:e8:78:fe:b0:ac:13:d7:9d:dd: c1:14:31:44:6d:97:5f:ea:b8:d7:29:de:86:13:08: 67:d7:40:6e:49:ff:5a:c5:3d:c4:8c:8f:27:6b:c7: 97:e9:2a:e0:8d:4d:b6:d4:1f:a4:34:a8:11:20:70: 58:6c:0c:d5:7e:42:60:96:36:1a:75:f2:92:24:d3: 30:c0:27:a1:e4:39:95:a7:f7:f1:7c:cb:1b:c1:b7: ca:5b:a2:6e:46:74:76:06:0c:a1:d2:26:22:84:3c: d8:e0:e9:79:89:f6:5c:90:f5:ec:01:44:8e:2a:15: 38:a5:74:18:2f:c5:e3:99:56:a3:0d:ca:19:9a:56: ed:ba:aa:e3:30:d9:cf:cf:ea:f1:57:54:e2:80:5e: 5e:3e:22:68:66:b3:06:5b:64:cb:9e:31:c6:61:04: 0a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1F:8D:A9:C6:87:B5:1E:16:0D:A1:75:50:7F:CF:D0:1B:AC:E9:05 X509v3 Authority Key Identifier: keyid:49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:56:20:49:4a:9e:1e:73:35:69:03:5c:73:46:38:23:09:11: 83:a3:cf:7a:cf:5e:b2:bb:43:07:2a:09:e6:2b:da:c9:4d:0b: d9:fc:82:e1:90:df:a4:0f:ff:38:17:2b:09:9a:0e:ef:66:f6: 28:9f:24:51:ee:c7:88:f0:0a:5a:62:5c:7a:40:c0:e4:3d:f8: fb:a1:ed:b8:46:68:20:b9:d8:b5:22:7c:54:2f:84:e8:cf:0a: 0e:81:2f:42:5d:54:5d:eb:a7:d7:02:a1:b0:14:af:87:a8:3a: 96:9c:7c:7d:97:e4:fa:70:d0:7e:da:6a:84:f8:65:da:87:3c: 16:f2:e6:64:db:45:92:fe:0e:03:26:cd:0f:e4:e8:37:36:8a: 7e:31:b8:14:2d:47:a5:b6:a2:a7:fb:df:0c:dc:35:75:d2:62: cf:c7:31:c5:8a:7f:24:8d:32:9f:b8:8f:ff:30:5a:82:d8:b5: 56:5c:f2:4a:9c:41:55:cb:5d:9c:16:e4:cb:2b:f7:77:c3:3d: 3c:e4:34:d2:3f:3d:ba:5d:45:2b:e3:39:3b:0f:f4:50:3f:e4: 84:23:b4:31:ac:b3:c4:af:24:1b:fd:ac:e5:87:cb:20:e1:54: 2d:04:98:2c:08:e2:2e:cd:ae:28:b1:a1:b8:5f:cc:14:25:c8: 66:f6:ee:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoNDkzNUM5MDk5RDU4MDI4MTEyQURFQ0EyODkxNDM1RkND NThGQkEyQzAeFw0yNTA1MzEwNjE2MDFaFw0yNTA2MDcwNjE2MDFaMBgxFjAUBgNV BAMTDTY4M2E5ZWExLTUxNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/+THgwlOKn+RE78iH0CYhWo6zKY86tW5EsDA655V72dVYO+k/VwWR9RFdFM2Q smcs5NWVLDLYqyTeM/vmQJ0WWU5Qyi+66XJMXvnvhvUhThmXuOGwj/3IujSd6H7j u+h4/rCsE9ed3cEUMURtl1/quNcp3oYTCGfXQG5J/1rFPcSMjydrx5fpKuCNTbbU H6Q0qBEgcFhsDNV+QmCWNhp18pIk0zDAJ6HkOZWn9/F8yxvBt8pbom5GdHYGDKHS JiKEPNjg6XmJ9lyQ9ewBRI4qFTildBgvxeOZVqMNyhmaVu26quMw2c/P6vFXVOKA Xl4+ImhmswZbZMueMcZhBArLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUR+NqcaH tR4WDaF1UH/P0Bus6QUwHwYDVR0jBBgwFoAUSTXJCZ1YAoESreyiiRQ1/MWPuiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFLzFDN0NERjY4ODI0 MjExRUZBRDNEODE4MUM0RjlBRTAyL1NUWEpDWjFZQW9FU3JleWlpUlExX01XUHVp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1RYSkNaMVlBb0VTcmV5aWlSUTFfTVdQdWl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFLzFDN0NERjY4ODI0MjExRUZBRDNEODE4MUM0RjlBRTAyL1NUWEpDWjFZQW9F U3JleWlpUlExX01XUHVpdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIlWIElKnh5zNWkDXHNGOCMJEYOjz3rPXrK7QwcqCeYr2slNC9n8guGQ 36QP/zgXKwmaDu9m9iifJFHux4jwClpiXHpAwOQ9+Puh7bhGaCC52LUifFQvhOjP Cg6BL0JdVF3rp9cCobAUr4eoOpacfH2X5Ppw0H7aaoT4ZdqHPBby5mTbRZL+DgMm zQ/k6Dc2in4xuBQtR6W2oqf73wzcNXXSYs/HMcWKfySNMp+4j/8wWoLYtVZc8kqc QVXLXZwW5Msr93fDPTzkNNI/PbpdRSvjOTsP9FA/5IQjtDGss8SvJBv9rOWHyyDh VC0EmCwI4i7NriixobhfzBQlyGb27nA= -----END CERTIFICATE-----Generated at Sat May 31 15:29:59 2025 by rpki-client