$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: HE7v31UArTwnmglYD8HrtymIAR43o9PtzFcuDo96YMo= Subject key identifier: B5:96:21:21:7F:45:5F:30:A5:30:C5:88:D4:1E:5E:3A:78:41:68:03 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01D3 Signing time: Wed 17 Sep 2025 03:20:11 +0000 Manifest this update: Wed 17 Sep 2025 03:20:09 +0000 Manifest next update: Wed 24 Sep 2025 03:20:09 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: KHC77bIG+JZuj59FgSQpDesUwtV+3ubms9TlwURj5Uk=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Sep 17 03:20:09 2025 GMT Not After : Sep 24 03:20:09 2025 GMT Subject: CN=68ca28ea-f482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:94:63:84:53:92:74:dc:f1:fc:8a:0e:0a: 25:23:8f:ab:ab:77:63:20:90:d8:73:80:ae:b1:47: 1b:ee:1d:57:83:4f:95:44:41:c3:d2:7d:c2:5e:ac: 7d:c1:c5:34:b8:06:33:39:52:90:40:1a:a3:41:f4: 3e:c4:eb:0d:1d:19:b5:61:58:c2:82:ba:43:23:a3: 8a:5e:19:1b:6e:d7:fd:e8:07:fc:b1:56:08:2a:e6: 57:dc:5c:20:8f:c1:91:f7:a3:38:2f:7e:16:b4:cf: 13:0d:73:99:ac:1a:02:5c:ec:e8:64:61:9d:87:ab: dd:65:7c:ae:06:2e:36:98:bf:b8:e6:96:bd:52:91: 42:11:11:cb:ea:8f:55:08:40:9a:a1:69:d0:89:9b: 62:bf:0c:c7:3b:6a:1a:cb:25:5f:e5:d7:dd:ea:f7: 3b:fc:a7:77:68:e6:79:61:e6:63:57:44:94:41:e2: a4:2a:61:c6:c2:9c:a1:90:5b:cb:ac:a7:33:d1:3b: 9f:0f:45:93:5e:26:56:eb:36:69:58:de:1a:98:6a: 4f:c9:92:a8:9d:58:cd:72:3d:dc:01:fc:9c:db:10: ba:e0:68:8f:42:12:2f:6a:be:6d:a3:4e:0a:40:67: 84:7a:35:e7:16:c1:2a:17:e0:a3:e2:25:00:bf:db: 03:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:96:21:21:7F:45:5F:30:A5:30:C5:88:D4:1E:5E:3A:78:41:68:03 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:23:f3:28:37:7a:48:a5:42:7f:74:5a:1c:d0:45:86:ad:4f: 7b:87:4a:b3:59:22:7b:b2:fe:eb:58:91:ba:d7:58:7f:09:16: 15:ba:a6:d7:df:09:1b:51:46:fe:50:a0:da:1b:66:41:d8:7e: dd:a1:33:0f:73:96:77:b7:9b:e7:1b:d3:0e:fa:89:56:32:91: e2:34:70:c7:ee:14:d1:05:3a:0a:38:4e:78:53:06:d9:5f:44: 4d:60:c4:12:fc:9e:ee:74:80:9c:ac:75:2f:f0:dd:61:fc:e4: f9:cd:13:92:a3:b4:a5:16:fe:6a:7f:7f:17:12:88:da:e7:5c: 48:f3:5f:de:c3:01:a8:15:62:fa:0b:ce:37:46:57:62:78:bc: cd:ff:f6:75:68:8e:f4:ba:60:ea:d1:88:dd:84:4e:7d:a0:58: ee:87:76:dd:c7:2e:66:68:3a:66:69:fb:6e:96:bc:6d:0b:c9: f0:05:cb:bf:55:36:88:90:ba:90:25:fd:48:bf:f5:c1:fc:97: 77:2f:b5:30:bb:25:00:a6:16:ba:e3:43:a3:a4:ac:d8:d4:dd: 78:a5:8f:5c:46:4d:4b:2d:5c:c6:fc:1d:3a:ae:7f:7c:86:08: 21:00:d5:13:b8:cd:9a:cf:af:9b:18:48:65:b0:9c:33:30:93: 55:e1:61:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwOTE3MDMyMDA5WhcNMjUwOTI0MDMyMDA5WjAYMRYwFAYD VQQDEw02OGNhMjhlYS1mNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSuUY4RTknTc8fyKDgolI4+rq3djIJDYc4CusUcb7h1Xg0+VREHD0n3CXqx9 wcU0uAYzOVKQQBqjQfQ+xOsNHRm1YVjCgrpDI6OKXhkbbtf96Af8sVYIKuZX3Fwg j8GR96M4L34WtM8TDXOZrBoCXOzoZGGdh6vdZXyuBi42mL+45pa9UpFCERHL6o9V CECaoWnQiZtivwzHO2oayyVf5dfd6vc7/Kd3aOZ5YeZjV0SUQeKkKmHGwpyhkFvL rKcz0TufD0WTXiZW6zZpWN4amGpPyZKonVjNcj3cAfyc2xC64GiPQhIvar5to04K QGeEejXnFsEqF+Cj4iUAv9sDSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWWISF/ RV8wpTDFiNQeXjp4QWgDMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSI/MoN3pIpUJ/dFoc0EWGrU97h0qzWSJ7sv7rWJG611h/CRYVuqbX 3wkbUUb+UKDaG2ZB2H7doTMPc5Z3t5vnG9MO+olWMpHiNHDH7hTRBToKOE54UwbZ X0RNYMQS/J7udICcrHUv8N1h/OT5zROSo7SlFv5qf38XEoja51xI81/ewwGoFWL6 C843RldieLzN//Z1aI70umDq0YjdhE59oFjuh3bdxy5maDpmaftulrxtC8nwBcu/ VTaIkLqQJf1Iv/XB/Jd3L7UwuyUApha640OjpKzY1N14pY9cRk1LLVzG/B06rn98 hgghANUTuM2az6+bGEhlsJwzMJNV4WFG -----END CERTIFICATE-----Generated at Fri Sep 19 02:24:16 2025 by rpki-client