$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: +qZEU/tB/bQefsQYfK//eRkZqEnAGWHHw4R9aJZ4xEI= Subject key identifier: 9A:72:89:7D:D6:EE:42:42:B8:60:7D:CE:10:46:B8:F7:2A:81:C2:A4 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 019B Signing time: Sat 31 May 2025 03:07:02 +0000 Manifest this update: Sat 31 May 2025 03:07:02 +0000 Manifest next update: Sat 07 Jun 2025 03:07:02 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: +jWU++T7zVDo8+wvuSg9lhkKEjeifG+PPWPDIxVlspA=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: May 31 03:07:02 2025 GMT Not After : Jun 7 03:07:02 2025 GMT Subject: CN=683a7256-639e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1c:57:8e:7e:46:2f:b2:41:3f:5a:ee:97:be: e1:40:05:20:ff:35:21:74:aa:c3:65:01:ef:19:ba: d8:65:1b:09:e2:11:a4:00:b2:8f:75:fd:cb:ac:de: aa:c3:8a:29:9b:82:24:1a:e1:e5:49:87:6d:3a:8a: 56:74:55:46:87:9d:c8:da:08:30:bf:d3:46:97:de: ac:c5:7b:6c:dd:3a:cf:75:61:e4:11:43:bc:61:b1: 3e:3c:5a:9c:b8:d6:28:10:57:3f:c8:0c:02:35:ac: 89:c3:bd:9b:0f:b8:47:b2:2b:3e:30:f7:2a:d9:3f: 96:b0:aa:8f:1a:55:0c:c5:43:80:e3:7d:60:3c:e7: ab:23:89:a0:ab:f4:73:f2:1c:32:96:48:f0:a7:dd: 12:e7:93:cf:1c:8c:1f:e7:c8:ac:24:a9:65:3d:b9: 99:c2:ab:29:06:ee:a2:f0:18:c7:db:78:ef:41:c5: 88:be:92:07:cf:2a:74:8b:1e:3c:30:da:ce:df:33: f1:ec:a2:33:f4:da:ff:a4:ae:18:d8:63:ca:14:e8: b0:74:0e:81:3e:dc:f1:e3:6d:8b:0b:42:c5:4a:ff: f5:fd:f1:da:ba:52:04:cd:e4:6b:f3:7e:eb:74:6e: bb:9f:7f:64:97:8a:3e:9a:2e:43:70:e3:c5:f3:4c: 24:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:72:89:7D:D6:EE:42:42:B8:60:7D:CE:10:46:B8:F7:2A:81:C2:A4 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:fd:51:2f:0c:fa:97:00:78:48:e9:c5:d0:ef:ae:c1:9c:fd: 42:11:af:c4:ae:c7:96:14:48:cc:07:72:c7:d1:14:e9:51:b9: 68:9c:93:5f:d6:7e:6e:c8:23:91:9d:52:3e:e8:e7:0b:ef:d6: 34:de:b1:5d:1c:21:ec:7a:4a:cf:98:58:70:d9:d8:5a:7a:e3: b4:81:cb:ec:81:e9:43:22:35:32:95:cc:22:b6:77:21:3e:df: 49:48:43:c3:8a:6a:36:ab:ba:05:c9:ce:1d:7b:62:e3:0c:f8: 44:b3:a2:93:b1:f0:f7:b6:f5:a7:be:ce:b4:41:3f:6b:d8:18: d4:37:4a:c7:10:53:94:1b:de:b5:08:56:cf:32:c7:51:0a:93: 02:7d:f1:0b:44:af:0d:9f:75:e9:ad:05:ef:66:fe:a9:b8:5f: 38:90:72:78:58:93:6a:36:ea:af:4e:f4:c7:45:19:99:7b:54: 6a:da:82:3c:83:b7:0a:16:fb:48:0d:68:b1:4c:f3:83:13:a4: bd:43:9b:68:92:6b:04:bf:f2:d9:cf:e3:43:57:2f:6d:54:88: e6:96:3a:64:9d:01:fa:28:9d:00:51:27:a4:e4:27:57:2c:9b: a6:17:b4:1f:a9:d8:5a:f3:2f:e0:5f:29:18:ec:83:6c:60:61: cd:7c:c9:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwNTMxMDMwNzAyWhcNMjUwNjA3MDMwNzAyWjAYMRYwFAYD VQQDEw02ODNhNzI1Ni02MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthxXjn5GL7JBP1rul77hQAUg/zUhdKrDZQHvGbrYZRsJ4hGkALKPdf3LrN6q w4opm4IkGuHlSYdtOopWdFVGh53I2ggwv9NGl96sxXts3TrPdWHkEUO8YbE+PFqc uNYoEFc/yAwCNayJw72bD7hHsis+MPcq2T+WsKqPGlUMxUOA431gPOerI4mgq/Rz 8hwylkjwp90S55PPHIwf58isJKllPbmZwqspBu6i8BjH23jvQcWIvpIHzyp0ix48 MNrO3zPx7KIz9Nr/pK4Y2GPKFOiwdA6BPtzx422LC0LFSv/1/fHaulIEzeRr837r dG67n39kl4o+mi5DcOPF80wkTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpyiX3W 7kJCuGB9zhBGuPcqgcKkMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC/VEvDPqXAHhI6cXQ767BnP1CEa/ErseWFEjMB3LH0RTpUblonJNf 1n5uyCORnVI+6OcL79Y03rFdHCHsekrPmFhw2dhaeuO0gcvsgelDIjUylcwitnch Pt9JSEPDimo2q7oFyc4de2LjDPhEs6KTsfD3tvWnvs60QT9r2BjUN0rHEFOUG961 CFbPMsdRCpMCffELRK8Nn3XprQXvZv6puF84kHJ4WJNqNuqvTvTHRRmZe1Rq2oI8 g7cKFvtIDWixTPODE6S9Q5tokmsEv/LZz+NDVy9tVIjmljpknQH6KJ0AUSek5CdX LJumF7Qfqdha8y/gXykY7INsYGHNfMnT -----END CERTIFICATE-----Generated at Sat May 31 16:29:34 2025 by rpki-client