$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: zwQtEJ+RFkuXezFjEEShQOhHmWS2bpEKuxDAPJtruRg= Subject key identifier: 4D:BF:7A:6F:B5:50:8F:AE:B0:B3:4B:7D:D7:98:8D:2B:66:9E:E9:8A Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01ED Signing time: Wed 05 Nov 2025 02:44:03 +0000 Manifest this update: Wed 05 Nov 2025 02:44:03 +0000 Manifest next update: Wed 12 Nov 2025 02:44:03 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: XovkW+bd6p4vJXrIsYriSFDT8Rk8D8uOmFHL9lqFS9c=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: 5JjQBJx2Pjnhm+6Kg83lIxJriPqmmDrWvmhqbV4seEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Nov 5 02:44:03 2025 GMT Not After : Nov 12 02:44:03 2025 GMT Subject: CN=690ab9f3-5684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:bf:fb:b6:f7:24:d8:e5:72:fe:57:fc:d5: b8:64:6a:77:62:b9:a6:d7:6c:ba:0b:ba:e5:6b:d4: 20:08:83:e5:1f:6d:7a:7d:13:67:46:1e:10:7e:05: cc:16:bf:35:5a:2e:60:37:00:d7:05:5d:ac:c9:f0: 03:55:d6:a6:6f:7c:0a:0f:8d:3d:b1:e2:15:ca:3d: 4c:2a:81:ce:4e:c9:05:bf:70:12:e9:fd:76:23:40: be:26:75:fd:94:fe:85:07:4a:fe:1d:14:04:2b:da: d6:a7:9e:c1:07:0d:43:5c:fe:71:f9:29:98:db:a4: 81:a6:e9:57:21:c3:c6:a0:8f:c5:6e:8a:de:05:2b: ed:6a:61:59:62:87:f7:97:76:88:7b:8c:2a:ca:55: ff:4a:85:36:44:d1:fe:65:25:d0:18:fe:84:ee:31: c8:36:be:95:c8:19:18:62:18:90:b9:7e:b2:de:23: 20:86:a9:2e:39:89:60:3e:b8:b7:d4:3b:e4:d9:61: 2d:0c:27:ac:97:8d:f1:33:ca:dc:35:fc:85:bc:73: dd:d9:47:93:d1:eb:9c:70:b1:a0:c3:9b:b3:d2:7d: 64:39:20:48:76:7b:ff:33:88:6c:fa:5f:00:1e:60: 7b:62:d2:a2:7b:eb:1f:ea:05:ce:32:90:b0:4a:db: ce:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BF:7A:6F:B5:50:8F:AE:B0:B3:4B:7D:D7:98:8D:2B:66:9E:E9:8A X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f9:3e:3b:0b:6a:39:70:37:b2:70:52:03:1c:23:66:b0:6a: 35:ba:4b:26:fc:50:10:1e:84:a4:4a:1d:b9:2a:1b:ce:14:ed: 87:cd:8a:62:5b:aa:55:8a:13:bc:ad:5d:27:24:b5:db:92:c2: 76:85:6f:e2:1e:5f:c7:67:8d:c6:2c:c1:5c:ad:fd:a3:56:b5: d4:18:3d:ce:2c:ad:7a:25:d3:5b:4c:20:a6:da:b6:22:db:ad: a0:42:a1:84:1b:c2:51:75:68:f0:88:3e:cf:00:93:41:62:97: c1:26:04:5c:29:10:a2:9b:b5:30:7a:1d:72:42:5e:c6:e7:c3: 05:43:2b:52:82:7b:a0:3d:08:62:90:94:6a:9e:1d:ba:e3:04: 85:13:00:a6:de:95:17:99:cd:17:06:4a:83:0e:3c:1c:d2:0c: a3:d6:eb:b0:3d:d4:77:38:5a:e0:4c:de:97:93:52:d9:21:5a: 59:cd:f0:e4:2a:04:99:92:88:dc:02:56:96:6f:ab:30:0c:f6: 65:0e:30:d7:85:f3:c6:a7:08:9b:fb:74:cb:d5:f9:e2:8a:95: ff:62:b1:00:c5:4e:0b:64:55:f8:f7:31:34:99:c4:11:eb:61: a4:8a:3b:ad:08:de:d8:1b:84:82:01:91:c7:a7:0c:96:6c:a5: 0b:28:bc:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUxMTA1MDI0NDAzWhcNMjUxMTEyMDI0NDAzWjAYMRYwFAYD VQQDEw02OTBhYjlmMy01Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbe/+7b3JNjlcv5X/NW4ZGp3Yrmm12y6C7rla9QgCIPlH216fRNnRh4QfgXM Fr81Wi5gNwDXBV2syfADVdamb3wKD409seIVyj1MKoHOTskFv3AS6f12I0C+JnX9 lP6FB0r+HRQEK9rWp57BBw1DXP5x+SmY26SBpulXIcPGoI/FboreBSvtamFZYof3 l3aIe4wqylX/SoU2RNH+ZSXQGP6E7jHINr6VyBkYYhiQuX6y3iMghqkuOYlgPri3 1Dvk2WEtDCesl43xM8rcNfyFvHPd2UeT0euccLGgw5uz0n1kOSBIdnv/M4hs+l8A HmB7YtKie+sf6gXOMpCwStvOBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2/em+1 UI+usLNLfdeYjStmnumKMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV+T47C2o5cDeycFIDHCNmsGo1uksm/FAQHoSkSh25KhvOFO2HzYpi W6pVihO8rV0nJLXbksJ2hW/iHl/HZ43GLMFcrf2jVrXUGD3OLK16JdNbTCCm2rYi 262gQqGEG8JRdWjwiD7PAJNBYpfBJgRcKRCim7Uweh1yQl7G58MFQytSgnugPQhi kJRqnh264wSFEwCm3pUXmc0XBkqDDjwc0gyj1uuwPdR3OFrgTN6Xk1LZIVpZzfDk KgSZkojcAlaWb6swDPZlDjDXhfPGpwib+3TL1fniipX/YrEAxU4LZFX49zE0mcQR 62GkijutCN7YG4SCAZHHpwyWbKULKLzn -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:34 2025 by rpki-client