$ rpki-client -vvf rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft File: stpsovF-3e60xFAzYfTYgigLyog.mft (raw, json) Hash identifier: 66VtwuDMdHObA7e5oSQH1EkxrXjT1XTa6hxdtE64bXs= Subject key identifier: 15:9F:1C:3C:23:DD:1E:9A:BD:9A:02:52:71:2E:AD:42:A7:C4:D2:B3 Authority key identifier: B2:DA:6C:A2:F1:7E:DD:EE:B4:C4:50:33:61:F4:D8:82:28:0B:CA:88 Certificate issuer: /CN=A9122FD2/serialNumber=B2DA6CA2F17EDDEEB4C4503361F4D882280BCA88 Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stpsovF-3e60xFAzYfTYgigLyog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft Manifest number: 07D8 Signing time: Thu 24 Apr 2025 20:50:19 +0000 Manifest this update: Thu 24 Apr 2025 20:50:18 +0000 Manifest next update: Thu 01 May 2025 20:50:18 +0000 Files and hashes: 1: stpsovF-3e60xFAzYfTYgigLyog.crl (hash: 9trth4fCHRWntiJkaShu8aVmqXZmpsF8KOtLtXBtLRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.crl rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stpsovF-3e60xFAzYfTYgigLyog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122FD2, serialNumber=B2DA6CA2F17EDDEEB4C4503361F4D882280BCA88 Validity Not Before: Apr 24 20:50:18 2025 GMT Not After : May 1 20:50:18 2025 GMT Subject: CN=680aa40b-25ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:10:d9:34:5e:e3:ab:ba:89:df:32:5d:05: b2:ed:86:75:c7:c9:26:11:bd:82:46:52:27:bb:6a: b6:f6:79:05:39:30:23:99:7b:98:1e:e4:8f:8c:39: d7:78:67:06:4d:8c:3e:9b:45:67:bf:91:03:f5:9c: 6f:dc:8f:4b:3b:74:3d:a3:ff:b9:73:b6:5c:3a:51: f6:82:74:bf:3f:65:d0:10:f7:c4:ea:57:b1:48:22: 0e:17:32:65:19:8b:43:a0:44:71:89:3a:e0:5b:ee: f3:60:13:71:a0:eb:09:fc:35:02:54:5f:b8:d1:63: bd:c7:0c:84:04:0a:59:da:31:31:f5:cd:fd:c7:dd: 33:d5:27:fb:ee:37:10:20:7d:09:d0:23:70:78:e4: f5:ed:86:99:e8:b3:a9:97:22:e3:87:c9:ce:d9:ca: de:97:a9:c2:87:77:e3:6f:99:c3:1b:ea:86:de:78: ff:19:1d:6f:45:fa:a3:78:09:66:2d:b3:0f:e0:01: e7:f6:59:6d:ff:15:46:6a:a6:67:a1:f4:db:41:d8: b7:4f:94:1c:74:0f:56:1d:b3:b5:4f:36:b8:ed:a1: 22:f0:b1:92:3a:f5:63:e1:79:b4:32:f1:76:10:67: 69:da:1e:36:aa:7f:69:e9:8e:10:92:fe:1a:d2:b9: 5d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9F:1C:3C:23:DD:1E:9A:BD:9A:02:52:71:2E:AD:42:A7:C4:D2:B3 X509v3 Authority Key Identifier: keyid:B2:DA:6C:A2:F1:7E:DD:EE:B4:C4:50:33:61:F4:D8:82:28:0B:CA:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stpsovF-3e60xFAzYfTYgigLyog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122FD2/C81B2628E5FB11EA84544A74C4F9AE02/stpsovF-3e60xFAzYfTYgigLyog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:89:1d:20:ef:2f:2c:b3:c0:29:ac:d8:8b:fb:6a:dd:b0:df: 20:a8:8e:9a:2f:05:e6:5f:a3:9b:87:71:a4:05:54:02:19:0b: 08:1d:29:30:d6:d3:68:50:10:fa:6e:2b:e3:6d:cd:8a:dd:d9: 1e:9b:a2:6d:8a:f1:24:94:af:7e:33:00:f3:8d:18:9f:7c:65: f4:59:09:bb:46:99:d9:e3:73:83:4e:fa:f9:7e:56:92:e0:6a: dc:49:dd:55:96:bc:19:57:c9:6b:34:ae:1f:ff:99:34:92:8c: ba:68:a0:ee:9a:f9:50:31:a2:f1:a4:4f:7c:46:45:10:6a:29: 09:4f:b9:0f:f9:8b:b1:0d:f4:63:20:30:75:d0:4d:d1:9a:e1: 84:7b:12:d7:1a:36:17:67:97:a5:ed:36:54:a9:95:ef:b7:d6: 05:15:09:94:70:fc:85:7e:98:fa:68:77:10:9e:3a:bc:de:ea: 9d:2a:88:f5:2b:69:52:e1:bb:f6:cc:3d:fb:34:61:ce:e5:c2: db:80:b5:d4:34:c7:98:72:e1:c2:82:e8:6d:b6:94:34:ff:22: cb:ef:a2:12:66:fa:74:02:db:46:5e:84:21:e8:59:31:06:ec: 25:df:bb:12:7f:eb:ca:06:ca:2a:97:6b:04:fb:b1:66:d7:40: 3c:37:37:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJGRDIxMTAvBgNVBAUTKEIyREE2Q0EyRjE3RURERUVCNEM0NTAzMzYxRjREODgy MjgwQkNBODgwHhcNMjUwNDI0MjA1MDE4WhcNMjUwNTAxMjA1MDE4WjAYMRYwFAYD VQQDEw02ODBhYTQwYi0yNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/kQ2TRe46u6id8yXQWy7YZ1x8kmEb2CRlInu2q29nkFOTAjmXuYHuSPjDnX eGcGTYw+m0Vnv5ED9Zxv3I9LO3Q9o/+5c7ZcOlH2gnS/P2XQEPfE6lexSCIOFzJl GYtDoERxiTrgW+7zYBNxoOsJ/DUCVF+40WO9xwyEBApZ2jEx9c39x90z1Sf77jcQ IH0J0CNweOT17YaZ6LOplyLjh8nO2crel6nCh3fjb5nDG+qG3nj/GR1vRfqjeAlm LbMP4AHn9llt/xVGaqZnofTbQdi3T5QcdA9WHbO1Tza47aEi8LGSOvVj4Xm0MvF2 EGdp2h42qn9p6Y4Qkv4a0rldqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWfHDwj 3R6avZoCUnEurUKnxNKzMB8GA1UdIwQYMBaAFLLabKLxft3utMRQM2H02IIoC8qI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkZEMi9DODFCMjYyOEU1 RkIxMUVBODQ1NDRBNzRDNEY5QUUwMi9zdHBzb3ZGLTNlNjB4RkF6WWZUWWdpZ0x5 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N0cHNvdkYtM2U2MHhGQXpZZlRZZ2lnTHlvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkZEMi9DODFCMjYyOEU1RkIxMUVBODQ1NDRBNzRDNEY5QUUwMi9zdHBzb3ZGLTNl NjB4RkF6WWZUWWdpZ0x5b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYiR0g7y8ss8AprNiL+2rdsN8gqI6aLwXmX6Obh3GkBVQCGQsIHSkw 1tNoUBD6bivjbc2K3dkem6JtivEklK9+MwDzjRiffGX0WQm7RpnZ43ODTvr5flaS 4GrcSd1VlrwZV8lrNK4f/5k0koy6aKDumvlQMaLxpE98RkUQaikJT7kP+YuxDfRj IDB10E3RmuGEexLXGjYXZ5el7TZUqZXvt9YFFQmUcPyFfpj6aHcQnjq83uqdKoj1 K2lS4bv2zD37NGHO5cLbgLXUNMeYcuHCguhttpQ0/yLL76ISZvp0AttGXoQh6Fkx Buwl37sSf+vKBsoql2sE+7Fm10A8NzeI -----END CERTIFICATE-----Generated at Sat Apr 26 12:55:35 2025 by rpki-client