$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft File: ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft (raw, json) Hash identifier: Y73mN9E8MtVO/HhHE7GFG7Qbr/jqF5ckWg/i9GocUa4= Subject key identifier: 1C:4D:9F:8F:AD:3D:5E:17:C4:83:F2:D7:C9:32:3D:B7:80:53:48:D5 Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0B86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft Manifest number: 0B7F Signing time: Wed 06 Aug 2025 19:16:59 +0000 Manifest this update: Wed 06 Aug 2025 19:16:59 +0000 Manifest next update: Wed 13 Aug 2025 19:16:59 +0000 Files and hashes: 1: ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl (hash: vSwZSzNDVzIA6o7WumxTyZ3ArT/kXq3IzjH8eRVUxkg=) 2: 1A8553B831F011EAA18AC76AC4F9AE02.roa (hash: 2QDvhbtMSuUMKkHjiP/BzPb8Yd8fGPxfNmWlpQE2e54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2950 (0xb86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6, serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Aug 6 19:16:59 2025 GMT Not After : Aug 13 19:16:59 2025 GMT Subject: CN=6893aa2b-f882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:4f:e1:88:61:3b:64:5f:16:92:66:96:65: 81:70:4f:ce:3c:2e:50:18:2a:5d:fe:11:85:0b:87: 0d:09:ef:72:bb:97:f9:e5:fa:87:22:94:b1:bb:d4: 9f:e8:dd:55:a1:b7:89:b0:12:3e:97:a6:75:69:0f: 50:f8:14:5c:f6:83:c0:b8:19:36:fb:4e:72:d7:61: ae:3e:c6:d5:d7:e0:c3:f6:6e:38:b5:ff:b8:65:b6: cc:95:ee:f2:18:1a:a7:6a:71:ac:32:8b:9f:1b:56: 55:48:82:1d:79:3f:1c:0a:0a:78:38:2d:f0:c8:b7: 14:f7:7e:b6:d0:9c:21:3f:99:e1:4c:0c:84:41:f2: fc:90:fb:0d:af:d5:8c:dc:61:39:de:33:35:6f:b2: b5:bf:ef:29:b7:d2:ee:19:58:dd:8d:1e:92:4a:1f: b3:90:c2:0f:3b:fa:88:b1:7e:45:17:cf:ac:26:e6: da:4a:cb:93:f3:58:b6:22:e7:4e:f4:7b:da:11:0d: 41:54:3a:46:74:22:ee:e7:2c:65:7c:e9:6b:a5:b4: ec:6c:19:77:c9:3c:03:8e:a9:bf:aa:4c:01:d4:61: 14:7c:b4:7c:5a:f0:66:d1:cf:95:b7:cd:bd:99:43: 5e:7c:18:9b:22:d9:6c:dd:f8:ac:b9:6f:c9:6d:e0: ad:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4D:9F:8F:AD:3D:5E:17:C4:83:F2:D7:C9:32:3D:B7:80:53:48:D5 X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:c6:2d:4e:1e:1c:7e:28:ff:fd:8e:ba:ed:11:42:45:cf:9d: 39:6e:ce:f7:c5:43:a0:71:f9:32:c3:8a:bd:22:ed:5d:07:15: 24:27:fc:5b:f1:93:bc:74:42:7b:4d:1d:a3:a0:39:61:d1:89: ed:7a:12:08:03:2d:46:92:1c:18:0d:4c:0a:15:ba:1e:1f:4b: f7:bd:b1:76:d8:54:52:25:41:c1:ca:d3:28:9e:9a:e0:24:69: d3:38:b6:94:d0:e6:de:9b:20:82:1c:c8:2d:10:63:c4:65:d7: 62:e5:cf:63:2e:6b:c2:fb:8d:67:09:86:c7:19:75:45:c8:8e: 48:23:dd:84:c9:14:29:77:fc:90:64:8a:31:c4:17:74:62:68: 53:9f:f4:00:73:34:1a:d1:c0:22:b1:91:df:ad:97:54:83:59: 1e:e2:33:1c:c1:1b:fe:fd:87:b2:01:d2:3b:8f:ce:5f:cb:16: 81:e0:12:6c:3c:b7:10:e1:f3:3c:dd:f2:ea:e2:7a:43:ca:36: 43:5a:9f:a3:7d:e2:47:4d:11:8a:11:25:6a:5d:eb:ac:b3:b6: 17:b8:1b:ea:be:e1:7b:03:b4:42:d6:e3:91:40:2c:ae:32:09: 8c:82:30:bf:85:ab:f7:26:6a:a9:a4:58:3a:a6:74:8d:7a:82: 97:a2:cc:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjUwODA2MTkxNjU5WhcNMjUwODEzMTkxNjU5WjAYMRYwFAYD VQQDEw02ODkzYWEyYi1mODgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9NP4YhhO2RfFpJmlmWBcE/OPC5QGCpd/hGFC4cNCe9yu5f55fqHIpSxu9Sf 6N1VobeJsBI+l6Z1aQ9Q+BRc9oPAuBk2+05y12GuPsbV1+DD9m44tf+4ZbbMle7y GBqnanGsMoufG1ZVSIIdeT8cCgp4OC3wyLcU93620JwhP5nhTAyEQfL8kPsNr9WM 3GE53jM1b7K1v+8pt9LuGVjdjR6SSh+zkMIPO/qIsX5FF8+sJubaSsuT81i2IudO 9HvaEQ1BVDpGdCLu5yxlfOlrpbTsbBl3yTwDjqm/qkwB1GEUfLR8WvBm0c+Vt829 mUNefBibItls3fisuW/JbeCtIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxNn4+t PV4XxIPy18kyPbeAU0jVMB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzdCNi80M0Y2QTU3ODMxRUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5 aEI2ZnF5VnRER0JFeTRXTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoxi1OHhx+KP/9jrrtEUJFz505bs73xUOgcfkyw4q9Iu1dBxUkJ/xb 8ZO8dEJ7TR2joDlh0YntehIIAy1GkhwYDUwKFboeH0v3vbF22FRSJUHBytMonprg JGnTOLaU0ObemyCCHMgtEGPEZddi5c9jLmvC+41nCYbHGXVFyI5II92EyRQpd/yQ ZIoxxBd0YmhTn/QAczQa0cAisZHfrZdUg1ke4jMcwRv+/YeyAdI7j85fyxaB4BJs PLcQ4fM83fLq4npDyjZDWp+jfeJHTRGKESVqXeuss7YXuBvqvuF7A7RC1uORQCyu MgmMgjC/hav3JmqppFg6pnSNeoKXosyG -----END CERTIFICATE-----Generated at Fri Aug 8 12:55:30 2025 by rpki-client