$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft File: ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft (raw, json) Hash identifier: ScRkFD/26tOeijbjZ2fk2YR8Tfu0byBFpHK/tMmj6mg= Subject key identifier: 6D:1A:85:46:FC:5C:FE:30:46:5A:97:61:2A:5C:C4:71:BF:0C:EF:56 Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft Manifest number: 0B64 Signing time: Sat 14 Jun 2025 18:55:41 +0000 Manifest this update: Sat 14 Jun 2025 18:55:41 +0000 Manifest next update: Sat 21 Jun 2025 18:55:41 +0000 Files and hashes: 1: ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl (hash: PblWwGTw/TitOh0Df52HqNIx05vqWRqwVikiH9j0WzI=) 2: 1A8553B831F011EAA18AC76AC4F9AE02.roa (hash: 2QDvhbtMSuUMKkHjiP/BzPb8Yd8fGPxfNmWlpQE2e54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6, serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Jun 14 18:55:41 2025 GMT Not After : Jun 21 18:55:41 2025 GMT Subject: CN=684dc5ad-fb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:87:99:06:4a:20:5c:ef:87:ae:6d:81:b6: 0a:0d:7f:84:0b:9e:b8:3f:52:a3:da:b3:14:98:5b: eb:50:43:2d:d4:16:49:b4:76:92:fb:4f:87:64:79: d9:d2:55:0c:c9:8b:0f:17:a3:c1:5d:aa:bc:95:8c: d6:25:4f:79:09:ef:b9:ff:19:27:d0:d6:dd:62:4a: d7:c4:eb:97:e2:d0:09:71:91:8b:57:58:a6:cc:4c: 6b:da:b5:84:35:76:b2:3c:4b:44:72:95:a0:1c:7c: bb:53:e9:2e:af:62:ee:c2:03:a6:87:29:6b:13:49: 5f:2c:61:90:e6:36:31:77:ea:82:db:57:12:bc:0c: f9:d8:19:3d:eb:9a:f0:cf:6b:39:b4:75:f4:92:d6: 0a:4c:2d:fe:ec:04:a4:ca:1a:a6:9c:f3:e8:20:f0: 6d:6b:48:87:0f:67:11:d7:8f:36:28:ee:23:4d:62: 4c:5c:56:9c:cb:5f:f2:58:21:13:17:4c:47:e4:33: ed:f6:23:c6:f6:35:f3:5b:a2:69:fc:4b:35:dc:2e: e3:cc:df:4d:4b:38:38:0b:8d:4f:ed:56:bc:62:f2: de:8d:81:3a:e6:ea:eb:23:51:96:31:55:72:20:05: 19:4c:ff:6e:86:00:02:24:8a:dd:3d:44:c9:a9:f4: 00:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1A:85:46:FC:5C:FE:30:46:5A:97:61:2A:5C:C4:71:BF:0C:EF:56 X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bf:b5:c8:a2:f9:d1:96:0d:c0:a5:27:28:d2:09:60:f9:1a: 80:26:b5:18:ee:98:85:e0:0c:36:c4:da:72:54:1c:17:ce:0a: 7b:df:31:ec:61:0f:18:0b:70:f1:02:92:f9:1d:17:cc:fb:be: 38:fa:06:f6:ba:32:0a:1a:18:2f:90:65:83:b2:68:dc:b3:69: 07:d3:75:7e:06:3e:21:84:c7:77:c7:dd:43:55:21:5d:3b:b4: b2:97:27:e5:25:0c:ed:1e:68:0b:1e:08:a9:db:34:6f:6a:0f: b4:73:9f:e4:5e:09:a6:f5:b6:4d:c6:9d:84:09:96:88:2d:76: 48:25:b4:53:75:6d:a1:d1:4a:d9:b8:be:b2:08:ed:0f:00:f5: 03:22:b2:1d:84:ed:e9:7d:29:1e:a2:1f:ab:4e:eb:63:49:ad: e4:29:85:bb:89:fd:48:90:e4:09:5a:50:90:92:bd:52:41:d6: 2b:81:fb:ae:51:10:88:dc:2e:01:a1:61:5b:a3:57:c7:c1:42: 1d:43:c7:40:60:a7:56:17:39:ee:b5:25:aa:a5:89:1a:a8:6d: 8a:1d:c0:ba:47:77:9d:84:64:fc:83:8f:e9:01:61:9f:bb:29: a3:8e:ad:53:4d:1b:76:cc:b8:0e:b8:a9:06:ce:fe:fd:26:0a: 25:b9:a5:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjUwNjE0MTg1NTQxWhcNMjUwNjIxMTg1NTQxWjAYMRYwFAYD VQQDEw02ODRkYzVhZC1mYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3uHmQZKIFzvh65tgbYKDX+EC564P1Kj2rMUmFvrUEMt1BZJtHaS+0+HZHnZ 0lUMyYsPF6PBXaq8lYzWJU95Ce+5/xkn0NbdYkrXxOuX4tAJcZGLV1imzExr2rWE NXayPEtEcpWgHHy7U+kur2LuwgOmhylrE0lfLGGQ5jYxd+qC21cSvAz52Bk965rw z2s5tHX0ktYKTC3+7ASkyhqmnPPoIPBta0iHD2cR1482KO4jTWJMXFacy1/yWCET F0xH5DPt9iPG9jXzW6Jp/Es13C7jzN9NSzg4C41P7Va8YvLejYE65urrI1GWMVVy IAUZTP9uhgACJIrdPUTJqfQApwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0ahUb8 XP4wRlqXYSpcxHG/DO9WMB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzdCNi80M0Y2QTU3ODMxRUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5 aEI2ZnF5VnRER0JFeTRXTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNv7XIovnRlg3ApSco0glg+RqAJrUY7piF4Aw2xNpyVBwXzgp73zHs YQ8YC3DxApL5HRfM+744+gb2ujIKGhgvkGWDsmjcs2kH03V+Bj4hhMd3x91DVSFd O7SylyflJQztHmgLHgip2zRvag+0c5/kXgmm9bZNxp2ECZaILXZIJbRTdW2h0UrZ uL6yCO0PAPUDIrIdhO3pfSkeoh+rTutjSa3kKYW7if1IkOQJWlCQkr1SQdYrgfuu URCI3C4BoWFbo1fHwUIdQ8dAYKdWFznutSWqpYkaqG2KHcC6R3edhGT8g4/pAWGf uymjjq1TTRt2zLgOuKkGzv79JgoluaVo -----END CERTIFICATE-----Generated at Mon Jun 16 10:34:53 2025 by rpki-client