$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: hIF7JSo1rHRxuqQF8Ra5WoRoCluzTs0n/Q4Q637zQ2s= Subject key identifier: 4E:2E:FF:0F:59:5D:A2:D3:06:E1:7C:A8:B4:0C:36:66:FC:9D:4D:E8 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 018A Signing time: Fri 25 Apr 2025 02:44:48 +0000 Manifest this update: Fri 25 Apr 2025 02:44:48 +0000 Manifest next update: Fri 02 May 2025 02:44:48 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: OvyfGpzdcVU19L5cG2uknuB6ztovI2uHmDjHUW780zo=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Apr 25 02:44:48 2025 GMT Not After : May 2 02:44:48 2025 GMT Subject: CN=680af720-f85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:84:f4:a5:88:b0:47:cd:f0:7b:81:67:1f: cc:20:64:d5:26:20:02:0d:33:62:4b:b8:9d:c9:e4: 6d:11:8e:16:98:eb:e6:35:e9:0e:cf:51:d7:f9:90: dd:79:01:ba:77:16:e5:4f:ad:1c:0d:62:46:de:bd: a9:ff:0b:5d:e6:36:d6:92:66:06:97:bc:91:d7:43: 1a:e3:24:f6:d3:62:56:fa:3c:a8:7a:2f:50:21:36: 7e:cd:ac:41:47:3f:b2:78:1e:4e:28:51:56:eb:8a: 1e:16:3b:f8:3d:0e:d1:97:44:e2:de:b9:1f:09:3d: 50:36:de:47:df:e1:27:ee:33:4c:17:9b:6c:3f:bb: 75:02:06:d3:1b:b0:2e:11:bf:be:2f:f8:f6:53:c6: 9c:64:69:dd:a8:2d:53:76:c6:24:99:97:0e:b6:7c: b5:2d:06:6a:6f:47:78:60:73:e9:7c:85:39:bf:b3: 14:fe:e9:91:79:f2:94:27:7e:e6:1b:ea:44:f0:dd: 57:a5:24:1d:8c:45:7a:f2:e2:db:f4:f0:ed:aa:5c: 05:ed:5a:d0:fa:84:48:c1:56:0b:83:39:33:9d:80: b6:ac:c0:33:92:fc:2f:ce:f5:13:8d:a9:2f:be:c4: ea:0b:97:a1:25:71:0d:4f:97:3b:b9:c6:ce:77:2a: 51:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2E:FF:0F:59:5D:A2:D3:06:E1:7C:A8:B4:0C:36:66:FC:9D:4D:E8 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:85:d5:b9:5f:cd:8c:fa:e7:b2:ce:80:1c:9c:45:56:00:cc: 72:cb:a9:01:8d:17:cc:be:7e:8f:d2:54:c3:09:68:b6:48:ef: 1e:f3:c0:99:bf:85:ef:d0:1f:9b:31:f8:fe:64:bf:68:df:38: fd:4a:7a:ae:14:b2:4d:7c:53:c8:ef:31:25:09:25:de:fe:2c: 19:2b:d4:d7:1a:56:2a:e2:b7:e9:cf:a2:67:38:f5:d6:2c:f6: bd:23:03:48:30:63:dc:07:0c:3c:5e:e9:09:13:6f:11:1c:6f: aa:92:b9:14:11:34:62:97:59:0d:cd:aa:35:e0:ee:11:24:c6: 0a:69:9c:e7:44:9c:a7:f6:d5:ec:24:04:6a:c2:2b:95:ed:1d: 30:a5:e6:c6:52:bf:c7:a4:fc:47:2d:e5:cc:87:16:20:15:63: ef:57:e2:bf:7f:e4:ba:e9:62:f7:52:56:d1:64:d0:6f:9f:99: 8a:b5:ac:1b:69:9f:d1:96:f3:0e:33:6f:e5:75:fa:c5:cb:f2: 2c:43:45:cb:64:83:43:4f:6d:21:09:02:df:9c:3f:76:00:e0: b6:6e:9f:f3:ef:ac:c1:b8:fc:36:fb:2a:55:43:be:e2:de:7c: 8a:a2:dc:a7:18:0a:41:ca:04:7a:b5:73:9b:e4:ab:a2:54:b1: 89:69:9a:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwNDI1MDI0NDQ4WhcNMjUwNTAyMDI0NDQ4WjAYMRYwFAYD VQQDEw02ODBhZjcyMC1mODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU+E9KWIsEfN8HuBZx/MIGTVJiACDTNiS7idyeRtEY4WmOvmNekOz1HX+ZDd eQG6dxblT60cDWJG3r2p/wtd5jbWkmYGl7yR10Ma4yT202JW+jyoei9QITZ+zaxB Rz+yeB5OKFFW64oeFjv4PQ7Rl0Ti3rkfCT1QNt5H3+En7jNMF5tsP7t1AgbTG7Au Eb++L/j2U8acZGndqC1TdsYkmZcOtny1LQZqb0d4YHPpfIU5v7MU/umRefKUJ37m G+pE8N1XpSQdjEV68uLb9PDtqlwF7VrQ+oRIwVYLgzkznYC2rMAzkvwvzvUTjakv vsTqC5ehJXENT5c7ucbOdypRrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4u/w9Z XaLTBuF8qLQMNmb8nU3oMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXhdW5X82M+ueyzoAcnEVWAMxyy6kBjRfMvn6P0lTDCWi2SO8e88CZ v4Xv0B+bMfj+ZL9o3zj9SnquFLJNfFPI7zElCSXe/iwZK9TXGlYq4rfpz6JnOPXW LPa9IwNIMGPcBww8XukJE28RHG+qkrkUETRil1kNzao14O4RJMYKaZznRJyn9tXs JARqwiuV7R0wpebGUr/HpPxHLeXMhxYgFWPvV+K/f+S66WL3UlbRZNBvn5mKtawb aZ/RlvMOM2/ldfrFy/IsQ0XLZINDT20hCQLfnD92AOC2bp/z76zBuPw2+ypVQ77i 3nyKotynGApBygR6tXOb5KuiVLGJaZrx -----END CERTIFICATE-----Generated at Sat Apr 26 12:55:37 2025 by rpki-client