$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: L7aKK+S3UGiN63JOpxbpgRWcww4+qjeOOweygr4syZs= Subject key identifier: 51:EC:5D:2C:CB:22:A1:E7:A8:E5:70:45:CB:2B:B1:69:C4:56:F6:06 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01BE Signing time: Thu 07 Aug 2025 03:29:55 +0000 Manifest this update: Thu 07 Aug 2025 03:29:54 +0000 Manifest next update: Thu 14 Aug 2025 03:29:54 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: Axy9M+nwps7kE18RQwkHMTg7aer/22y0Tk0fMy039hw=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Aug 7 03:29:54 2025 GMT Not After : Aug 14 03:29:54 2025 GMT Subject: CN=68941db3-ab0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:2c:bd:16:0d:e0:a0:41:ea:41:17:fd:ee: 75:74:47:82:09:5a:a3:99:ec:a4:ef:7e:0d:9d:f5: fd:c7:2f:e7:5e:bb:10:84:bb:73:b8:d7:56:6c:f4: 82:17:d9:20:f2:48:77:37:03:d8:18:72:7b:2b:a9: f8:5f:e5:10:2f:81:38:c6:ee:4b:0b:20:50:e6:9b: 91:ca:14:99:07:e8:1d:ae:10:c9:ae:1a:3b:81:8a: f1:1f:1c:ea:a6:a0:73:74:ed:57:76:68:a7:9d:c9: cf:d8:7c:e8:e6:82:bb:1e:0a:2d:4d:48:06:f9:4d: 92:af:59:a2:5c:8c:f3:44:e4:ca:60:ef:19:59:a7: eb:c7:23:5e:ee:92:02:c2:b2:8b:15:70:3a:f2:54: c0:cb:9b:6b:01:cc:65:e6:23:06:ed:6b:6c:13:3b: 88:1e:44:78:20:d5:1f:01:97:79:7c:95:c4:97:17: ec:bc:c8:70:bd:0a:60:c6:fa:e0:0f:ab:1f:2a:51: 9d:cd:58:48:b9:3f:fb:bf:aa:13:ae:c2:8b:4f:72: ba:61:34:b5:53:66:9b:19:e9:f9:0c:71:e6:46:e7: 88:0d:ff:f0:73:ae:7a:d6:3d:de:3c:d3:88:35:c0: 98:9e:5f:c7:b5:ec:01:f9:e1:b9:1d:df:39:49:83: 9d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:EC:5D:2C:CB:22:A1:E7:A8:E5:70:45:CB:2B:B1:69:C4:56:F6:06 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:97:0e:13:69:83:30:d7:4b:d1:c4:5a:4a:5e:c5:a0:98:61: b9:df:c6:c1:11:85:0b:da:f0:35:57:fe:e8:39:44:45:5c:4f: 30:a6:2a:46:87:ac:9e:36:50:1e:3f:4c:9d:b9:e5:a2:5f:eb: 07:7d:4a:ec:14:61:d3:eb:b8:b5:dc:32:58:ac:d2:46:40:03: 64:ff:5c:b9:c2:3e:d7:51:db:dc:b9:d0:85:55:1d:20:2f:eb: 0f:fb:2d:bd:44:f2:c3:3b:ed:8a:83:4f:9c:4f:3c:91:48:1a: cf:99:42:e2:4e:e0:b8:e1:12:09:1d:a2:a4:9a:08:25:1f:84: bd:f7:61:33:5c:54:ad:41:d9:93:79:3b:44:f3:f8:b8:f3:1b: 38:b4:60:08:d2:05:26:f6:46:24:47:fc:33:0f:75:b9:c0:9a: 89:9a:3e:90:b9:b7:c7:55:6e:31:d6:52:25:9b:d9:5f:96:58: fb:64:20:03:93:7e:b3:11:75:a3:e6:d6:c9:bb:67:b8:a8:33: 09:0b:ba:c9:64:d5:29:18:dc:ba:eb:70:ea:d6:8f:2e:e7:36: 1c:2b:d5:dd:18:ae:cf:8e:04:e4:19:9c:7c:9d:34:00:d7:b7: 52:ae:e5:62:49:9d:12:b3:cd:52:17:a7:00:56:80:41:50:95: 19:9c:21:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwODA3MDMyOTU0WhcNMjUwODE0MDMyOTU0WjAYMRYwFAYD VQQDEw02ODk0MWRiMy1hYjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreYsvRYN4KBB6kEX/e51dEeCCVqjmeyk734NnfX9xy/nXrsQhLtzuNdWbPSC F9kg8kh3NwPYGHJ7K6n4X+UQL4E4xu5LCyBQ5puRyhSZB+gdrhDJrho7gYrxHxzq pqBzdO1XdminncnP2Hzo5oK7HgotTUgG+U2Sr1miXIzzROTKYO8ZWafrxyNe7pIC wrKLFXA68lTAy5trAcxl5iMG7WtsEzuIHkR4INUfAZd5fJXElxfsvMhwvQpgxvrg D6sfKlGdzVhIuT/7v6oTrsKLT3K6YTS1U2abGen5DHHmRueIDf/wc6561j3ePNOI NcCYnl/HtewB+eG5Hd85SYOdGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHsXSzL IqHnqOVwRcsrsWnEVvYGMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBllw4TaYMw10vRxFpKXsWgmGG538bBEYUL2vA1V/7oOURFXE8wpipG h6yeNlAeP0ydueWiX+sHfUrsFGHT67i13DJYrNJGQANk/1y5wj7XUdvcudCFVR0g L+sP+y29RPLDO+2Kg0+cTzyRSBrPmULiTuC44RIJHaKkmgglH4S992EzXFStQdmT eTtE8/i48xs4tGAI0gUm9kYkR/wzD3W5wJqJmj6QubfHVW4x1lIlm9lfllj7ZCAD k36zEXWj5tbJu2e4qDMJC7rJZNUpGNy663Dq1o8u5zYcK9XdGK7PjgTkGZx8nTQA 17dSruViSZ0Ss81SF6cAVoBBUJUZnCHh -----END CERTIFICATE-----Generated at Thu Aug 7 07:34:29 2025 by rpki-client