$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: k0aROK8Q4Fd1rFcrB0QhX6H6ejykHIihRyVWDthh228= Subject key identifier: 8D:A2:C8:ED:82:C8:4C:4C:18:BB:D4:82:B0:3E:D8:66:4C:AB:C5:A7 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01A2 Signing time: Fri 13 Jun 2025 02:22:37 +0000 Manifest this update: Fri 13 Jun 2025 02:22:36 +0000 Manifest next update: Fri 20 Jun 2025 02:22:36 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: 7FxRAKy2mjhRMtD1OdF4kHeMxg39afANWvDL+Wheft4=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Jun 13 02:22:36 2025 GMT Not After : Jun 20 02:22:36 2025 GMT Subject: CN=684b8b6d-9f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:7b:b3:50:e4:a8:3f:71:18:9b:c5:c6:9a: d4:28:d3:c4:8e:b3:51:87:81:65:57:ed:96:cd:5a: 50:9b:bf:35:2c:f0:78:c3:ff:98:af:92:9b:a2:bb: 58:cf:8b:e6:94:7f:31:be:c9:7e:17:cc:9a:af:6e: eb:ec:f9:a4:0a:e5:e2:9e:45:f5:11:ff:e1:27:fd: 7c:f5:56:8a:10:40:92:5d:cf:08:31:4a:3a:0f:3e: b1:76:e7:75:5b:98:89:69:08:b6:9e:84:97:86:76: ad:48:50:8e:8f:c5:be:b8:23:11:c1:53:18:ae:e4: 88:a8:f2:3a:03:33:ac:02:19:54:b4:83:05:55:2c: d3:ad:71:53:50:03:79:e1:30:81:5c:21:4c:47:e5: d0:b2:0f:71:a9:c7:a3:d9:a0:b6:74:94:94:83:8e: 40:1c:f6:f5:f5:c1:f2:3f:3e:10:fe:3c:21:a4:70: 57:ff:98:7d:c8:9a:5b:0d:6c:bd:95:c0:4b:01:38: a4:19:46:d8:bd:9a:52:6a:26:fb:93:9e:7e:a1:c0: d6:02:6c:dd:a4:56:60:1f:ec:c7:90:1e:6f:bb:cd: ff:31:54:68:75:f2:36:e4:54:69:04:fc:14:00:e0: f1:42:db:9e:ae:a3:fd:8c:ce:c3:df:8a:37:cc:67: 5f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A2:C8:ED:82:C8:4C:4C:18:BB:D4:82:B0:3E:D8:66:4C:AB:C5:A7 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:51:f5:7e:2c:6a:30:11:a9:44:e5:75:cc:34:1e:aa:58:32: 5e:9f:27:75:f3:14:27:2b:4b:b3:91:e5:3e:b6:c4:8b:26:8f: 0b:2d:34:d4:ae:65:ca:b3:c8:af:cc:88:31:73:0f:ac:8d:60: 7f:a2:b7:c1:a6:8c:cd:4a:2d:52:6f:8e:e3:10:52:6a:bb:bd: a4:30:15:f3:d8:a1:86:e4:44:2f:48:96:39:4a:74:a4:99:08: 17:bc:07:61:48:7f:83:93:a4:88:18:6f:11:31:47:d9:32:bb: 6f:2a:4f:64:b3:bc:bf:97:c7:dd:19:e1:62:40:22:74:b9:74: 45:a2:73:0d:26:b7:d9:29:55:23:7d:d8:78:bd:12:e8:97:f6: 16:ba:a4:f9:55:58:a7:a2:63:fd:0e:eb:1d:87:67:34:91:48: ce:5a:f7:c5:51:bb:64:28:55:64:e7:0b:47:0b:c5:2c:a4:a2: dd:6a:33:fb:dd:5f:f0:8e:fe:df:ac:d1:3d:2f:7a:39:5f:5c: 59:74:b0:53:0c:9b:68:89:6f:3a:bb:a7:e8:ca:1e:54:55:25: d6:e6:4e:52:69:e6:44:da:94:13:bf:2a:68:88:a1:67:61:64: 1e:76:4f:49:06:c9:05:b1:81:e1:18:92:6e:c7:2f:6b:1f:58: a1:99:b0:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwNjEzMDIyMjM2WhcNMjUwNjIwMDIyMjM2WjAYMRYwFAYD VQQDEw02ODRiOGI2ZC05ZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqZ7s1DkqD9xGJvFxprUKNPEjrNRh4FlV+2WzVpQm781LPB4w/+Yr5KbortY z4vmlH8xvsl+F8yar27r7PmkCuXinkX1Ef/hJ/189VaKEECSXc8IMUo6Dz6xdud1 W5iJaQi2noSXhnatSFCOj8W+uCMRwVMYruSIqPI6AzOsAhlUtIMFVSzTrXFTUAN5 4TCBXCFMR+XQsg9xqcej2aC2dJSUg45AHPb19cHyPz4Q/jwhpHBX/5h9yJpbDWy9 lcBLATikGUbYvZpSaib7k55+ocDWAmzdpFZgH+zHkB5vu83/MVRodfI25FRpBPwU AODxQtuerqP9jM7D34o3zGdfSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2iyO2C yExMGLvUgrA+2GZMq8WnMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjUfV+LGowEalE5XXMNB6qWDJenyd18xQnK0uzkeU+tsSLJo8LLTTU rmXKs8ivzIgxcw+sjWB/orfBpozNSi1Sb47jEFJqu72kMBXz2KGG5EQvSJY5SnSk mQgXvAdhSH+Dk6SIGG8RMUfZMrtvKk9ks7y/l8fdGeFiQCJ0uXRFonMNJrfZKVUj fdh4vRLol/YWuqT5VVinomP9Dusdh2c0kUjOWvfFUbtkKFVk5wtHC8UspKLdajP7 3V/wjv7frNE9L3o5X1xZdLBTDJtoiW86u6foyh5UVSXW5k5SaeZE2pQTvypoiKFn YWQedk9JBskFsYHhGJJuxy9rH1ihmbAJ -----END CERTIFICATE-----Generated at Sat Jun 14 18:45:45 2025 by rpki-client