$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: ECmH8wS0QbU41SCbx6tW8ky4T6fnfeybA38zj7oMOOk= Subject key identifier: 37:E4:5E:47:CC:5A:48:91:A9:23:E3:9A:D5:9B:53:27:C1:02:7B:0B Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01E5 Signing time: Sun 19 Oct 2025 05:06:10 +0000 Manifest this update: Sun 19 Oct 2025 05:06:09 +0000 Manifest next update: Sun 26 Oct 2025 05:06:09 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: HCpe0JAOD9jcvC0EuFHJsUAW3Po1xuGluSx3NRynsPs=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: 5JjQBJx2Pjnhm+6Kg83lIxJriPqmmDrWvmhqbV4seEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Oct 19 05:06:09 2025 GMT Not After : Oct 26 05:06:09 2025 GMT Subject: CN=68f471c2-910c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a1:06:2b:eb:51:e1:cc:db:e4:9e:70:ad:1b: 86:17:b6:de:ce:02:97:95:16:0e:40:d4:8a:11:11: a9:f7:a5:b4:4e:f8:58:fd:19:3d:a8:08:4e:48:6b: c3:13:26:e8:c2:b0:d5:0b:b9:2d:09:af:36:e4:e3: 9b:3f:72:bf:f3:a7:1d:c2:39:3e:cd:c9:06:f9:92: 33:ca:83:a5:fc:aa:df:71:19:14:54:7a:6d:79:2a: 28:e8:1c:f7:93:db:ba:cf:16:98:d1:26:04:e6:30: d9:64:8d:0b:a1:fa:88:30:1b:c1:6e:58:2e:3a:ae: 35:4f:30:9a:1f:ba:28:26:1d:68:a9:fd:d4:ab:1d: f4:00:be:e2:45:3c:d9:91:82:31:cf:f7:25:27:7e: 7c:c6:63:96:3f:71:fa:f1:e9:b8:23:cd:39:b8:87: 79:51:88:71:ef:b4:d0:36:c7:c3:dd:03:79:f7:85: 1c:4e:d0:4b:e1:9a:83:13:45:bf:13:6d:a2:02:3f: 4d:aa:5d:c0:ca:30:ef:87:83:cb:86:0e:7f:44:e5: d2:66:b1:58:4e:31:83:6f:b4:2d:87:ae:2e:f4:8c: 31:6c:85:ed:d2:59:b8:db:bc:d8:38:70:dd:31:12: 4b:db:eb:12:a3:04:de:58:6b:8e:c4:94:c5:ff:7e: 69:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E4:5E:47:CC:5A:48:91:A9:23:E3:9A:D5:9B:53:27:C1:02:7B:0B X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:16:fc:d4:a1:17:b1:d2:a0:2f:45:e0:7d:83:7d:d1:42:f8: 04:1d:f9:bf:de:42:99:cb:43:4a:04:ba:a3:39:e4:c9:4a:1c: 53:b3:b3:c4:ef:df:76:98:ef:66:22:d9:28:1a:6b:42:dc:45: 02:1a:d7:18:97:55:a9:86:e4:3f:3a:f3:7c:2c:cf:0f:9f:dc: 4f:40:1c:91:cd:4d:65:e4:7b:7c:3f:5e:d0:1a:c8:4e:4b:0e: 8f:dd:2d:2e:d4:7a:15:9e:aa:a3:65:87:cf:f6:29:b2:bb:f8: 5f:71:20:f1:1d:45:68:e1:dc:98:da:ae:f2:8f:5b:75:64:55: 24:2d:5c:0a:e1:85:4f:95:2b:d6:7b:73:4e:43:40:d6:32:14: 84:83:14:1c:49:cf:69:50:d2:65:5f:58:9d:16:da:aa:96:0e: b6:cf:7f:e3:87:b3:e7:43:94:81:60:0d:a1:5f:26:eb:be:cf: bf:7f:b0:64:69:55:f9:18:8c:4d:84:23:ab:c2:6e:f0:69:b1: 27:ec:c0:ad:73:30:3c:b2:c5:5b:1d:32:f4:9c:34:6f:8e:36: 82:a5:bd:ea:42:8b:81:8f:74:f1:3c:ba:54:86:f6:f4:40:3d: ab:59:3f:bd:8a:1a:91:1b:2b:5d:5a:35:82:be:0c:d3:5e:fb: 1f:b2:c2:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUxMDE5MDUwNjA5WhcNMjUxMDI2MDUwNjA5WjAYMRYwFAYD VQQDEw02OGY0NzFjMi05MTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqEGK+tR4czb5J5wrRuGF7bezgKXlRYOQNSKERGp96W0TvhY/Rk9qAhOSGvD EybowrDVC7ktCa825OObP3K/86cdwjk+zckG+ZIzyoOl/KrfcRkUVHpteSoo6Bz3 k9u6zxaY0SYE5jDZZI0LofqIMBvBblguOq41TzCaH7ooJh1oqf3Uqx30AL7iRTzZ kYIxz/clJ358xmOWP3H68em4I805uId5UYhx77TQNsfD3QN594UcTtBL4ZqDE0W/ E22iAj9Nql3AyjDvh4PLhg5/ROXSZrFYTjGDb7Qth64u9IwxbIXt0lm427zYOHDd MRJL2+sSowTeWGuOxJTF/35pzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfkXkfM WkiRqSPjmtWbUyfBAnsLMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALFvzUoRex0qAvReB9g33RQvgEHfm/3kKZy0NKBLqjOeTJShxTs7PE 7992mO9mItkoGmtC3EUCGtcYl1WphuQ/OvN8LM8Pn9xPQByRzU1l5Ht8P17QGshO Sw6P3S0u1HoVnqqjZYfP9imyu/hfcSDxHUVo4dyY2q7yj1t1ZFUkLVwK4YVPlSvW e3NOQ0DWMhSEgxQcSc9pUNJlX1idFtqqlg62z3/jh7PnQ5SBYA2hXybrvs+/f7Bk aVX5GIxNhCOrwm7wabEn7MCtczA8ssVbHTL0nDRvjjaCpb3qQouBj3TxPLpUhvb0 QD2rWT+9ihqRGytdWjWCvgzTXvsfssJd -----END CERTIFICATE-----Generated at Mon Oct 20 07:30:50 2025 by rpki-client