$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: VvmuDVGsoleNIEsuqu7h8lmbHjGr/Xp1b6+cd4ZAS3E= Subject key identifier: CF:2E:A4:B0:52:94:53:AB:0E:01:6D:46:3A:12:8E:8F:C0:D3:3B:DA Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01C6 Signing time: Sat 23 Aug 2025 03:04:48 +0000 Manifest this update: Sat 23 Aug 2025 03:04:48 +0000 Manifest next update: Sat 30 Aug 2025 03:04:48 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: 61ie01+gix6EZB6kNW4BOyUxSXpCEl02S3Ea7tXq7wU=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Aug 23 03:04:48 2025 GMT Not After : Aug 30 03:04:48 2025 GMT Subject: CN=68a92fd0-1665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:87:a3:6a:38:63:0f:fc:69:5d:24:42:c5:69: b3:8e:f5:e0:ee:49:c5:8d:7c:b7:13:c1:da:83:cd: 03:a2:76:fd:48:1e:5b:b5:4f:bf:94:d0:45:0e:72: dc:61:9a:a3:46:7f:0b:5b:5a:51:9f:bb:8a:5f:d9: 4d:ae:13:0a:63:d7:2e:21:f6:7f:10:7e:d2:d3:9b: 32:93:c2:4b:75:74:c6:88:ba:45:23:96:77:eb:9f: 13:12:81:14:1f:ff:75:b0:04:c2:92:ac:bf:57:c1: e0:e4:df:ba:85:32:d3:4f:5f:7a:a5:6f:d8:2e:32: 9d:f0:8b:5c:1e:63:b3:cd:e5:76:a4:9e:aa:82:d5: 51:ab:f5:77:d9:2b:93:c5:e9:5c:72:05:9e:31:b3: 88:dd:78:8f:90:da:00:5b:2e:fc:8a:10:10:87:9a: 3c:af:70:34:fc:11:a2:6b:e5:1b:a4:8a:e6:5a:91: 16:df:57:9c:42:4c:41:99:e6:65:18:d5:53:f4:b4: d1:76:96:30:5a:71:55:7a:7d:c9:fa:81:a6:1e:9e: 70:ed:d6:7a:7d:cf:50:92:2f:4d:18:3a:38:5f:c3: 2d:09:c7:e0:d2:02:c1:71:d4:f8:ec:c6:03:a5:17: 15:f4:ee:ea:fc:cf:3f:d7:23:07:ad:3f:25:3c:ab: be:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2E:A4:B0:52:94:53:AB:0E:01:6D:46:3A:12:8E:8F:C0:D3:3B:DA X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:38:c7:9c:2a:9a:6d:3b:43:a8:ff:3b:a8:5d:fd:cc:c5:bf: e3:86:04:91:60:c2:fb:d1:a4:17:93:97:c2:88:67:a7:f2:4a: 22:6a:d4:a1:1d:56:cb:b4:e5:f5:3c:14:ca:1a:20:9b:de:42: d3:b4:8f:2e:c1:0e:cf:18:24:c3:63:9a:cd:d4:b7:16:3a:ab: 29:0a:14:83:a7:5e:17:7c:8b:a8:36:40:ae:37:c7:69:d7:c2: de:6e:41:58:5a:c1:cc:7e:05:ef:45:2f:73:2f:02:a9:09:5b: fc:53:72:09:26:ab:4a:f1:bd:72:21:33:1b:06:ca:c4:84:a6: 77:40:70:80:f6:1b:76:cc:04:94:7e:55:40:ac:e0:50:a8:9a: c3:8c:4b:d4:df:a9:90:a0:d7:27:0d:45:90:c4:c7:5d:a1:c4: dc:1e:6f:e7:35:d4:5c:99:86:30:e3:ad:f7:81:b4:fc:6e:ae: b1:c8:eb:da:9c:b3:ea:b9:23:e5:b2:7c:9b:c5:4a:1e:8e:7c: ef:41:06:b0:a2:2a:71:98:50:a0:c9:08:f5:d3:aa:52:6e:32: ee:7f:e0:f0:44:03:19:76:65:5f:23:eb:a6:ee:25:6e:18:77: 64:3f:83:1a:0c:a4:e1:17:89:40:78:88:e1:76:3e:7b:f5:63: e3:14:2a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwODIzMDMwNDQ4WhcNMjUwODMwMDMwNDQ4WjAYMRYwFAYD VQQDEw02OGE5MmZkMC0xNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4ejajhjD/xpXSRCxWmzjvXg7knFjXy3E8Hag80Donb9SB5btU+/lNBFDnLc YZqjRn8LW1pRn7uKX9lNrhMKY9cuIfZ/EH7S05syk8JLdXTGiLpFI5Z3658TEoEU H/91sATCkqy/V8Hg5N+6hTLTT196pW/YLjKd8ItcHmOzzeV2pJ6qgtVRq/V32SuT xelccgWeMbOI3XiPkNoAWy78ihAQh5o8r3A0/BGia+UbpIrmWpEW31ecQkxBmeZl GNVT9LTRdpYwWnFVen3J+oGmHp5w7dZ6fc9Qki9NGDo4X8MtCcfg0gLBcdT47MYD pRcV9O7q/M8/1yMHrT8lPKu+twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8upLBS lFOrDgFtRjoSjo/A0zvaMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmOMecKpptO0Oo/zuoXf3Mxb/jhgSRYML70aQXk5fCiGen8koiatSh HVbLtOX1PBTKGiCb3kLTtI8uwQ7PGCTDY5rN1LcWOqspChSDp14XfIuoNkCuN8dp 18LebkFYWsHMfgXvRS9zLwKpCVv8U3IJJqtK8b1yITMbBsrEhKZ3QHCA9ht2zASU flVArOBQqJrDjEvU36mQoNcnDUWQxMddocTcHm/nNdRcmYYw4633gbT8bq6xyOva nLPquSPlsnybxUoejnzvQQawoipxmFCgyQj106pSbjLuf+DwRAMZdmVfI+um7iVu GHdkP4MaDKThF4lAeIjhdj579WPjFCrp -----END CERTIFICATE-----Generated at Sat Aug 23 18:44:13 2025 by rpki-client