$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: cZS/DLWHExK7kIg8U51MF9sydIiQnhrZBO/R8I7o3s0= Subject key identifier: 74:E6:BC:56:4E:5E:D6:47:BE:29:0B:12:F7:F6:4A:00:A7:17:DB:25 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 01AA Signing time: Sun 29 Jun 2025 02:23:52 +0000 Manifest this update: Sun 29 Jun 2025 02:23:51 +0000 Manifest next update: Sun 06 Jul 2025 02:23:51 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: xHiJBvtWmAeGqRPwfze0RbMm7p0W4qszm2eurv4FFBI=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Jun 29 02:23:51 2025 GMT Not After : Jul 6 02:23:51 2025 GMT Subject: CN=6860a3b7-6530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f8:63:f1:e0:cc:32:ad:38:55:1f:f6:b6:87: b3:7f:8e:63:7e:d2:e7:de:0f:59:75:09:d0:47:01: e1:5f:d8:e6:72:37:a8:a9:41:13:d5:f7:fa:fa:80: 92:b5:d0:ed:1b:4c:99:83:0f:5b:53:97:2d:7d:7b: 76:22:23:05:93:c2:00:ba:f3:7f:d3:20:30:56:db: b7:ed:75:6c:f3:0a:03:e7:1f:73:eb:56:b5:8b:b3: 79:1c:a1:11:25:9a:a9:01:ea:d1:14:d4:cd:e7:19: b8:86:77:bd:3b:65:ea:07:ff:f2:04:d8:fb:9f:2f: c0:a8:b5:0c:ee:83:be:8f:77:7f:72:22:22:1c:62: 4c:94:24:27:7d:24:da:1c:b6:70:17:8c:a8:21:86: 35:0d:55:47:60:94:9a:0d:27:35:47:82:06:3a:a5: 37:57:45:41:ed:4d:0c:0f:ff:6f:b8:00:c9:47:fd: 96:7e:8a:17:39:96:a8:3c:8a:05:79:ea:e4:47:0e: 07:c5:fc:d5:39:47:7d:5b:17:d7:b8:c9:8d:a2:37: 3b:e9:cf:ba:8b:d0:3b:9a:ed:d0:3a:8e:89:88:0a: 56:1a:98:a5:77:ba:33:e4:51:c5:7b:1d:6b:7f:a6: 1d:bc:4b:aa:6e:f4:c3:7e:f7:93:21:18:92:b0:09: 6f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E6:BC:56:4E:5E:D6:47:BE:29:0B:12:F7:F6:4A:00:A7:17:DB:25 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:2c:12:d5:9f:ed:c4:7e:9c:30:69:d8:55:40:18:f9:c1:79: cd:20:32:61:5d:53:13:bb:c2:39:4b:ac:a8:8b:16:bf:46:f8: b3:90:82:d2:6f:ec:ad:8e:be:80:dc:32:8b:e4:8d:ab:d8:99: d0:3b:37:9c:2d:41:08:92:62:7c:01:fe:0d:e3:20:4f:cc:72: f3:37:7e:7f:78:fe:7e:0b:f3:46:6f:f1:83:c1:a1:ee:98:64: ed:55:2c:78:eb:13:2f:47:a1:d4:76:83:0d:54:10:74:0b:d9: 32:c4:c8:86:8b:2b:a4:6e:1d:28:ef:47:93:73:61:e3:e8:f7: c7:77:fe:c8:fc:10:d8:55:89:7d:c7:e2:09:ae:00:02:0a:94: af:85:0d:77:c4:5c:b1:4f:92:ec:0a:b1:25:0e:ad:12:5c:91: 26:8a:79:bd:94:92:39:47:e8:8c:e4:ff:56:2b:a3:ff:8f:52: 44:73:af:ae:65:09:9d:f6:5f:1b:e4:ad:0a:4a:28:aa:39:4f: 3f:47:27:b4:f1:84:11:fb:1b:e4:fd:6a:05:31:ba:9d:13:62: 21:a3:ec:83:d7:2b:a7:ee:30:49:ac:cd:65:8e:9f:35:79:0b: af:1e:88:9f:8e:38:71:a8:3e:6a:b3:56:0c:69:36:2d:92:78: 74:44:35:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUwNjI5MDIyMzUxWhcNMjUwNzA2MDIyMzUxWjAYMRYwFAYD VQQDEw02ODYwYTNiNy02NTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fhj8eDMMq04VR/2toezf45jftLn3g9ZdQnQRwHhX9jmcjeoqUET1ff6+oCS tdDtG0yZgw9bU5ctfXt2IiMFk8IAuvN/0yAwVtu37XVs8woD5x9z61a1i7N5HKER JZqpAerRFNTN5xm4hne9O2XqB//yBNj7ny/AqLUM7oO+j3d/ciIiHGJMlCQnfSTa HLZwF4yoIYY1DVVHYJSaDSc1R4IGOqU3V0VB7U0MD/9vuADJR/2WfooXOZaoPIoF eerkRw4HxfzVOUd9WxfXuMmNojc76c+6i9A7mu3QOo6JiApWGpild7oz5FHFex1r f6YdvEuqbvTDfveTIRiSsAlvlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTmvFZO XtZHvikLEvf2SgCnF9slMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyLBLVn+3EfpwwadhVQBj5wXnNIDJhXVMTu8I5S6yoixa/RvizkILS b+ytjr6A3DKL5I2r2JnQOzecLUEIkmJ8Af4N4yBPzHLzN35/eP5+C/NGb/GDwaHu mGTtVSx46xMvR6HUdoMNVBB0C9kyxMiGiyukbh0o70eTc2Hj6PfHd/7I/BDYVYl9 x+IJrgACCpSvhQ13xFyxT5LsCrElDq0SXJEminm9lJI5R+iM5P9WK6P/j1JEc6+u ZQmd9l8b5K0KSiiqOU8/Rye08YQR+xvk/WoFMbqdE2Iho+yD1yun7jBJrM1ljp81 eQuvHoifjjhxqD5qs1YMaTYtknh0RDXc -----END CERTIFICATE-----Generated at Tue Jul 1 02:12:38 2025 by rpki-client