$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: g0jedLJ3IRe/SYu1YihGCJFKKY56hqCB/dD+kkmnzoY= Subject key identifier: 3E:CF:C2:62:ED:4A:9C:B2:CB:C6:92:CE:52:58:35:B0:51:93:29:F4 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0AFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0AD8 Signing time: Sat 18 Oct 2025 20:27:30 +0000 Manifest this update: Sat 18 Oct 2025 20:27:29 +0000 Manifest next update: Sat 25 Oct 2025 20:27:29 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: Vsutyw5ownI3C4e7KqV2U0rsSmdOSIrCu3onMKNVaV8=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: u5qMQVovxMEdO3VlriBzt3ygKjHOuxT4HxOLZ60i5D0=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Oct 18 20:27:29 2025 GMT Not After : Oct 25 20:27:29 2025 GMT Subject: CN=68f3f832-6edb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a5:e9:26:9f:04:78:06:a3:35:4a:f7:65:2e: ab:f1:65:80:91:51:75:35:cc:d5:f7:34:54:b4:60: 34:b1:79:72:4d:f2:f8:66:87:bf:14:15:3d:eb:fe: d9:c9:4b:ad:73:2e:ca:65:7b:d4:a0:ec:4d:0e:d3: 6d:cb:52:b1:23:73:ac:40:7c:3e:e0:92:aa:a0:ef: 26:27:25:38:d7:8d:c8:6e:2a:eb:7f:8e:b2:d3:67: 4e:b3:f6:5d:e3:0e:e6:f8:e7:b6:7a:68:0e:d5:9f: d5:91:5a:f1:ac:3c:dd:6a:57:13:4e:0e:e8:80:2d: e6:5c:d4:ec:34:98:06:e4:ba:b2:51:69:d1:c1:14: 98:80:0c:1f:45:45:48:5f:68:91:a5:c1:92:a4:c9: 2e:4d:a9:6d:7a:cf:2e:f1:df:01:02:a1:21:27:13: 58:62:1c:af:5f:88:b5:58:ea:07:34:fd:b2:2a:75: 21:42:d2:94:c6:17:0f:61:fc:73:de:85:12:62:a2: 55:98:dc:48:77:4f:10:21:b7:f9:b5:51:1d:4a:54: 87:5e:f2:94:7f:de:8e:96:6b:1e:b0:dd:14:b5:c6: 2e:39:c4:47:0f:a7:bf:8a:db:72:a2:cf:c1:42:af: 05:27:18:cc:e8:35:b1:ac:1a:82:fc:e9:ab:0b:1b: b4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CF:C2:62:ED:4A:9C:B2:CB:C6:92:CE:52:58:35:B0:51:93:29:F4 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d9:bc:ca:8a:f9:28:59:b8:da:e1:01:3e:96:a1:19:56:e7: 44:79:b6:13:3b:bf:b6:3e:52:b7:b7:0a:b7:7a:24:86:81:33: 3b:12:5d:d1:14:aa:48:45:c2:51:9f:56:ed:3f:f7:dd:20:cc: 86:0e:31:e8:1b:94:11:67:07:95:96:ce:1a:5a:a9:c4:d9:d6: 15:ff:bf:d6:10:75:78:56:02:70:fd:67:6f:f0:90:aa:22:1b: 4b:0b:05:31:e5:57:90:b8:9c:b2:4a:77:48:be:bb:cb:69:55: ab:44:ab:1b:9b:54:59:d2:21:a7:a4:86:83:b8:5b:ea:4c:d9: 31:c0:b6:e8:bb:52:09:5e:d8:22:7f:c6:2d:67:a4:87:5b:17: e6:f0:f9:98:72:de:2e:b2:9e:7f:ef:62:68:1d:a2:46:a8:85: 77:fc:a9:c2:33:5e:93:71:7a:09:7a:d9:2d:5e:c6:31:fd:ab: 9c:a1:23:d8:4a:8e:f6:fb:e9:ab:bd:10:44:b7:c9:fe:d1:aa: c7:a6:b6:ea:43:c4:7b:03:b4:93:61:64:e9:8d:7f:b2:40:21: d5:8d:1a:7f:0c:8b:cf:4c:63:0c:9e:37:60:26:43:ca:d8:59: 4d:11:c1:cf:3d:46:7f:32:a2:9e:2c:41:33:49:f9:b6:36:9e: c5:a4:24:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUxMDE4MjAyNzI5WhcNMjUxMDI1MjAyNzI5WjAYMRYwFAYD VQQDEw02OGYzZjgzMi02ZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aXpJp8EeAajNUr3ZS6r8WWAkVF1NczV9zRUtGA0sXlyTfL4Zoe/FBU96/7Z yUutcy7KZXvUoOxNDtNty1KxI3OsQHw+4JKqoO8mJyU4143Ibirrf46y02dOs/Zd 4w7m+Oe2emgO1Z/VkVrxrDzdalcTTg7ogC3mXNTsNJgG5LqyUWnRwRSYgAwfRUVI X2iRpcGSpMkuTaltes8u8d8BAqEhJxNYYhyvX4i1WOoHNP2yKnUhQtKUxhcPYfxz 3oUSYqJVmNxId08QIbf5tVEdSlSHXvKUf96OlmsesN0UtcYuOcRHD6e/ittyos/B Qq8FJxjM6DWxrBqC/OmrCxu0HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7PwmLt Spyyy8aSzlJYNbBRkyn0MB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe2bzKivkoWbja4QE+lqEZVudEebYTO7+2PlK3twq3eiSGgTM7El3R FKpIRcJRn1btP/fdIMyGDjHoG5QRZweVls4aWqnE2dYV/7/WEHV4VgJw/Wdv8JCq IhtLCwUx5VeQuJyySndIvrvLaVWrRKsbm1RZ0iGnpIaDuFvqTNkxwLbou1IJXtgi f8YtZ6SHWxfm8PmYct4usp5/72JoHaJGqIV3/KnCM16TcXoJetktXsYx/aucoSPY So72++mrvRBEt8n+0arHprbqQ8R7A7STYWTpjX+yQCHVjRp/DIvPTGMMnjdgJkPK 2FlNEcHPPUZ/MqKeLEEzSfm2Np7FpCRB -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:16 2025 by rpki-client