$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: YtTE+V5zu7WM7y6+tKDcamy4i+4I7jwtO1kG52ezc6c= Subject key identifier: C4:33:FD:A6:32:6E:B6:BC:EA:FA:8B:25:59:3D:EB:50:5F:9B:FA:A3 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0AD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0AB4 Signing time: Fri 22 Aug 2025 19:42:00 +0000 Manifest this update: Fri 22 Aug 2025 19:42:00 +0000 Manifest next update: Fri 29 Aug 2025 19:42:00 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: zye7fPAIpye9BHYL6lYML6NrXUAPjiG3BtJRIyx0esA=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: FqfsCDqHHflh/fqCgX2tuvENvAYV0R+3DD33J6tFfuE=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2769 (0xad1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Aug 22 19:42:00 2025 GMT Not After : Aug 29 19:42:00 2025 GMT Subject: CN=68a8c808-cf62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c1:3b:03:ab:df:b7:e8:78:d4:d8:43:06:ec: b4:6d:61:0e:7a:01:3d:1c:51:bd:2d:ea:28:7f:7b: 53:7d:d2:68:59:01:8e:e9:01:5a:43:ad:26:f4:14: 56:ca:0e:b9:d2:b1:1b:c3:84:d1:af:4f:ff:12:f6: 0a:68:8a:17:b2:7b:ae:9a:87:5c:a1:d5:21:b0:9a: 7a:cd:a2:b7:e0:b6:43:2a:2e:0a:a3:ae:ac:54:60: c9:fa:bc:a1:57:ed:f8:67:2c:ae:ac:4d:8a:e9:f5: 7d:df:34:cf:b8:bf:37:6e:70:2f:b5:7f:72:62:da: fb:52:46:d9:ac:33:b3:ab:d4:8e:d7:61:0f:ff:c4: 09:84:9e:59:84:0e:b4:b8:5d:40:ab:98:c7:1e:e0: 5e:e5:c2:3c:c0:9d:fb:61:83:29:1e:dc:54:ef:7e: c1:fa:50:f8:4f:45:ca:2d:cc:6c:0a:0a:da:8e:57: 9f:48:5b:19:93:57:27:1f:25:c8:bb:61:8e:4a:59: 7e:68:27:66:10:32:5b:5b:1a:a7:c6:d3:fe:ff:63: de:99:d4:33:c3:3c:b2:19:07:a7:9e:59:95:b7:8e: 48:2d:c4:cb:7f:66:3b:77:19:f4:4b:f6:45:b1:1c: 0b:b2:38:88:af:08:e9:0b:95:59:57:a9:0d:6f:11: 40:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:33:FD:A6:32:6E:B6:BC:EA:FA:8B:25:59:3D:EB:50:5F:9B:FA:A3 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:87:27:7d:aa:7e:c5:e0:36:d1:0e:18:6a:74:e4:dc:26:c2: d1:bc:c8:40:6f:f8:ba:bd:3c:60:c6:5b:60:1f:70:4c:98:c2: ea:9d:ce:f5:ed:75:ef:70:10:d9:aa:10:2c:7b:86:52:ae:d8: 59:a7:1c:18:e2:4f:a6:c6:30:8e:74:a5:64:41:70:1c:b6:59: 2a:1d:d8:70:41:59:b2:3f:3b:fc:8d:30:16:93:c0:60:6f:e4: be:cc:43:15:ab:0f:61:9f:c9:25:21:09:c4:64:0f:c4:5b:d8: d9:0e:58:b8:b2:d1:2c:f2:e6:13:9a:8c:79:01:61:6f:ae:23: 2e:57:0c:3c:21:ed:8a:50:a4:50:73:b7:be:d4:5d:74:50:07: 88:51:a2:84:0a:df:fd:41:e6:20:4c:e8:47:1f:d3:4d:4c:fc: c5:fb:88:8c:1d:0e:4a:7a:e8:de:44:c7:4f:36:78:1c:ec:e7: 94:19:64:c5:90:07:23:ac:73:4f:56:f5:72:85:81:26:7b:35: df:86:38:54:a1:19:d2:ff:02:66:69:60:39:e4:90:1e:1b:ad: c1:19:aa:31:cf:f2:36:97:47:1e:33:f3:f3:35:cb:09:cc:b3: 00:71:3e:2f:e9:69:cc:7d:62:49:c6:f4:ea:0c:db:82:19:b2: ce:5d:7d:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUwODIyMTk0MjAwWhcNMjUwODI5MTk0MjAwWjAYMRYwFAYD VQQDEw02OGE4YzgwOC1jZjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8E7A6vft+h41NhDBuy0bWEOegE9HFG9Leoof3tTfdJoWQGO6QFaQ60m9BRW yg650rEbw4TRr0//EvYKaIoXsnuumodcodUhsJp6zaK34LZDKi4Ko66sVGDJ+ryh V+34ZyyurE2K6fV93zTPuL83bnAvtX9yYtr7UkbZrDOzq9SO12EP/8QJhJ5ZhA60 uF1Aq5jHHuBe5cI8wJ37YYMpHtxU737B+lD4T0XKLcxsCgrajlefSFsZk1cnHyXI u2GOSll+aCdmEDJbWxqnxtP+/2PemdQzwzyyGQennlmVt45ILcTLf2Y7dxn0S/ZF sRwLsjiIrwjpC5VZV6kNbxFAdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQz/aYy bra86vqLJVk961Bfm/qjMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfhyd9qn7F4DbRDhhqdOTcJsLRvMhAb/i6vTxgxltgH3BMmMLqnc71 7XXvcBDZqhAse4ZSrthZpxwY4k+mxjCOdKVkQXActlkqHdhwQVmyPzv8jTAWk8Bg b+S+zEMVqw9hn8klIQnEZA/EW9jZDli4stEs8uYTmox5AWFvriMuVww8Ie2KUKRQ c7e+1F10UAeIUaKECt/9QeYgTOhHH9NNTPzF+4iMHQ5KeujeRMdPNngc7OeUGWTF kAcjrHNPVvVyhYEmezXfhjhUoRnS/wJmaWA55JAeG63BGaoxz/I2l0ceM/PzNcsJ zLMAcT4v6WnMfWJJxvTqDNuCGbLOXX1q -----END CERTIFICATE-----Generated at Sat Aug 23 16:16:46 2025 by rpki-client