$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: aTzmTnnBDJ5mX0upIt6ErzlFq2un6MytNy1VChCyBgA= Subject key identifier: 09:7B:CD:3C:DC:2A:CC:AB:A4:D6:D7:B9:92:2B:BD:A8:67:51:FF:A3 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0A9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0A7E Signing time: Thu 08 May 2025 19:36:30 +0000 Manifest this update: Thu 08 May 2025 19:36:29 +0000 Manifest next update: Thu 15 May 2025 19:36:29 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: l7Tb2sPZPWaLvZQ5MTd3MmGA9vYOeS+L/7Y9wuQF3vU=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 19:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: May 8 19:36:29 2025 GMT Not After : May 15 19:36:29 2025 GMT Subject: CN=681d07bd-d10c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:72:13:6b:1b:e5:f4:a2:1e:97:c2:0f:2a:b2: 2b:09:11:20:c8:29:37:0b:b4:af:0d:b1:85:af:7a: d0:2e:a0:a5:7d:48:ae:9e:0c:d8:69:64:2f:52:a9: 6e:37:bc:07:38:af:c3:61:84:c7:b2:01:17:26:5f: b0:f4:e9:fe:47:66:fe:c2:9f:a1:f7:08:f0:ae:a4: d4:78:52:01:b6:4e:7b:80:fc:c1:2c:6b:d4:cf:f7: a6:79:6f:34:dd:05:a2:da:9f:28:6a:a2:43:07:bf: 60:01:57:88:5d:7a:6b:ff:86:6b:12:4a:7a:4a:02: cd:1a:2a:ac:fa:9f:33:3e:97:d7:0f:ca:c6:8e:34: ab:0e:1f:87:4a:d5:c9:36:85:d1:96:d5:9d:d4:f7: 4d:ff:3a:1e:f1:d5:c8:a7:fe:38:fc:5b:c5:58:33: f8:4d:61:11:a4:de:99:e8:1e:da:1b:fb:dd:c9:a6: 52:c2:55:c6:4f:ef:28:1e:ab:ad:0b:0b:2c:b3:1c: 38:20:34:b5:82:60:53:cc:ad:8d:a4:b6:a6:22:3d: 79:31:02:ff:8f:4d:3a:9b:15:17:b7:4c:70:80:22: 32:b1:41:60:0c:54:8b:cc:9c:b6:cd:c1:88:a4:71: e4:bb:9c:23:50:5e:78:01:34:3a:d1:48:e4:49:26: f6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7B:CD:3C:DC:2A:CC:AB:A4:D6:D7:B9:92:2B:BD:A8:67:51:FF:A3 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:82:36:d1:88:21:19:91:ac:3c:eb:65:68:d4:93:19:35:28: 19:7f:02:e6:10:54:21:a7:33:2d:97:ef:26:89:52:7c:d6:b7: 81:d5:f3:39:74:ca:fb:83:28:c7:7c:50:8a:ba:67:4b:f4:dd: a1:1b:ca:00:41:6e:d2:bb:af:f3:c6:3e:f4:82:23:dc:8d:2d: 59:f5:72:bc:70:23:5e:cb:89:b0:3b:2d:88:d2:d7:b3:a8:51: 1a:c7:5b:3f:38:2e:1f:c2:ee:40:2d:ef:42:82:ad:cb:3c:86: e2:b1:90:50:60:de:07:b2:66:d0:14:c3:96:80:ab:42:8e:5d: 54:f1:c5:9f:3f:7a:f8:c4:45:61:90:6e:5c:53:7f:9f:7d:43: 88:bc:af:d9:97:9b:97:e6:06:21:f9:8e:50:1f:a6:e7:af:50: ff:e4:bd:1e:d7:a7:36:7d:ec:8e:0d:8f:fc:13:d0:bf:c1:d5: de:57:d8:69:46:2a:fa:00:1d:89:ce:c6:e8:47:df:18:6a:75: 20:57:bf:4d:3e:73:46:88:cd:06:15:c9:0c:24:a6:3d:bf:8c: c1:94:b7:b2:10:ad:16:12:cb:4a:c3:c9:67:b9:08:7d:b4:91: 24:3c:e2:a9:d0:d2:14:9f:8c:64:c9:c5:32:ac:2f:2f:04:31: 43:01:08:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUwNTA4MTkzNjI5WhcNMjUwNTE1MTkzNjI5WjAYMRYwFAYD VQQDEw02ODFkMDdiZC1kMTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3ITaxvl9KIel8IPKrIrCREgyCk3C7SvDbGFr3rQLqClfUiungzYaWQvUqlu N7wHOK/DYYTHsgEXJl+w9On+R2b+wp+h9wjwrqTUeFIBtk57gPzBLGvUz/emeW80 3QWi2p8oaqJDB79gAVeIXXpr/4ZrEkp6SgLNGiqs+p8zPpfXD8rGjjSrDh+HStXJ NoXRltWd1PdN/zoe8dXIp/44/FvFWDP4TWERpN6Z6B7aG/vdyaZSwlXGT+8oHqut Cwsssxw4IDS1gmBTzK2NpLamIj15MQL/j006mxUXt0xwgCIysUFgDFSLzJy2zcGI pHHku5wjUF54ATQ60UjkSSb2nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAl7zTzc KsyrpNbXuZIrvahnUf+jMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmgjbRiCEZkaw862Vo1JMZNSgZfwLmEFQhpzMtl+8miVJ81reB1fM5 dMr7gyjHfFCKumdL9N2hG8oAQW7Su6/zxj70giPcjS1Z9XK8cCNey4mwOy2I0tez qFEax1s/OC4fwu5ALe9Cgq3LPIbisZBQYN4HsmbQFMOWgKtCjl1U8cWfP3r4xEVh kG5cU3+ffUOIvK/Zl5uX5gYh+Y5QH6bnr1D/5L0e16c2feyODY/8E9C/wdXeV9hp Rir6AB2JzsboR98YanUgV79NPnNGiM0GFckMJKY9v4zBlLeyEK0WEstKw8lnuQh9 tJEkPOKp0NIUn4xkycUyrC8vBDFDAQh2 -----END CERTIFICATE-----Generated at Sat May 10 14:00:31 2025 by rpki-client