$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: AEDBpAXdnTI1mJBVbExtFGYKN1R/he3upFVoDbAMbfo= Subject key identifier: 83:41:90:DB:6D:D8:6C:51:C0:CD:53:B4:67:72:F0:D8:5E:07:34:8C Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0B2B Signing time: Tue 24 Mar 2026 19:09:02 +0000 Manifest this update: Tue 24 Mar 2026 19:09:01 +0000 Manifest next update: Tue 31 Mar 2026 19:09:01 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: 0/P0l4KBYQkFYnFk+Osza3BvpII9zMFZv5HxNr/5PDQ=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: 6wqJkrhWgn2KZJhn88n3HWF1SBKv4/hdly58z7sEVqA=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: L8C4iZ3A0DV3wmBiyITzSqpZOzS8a21EtJ4UOfNMfBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Mar 24 19:09:01 2026 GMT Not After : Mar 31 19:09:01 2026 GMT Subject: CN=69c2e14e-7fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:a2:09:b0:08:b9:18:cb:45:73:d6:50:54: 1f:12:66:c7:4f:26:d5:dc:85:91:c4:1a:55:ba:27: e6:66:ca:bb:59:ce:6f:23:eb:8b:5e:ac:40:93:02: 78:68:32:5f:36:98:0e:17:30:f6:f2:ec:ba:22:f5: 1a:d1:85:d3:ee:46:59:1d:4d:0b:af:57:1e:29:44: 38:18:4f:29:9a:d8:65:66:32:e8:d3:1d:82:71:18: 0b:06:ce:5c:6f:aa:a6:25:79:d0:58:9b:1f:47:3f: 0e:d1:81:4a:7c:f2:eb:3d:3c:f5:7f:8a:be:00:4f: fd:09:05:14:f0:80:03:ae:97:19:7a:07:f2:de:08: 45:75:ea:eb:5c:32:27:99:9a:c2:95:7e:44:8b:5d: ac:d4:19:34:a1:e7:b3:75:4a:b0:2d:36:dd:c0:03: 88:66:43:89:e4:2d:0e:14:f1:8c:d0:56:ab:40:3f: 45:6e:15:02:a6:d9:da:56:66:ac:f3:bf:5b:a3:b6: 29:2e:c1:b8:48:2e:0f:0a:94:c2:ad:e3:71:1b:14: 23:fa:15:53:b1:f7:fb:06:27:04:b1:2a:95:14:57: 3f:1a:c6:c9:59:71:31:62:24:1c:f7:0d:7a:ec:fb: c0:92:da:c1:8a:e9:b4:90:6b:b6:d1:e7:ab:5b:94: ff:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:41:90:DB:6D:D8:6C:51:C0:CD:53:B4:67:72:F0:D8:5E:07:34:8C X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f9:45:da:1e:7c:67:3c:cd:6b:4b:4e:ab:c8:1a:1b:fb:73: a4:0e:0b:30:16:45:93:7c:48:40:71:b8:e1:32:c2:2a:8d:30: de:2a:dd:15:25:33:d7:7a:15:a9:d4:3e:86:48:f1:c7:eb:5a: 8e:4b:1b:40:0c:fd:51:01:28:4c:8d:36:98:5d:a1:c7:ab:0f: f2:32:7b:8c:f7:c9:4f:db:d7:24:dd:3b:ee:f9:f2:a7:32:3d: 49:8a:64:cd:eb:9f:d4:c6:ab:ad:e8:f2:f9:65:ae:d2:74:46: 98:a9:a7:4c:df:1c:5f:12:f3:89:94:39:0e:dd:40:de:38:77: 65:52:4b:34:33:ad:4d:89:e6:d0:3f:11:33:ac:05:b9:39:cb: 43:03:81:f7:49:37:16:6f:44:a3:e6:be:63:aa:3e:c6:86:c6: a0:20:46:34:e2:a0:6a:54:db:9b:b0:68:8d:c0:45:4d:f8:3c: ad:f3:c5:91:40:30:5d:69:a8:4f:42:45:e1:ea:a0:f9:a7:3a: 03:1c:2c:93:38:88:ac:b1:8b:79:3c:85:22:75:5f:2e:3d:71: 53:22:75:6b:5e:69:6e:12:6a:45:19:8d:83:31:65:de:4f:42: c0:b9:a8:86:6f:ff:18:d6:be:11:be:c3:73:f6:f3:3f:a0:ae: 15:af:1f:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjYwMzI0MTkwOTAxWhcNMjYwMzMxMTkwOTAxWjAYMRYwFAYD VQQDEw02OWMyZTE0ZS03ZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05yiCbAIuRjLRXPWUFQfEmbHTybV3IWRxBpVuifmZsq7Wc5vI+uLXqxAkwJ4 aDJfNpgOFzD28uy6IvUa0YXT7kZZHU0Lr1ceKUQ4GE8pmthlZjLo0x2CcRgLBs5c b6qmJXnQWJsfRz8O0YFKfPLrPTz1f4q+AE/9CQUU8IADrpcZegfy3ghFderrXDIn mZrClX5Ei12s1Bk0oeezdUqwLTbdwAOIZkOJ5C0OFPGM0FarQD9FbhUCptnaVmas 879bo7YpLsG4SC4PCpTCreNxGxQj+hVTsff7BicEsSqVFFc/GsbJWXExYiQc9w16 7PvAktrBium0kGu20eerW5T/MQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFINBkNtt 2GxRwM1TtGdy8NheBzSMMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJPlF2h58ZzzNa0tOq8gaG/tzpA4LMBZFk3xIQHG44TLCKo0w3irdFSUz13oV qdQ+hkjxx+tajksbQAz9UQEoTI02mF2hx6sP8jJ7jPfJT9vXJN077vnypzI9SYpk zeuf1Marrejy+WWu0nRGmKmnTN8cXxLziZQ5Dt1A3jh3ZVJLNDOtTYnm0D8RM6wF uTnLQwOB90k3Fm9Eo+a+Y6o+xobGoCBGNOKgalTbm7BojcBFTfg8rfPFkUAwXWmo T0JF4eqg+ac6AxwskziIrLGLeTyFInVfLj1xUyJ1a15pbhJqRRmNgzFl3k9CwLmo hm//GNa+Eb7Dc/bzP6CuFa8f/A== -----END CERTIFICATE-----Generated at Thu Mar 26 19:27:37 2026 by rpki-client