$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: iAN4rLPEUwaYrdNT787gdb9yle1u+vauX7KoqJG11fE= Subject key identifier: C7:C2:46:6F:C7:FC:B1:FF:70:96:12:0D:70:5A:F3:75:21:06:FA:47 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0B59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0B33 Signing time: Sat 04 Apr 2026 19:09:31 +0000 Manifest this update: Sat 04 Apr 2026 19:09:31 +0000 Manifest next update: Sat 11 Apr 2026 19:09:31 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: ELN3gFleaMfU1wLJV6rpcC6H47DHv/U6go0gEAkH1Eg=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 87ruUamCetqhSgYD0RcbOPf8uxPRNusOY0RxdgFfa4k=) 3: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: bvbNtF0AY2UdGflEtQc3rZe1CpDIiWe7q6JZWQcMBNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Apr 4 19:09:31 2026 GMT Not After : Apr 11 19:09:31 2026 GMT Subject: CN=69d161eb-5b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7e:4e:5d:45:0f:1f:ca:9c:27:4a:c3:c0:50: 16:76:33:c4:80:81:b3:90:15:82:a0:07:90:fd:cb: 2b:52:50:23:3b:4c:08:3d:90:65:3d:34:8e:15:fa: 59:e1:31:7d:c5:3d:93:0b:f6:b6:c8:3a:fe:9f:58: c4:f1:8a:bf:0f:68:32:77:94:71:74:49:30:66:30: a6:b3:a7:4d:5d:5c:dc:0c:c3:2c:84:71:18:0e:d5: f1:70:6e:11:94:29:4f:84:46:59:7c:ee:3b:b5:a4: 24:9a:84:9d:b6:a9:32:bf:74:3c:9f:74:78:d1:61: 2d:08:ce:f7:90:1b:44:a3:af:20:f5:bc:79:a2:bf: be:c6:cd:49:1b:24:e5:e8:1e:30:12:36:af:36:09: a9:47:cb:38:ba:49:97:52:da:b7:d9:f6:fb:af:89: 21:12:7b:85:78:2d:03:cb:37:f0:5e:03:9f:4d:2f: 90:12:9a:28:84:9d:db:ea:92:e0:b5:0f:35:1d:c9: c8:e9:9e:b1:55:59:31:d2:f4:ca:10:fd:91:bc:5b: 13:7d:31:bd:59:05:1e:58:a6:04:06:89:2b:46:fb: 53:ff:4c:7a:5f:5b:bc:b5:a8:12:f0:a3:2a:70:e4: 1a:42:22:c0:32:55:6f:5e:01:76:47:f6:f6:3f:cc: 11:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C2:46:6F:C7:FC:B1:FF:70:96:12:0D:70:5A:F3:75:21:06:FA:47 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:9c:14:82:af:7f:27:21:b8:3b:6f:66:9e:71:f6:61:af:91: 50:5c:06:e5:32:dc:f0:ff:2a:f2:f6:d1:eb:59:b0:6f:90:f2: b2:11:f8:f0:f6:8e:7f:bf:cf:08:66:a5:7d:50:54:c8:27:e7: 3e:a0:36:67:e2:af:b6:36:b5:c6:47:0c:4c:46:1d:d1:b6:3f: 33:b2:69:25:19:75:72:71:ae:88:f1:cd:26:be:17:c1:29:d9: 76:0a:a7:b0:2d:d5:5f:7e:44:f0:fd:4d:6a:52:8a:da:f0:f1: 74:9d:a1:25:5d:c0:fc:22:55:83:37:3c:de:5a:a7:0f:8e:92: 38:17:6b:e0:83:67:eb:69:f2:32:15:34:d8:ac:cf:5a:cb:17: 91:35:54:af:b8:78:93:2a:02:69:7c:22:af:7e:a3:b5:a6:4d: 52:5b:db:6c:d9:a2:61:44:f4:93:99:5f:95:85:83:4f:e7:50: 87:5d:82:d9:de:14:25:26:d9:f2:94:38:0f:23:48:fa:0f:7f: 09:5e:ed:9f:ec:75:bb:50:32:1c:98:65:7e:43:cd:c8:89:0a: 9b:68:9a:a0:b0:ff:ea:09:04:f7:44:1f:e7:58:80:0e:79:83: 64:f5:b7:ae:97:09:f7:77:36:ff:4e:b2:02:70:95:6a:31:77: 77:08:00:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjYwNDA0MTkwOTMxWhcNMjYwNDExMTkwOTMxWjAYMRYwFAYD VQQDEw02OWQxNjFlYi01YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA535OXUUPH8qcJ0rDwFAWdjPEgIGzkBWCoAeQ/csrUlAjO0wIPZBlPTSOFfpZ 4TF9xT2TC/a2yDr+n1jE8Yq/D2gyd5RxdEkwZjCms6dNXVzcDMMshHEYDtXxcG4R lClPhEZZfO47taQkmoSdtqkyv3Q8n3R40WEtCM73kBtEo68g9bx5or++xs1JGyTl 6B4wEjavNgmpR8s4ukmXUtq32fb7r4khEnuFeC0DyzfwXgOfTS+QEpoohJ3b6pLg tQ81HcnI6Z6xVVkx0vTKEP2RvFsTfTG9WQUeWKYEBokrRvtT/0x6X1u8tagS8KMq cOQaQiLAMlVvXgF2R/b2P8wRSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMfCRm/H /LH/cJYSDXBa83UhBvpHMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoJwUgq9/JyG4O29mnnH2Ya+RUFwG5TLc8P8q8vbR61mwb5DyshH48PaOf7/P CGalfVBUyCfnPqA2Z+Kvtja1xkcMTEYd0bY/M7JpJRl1cnGuiPHNJr4XwSnZdgqn sC3VX35E8P1NalKK2vDxdJ2hJV3A/CJVgzc83lqnD46SOBdr4INn62nyMhU02KzP WssXkTVUr7h4kyoCaXwir36jtaZNUlvbbNmiYUT0k5lflYWDT+dQh12C2d4UJSbZ 8pQ4DyNI+g9/CV7tn+x1u1AyHJhlfkPNyIkKm2iaoLD/6gkE90Qf51iADnmDZPW3 rpcJ93c2/06yAnCVajF3dwgAMA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:44 2026 by rpki-client