$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: jrLXw7HBvYYJppow0fLQKr/ebdNJJ2vgs7ieEQ+IqCI= Subject key identifier: 35:76:78:20:4D:6F:33:1B:C4:FA:CE:DF:A3:18:FE:9C:35:B7:53:AF Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0AFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0ADA Signing time: Wed 22 Oct 2025 20:08:53 +0000 Manifest this update: Wed 22 Oct 2025 20:08:52 +0000 Manifest next update: Wed 29 Oct 2025 20:08:52 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: 4fSrPJuwlmb5EGK+0IXFa9AjfSm7nX2mzsxgBOw1wuY=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: u5qMQVovxMEdO3VlriBzt3ygKjHOuxT4HxOLZ60i5D0=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2812 (0xafc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Oct 22 20:08:52 2025 GMT Not After : Oct 29 20:08:52 2025 GMT Subject: CN=68f939d5-865b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:ff:c4:4c:8a:c5:2b:b5:ca:0f:11:da:f0: 2b:2f:17:32:6e:cd:0d:2a:45:d2:6b:b8:e5:36:03: 8d:b4:e5:47:14:77:95:3c:ec:a5:3f:57:09:ae:ad: 28:17:99:cd:b9:3f:15:ed:49:1e:f0:70:de:e9:d5: 66:5b:0f:fa:cc:e1:f8:76:0f:f1:52:44:3a:32:34: 7a:72:2a:8c:64:3f:08:85:4c:44:0b:a6:78:fa:95: a9:b4:3f:2e:cd:28:05:27:5b:17:30:68:42:17:b6: 57:2f:2d:d9:ba:35:72:fb:63:aa:26:83:bf:51:25: 76:b0:ca:92:b8:9c:5f:e1:e1:32:be:25:0b:69:b8: 9f:00:68:04:6f:aa:a0:e9:45:00:1b:e3:d3:52:2a: 82:da:5f:5d:ee:39:53:8d:fc:86:ad:c6:d7:0d:52: 88:57:57:4b:b2:74:ec:c4:17:a9:c0:35:f9:45:4b: 87:23:43:c8:68:de:5a:6a:3f:4a:e5:a6:ac:e9:f6: 0d:b7:35:ef:23:d4:3f:82:e9:61:20:73:35:ce:c1: 1f:96:8c:f4:42:e9:99:69:91:a0:e2:26:9b:e0:4d: 9e:30:5d:f0:7c:fa:f9:27:4a:55:82:95:79:a8:27: 33:fe:6f:70:9c:99:92:10:82:13:18:fc:bf:c7:73: 58:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:76:78:20:4D:6F:33:1B:C4:FA:CE:DF:A3:18:FE:9C:35:B7:53:AF X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ca:16:d5:da:42:e8:0f:bd:6d:8c:05:9e:95:f9:92:35:c7: 76:d1:49:cd:59:1a:53:14:9c:e0:28:f6:ad:1b:da:7e:72:e0: e5:11:50:c5:1a:d9:d7:15:cd:c8:2d:a5:7b:53:71:e5:f4:8e: 59:27:84:a0:3a:28:39:75:5b:b4:48:7d:f8:ce:d6:2b:c2:4a: 20:4e:4d:6b:98:1c:84:6c:1d:37:f8:0b:40:58:6f:38:3a:0b: 78:d8:e0:06:fb:ac:d4:23:62:9c:cc:5c:2b:1c:29:bf:3e:82: 58:66:e4:47:07:9e:c4:4d:07:48:41:bd:12:67:20:1b:54:10: 0d:c0:66:2b:bb:b1:60:df:c9:0a:21:7d:c4:55:d2:a7:15:bd: 7c:35:3d:d8:54:02:e0:5b:d4:64:49:e0:37:f9:a6:50:56:bc: 4d:c5:ad:c5:ff:d6:2e:7b:cd:cd:fd:69:6b:3d:78:5c:2c:67: 19:f8:e0:20:09:20:44:4f:6e:c6:6d:1d:3b:b3:60:77:60:58: b0:7e:b9:ca:37:df:49:60:40:84:1b:64:24:93:a3:05:43:85: 7f:2c:e3:1e:5f:70:f5:22:a3:09:78:81:ad:37:9b:6d:28:11: 90:2a:7a:d7:08:52:21:da:6c:7f:88:01:28:54:4f:8c:33:08: ae:e1:c5:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUxMDIyMjAwODUyWhcNMjUxMDI5MjAwODUyWjAYMRYwFAYD VQQDEw02OGY5MzlkNS04NjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOD/xEyKxSu1yg8R2vArLxcybs0NKkXSa7jlNgONtOVHFHeVPOylP1cJrq0o F5nNuT8V7Uke8HDe6dVmWw/6zOH4dg/xUkQ6MjR6ciqMZD8IhUxEC6Z4+pWptD8u zSgFJ1sXMGhCF7ZXLy3ZujVy+2OqJoO/USV2sMqSuJxf4eEyviULabifAGgEb6qg 6UUAG+PTUiqC2l9d7jlTjfyGrcbXDVKIV1dLsnTsxBepwDX5RUuHI0PIaN5aaj9K 5aas6fYNtzXvI9Q/gulhIHM1zsEfloz0QumZaZGg4iab4E2eMF3wfPr5J0pVgpV5 qCcz/m9wnJmSEIITGPy/x3NYeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV2eCBN bzMbxPrO36MY/pw1t1OvMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1yhbV2kLoD71tjAWelfmSNcd20UnNWRpTFJzgKPatG9p+cuDlEVDF GtnXFc3ILaV7U3Hl9I5ZJ4SgOig5dVu0SH34ztYrwkogTk1rmByEbB03+AtAWG84 Ogt42OAG+6zUI2KczFwrHCm/PoJYZuRHB57ETQdIQb0SZyAbVBANwGYru7Fg38kK IX3EVdKnFb18NT3YVALgW9RkSeA3+aZQVrxNxa3F/9Yue83N/WlrPXhcLGcZ+OAg CSBET27GbR07s2B3YFiwfrnKN99JYECEG2Qkk6MFQ4V/LOMeX3D1IqMJeIGtN5tt KBGQKnrXCFIh2mx/iAEoVE+MMwiu4cUZ -----END CERTIFICATE-----Generated at Fri Oct 24 06:01:57 2025 by rpki-client