$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: 2cw3Qj32IYioWr9pzo/IJPT8hwwHDFxOuciEOkXFgNg= Subject key identifier: 0F:E9:C3:EA:33:DE:85:A9:04:AE:9A:01:AA:B3:AC:4E:B4:25:43:B8 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0B70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0B4A Signing time: Wed 20 May 2026 19:18:58 +0000 Manifest this update: Wed 20 May 2026 19:18:58 +0000 Manifest next update: Wed 27 May 2026 19:18:58 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: zt+pYTYxlPh5HQQMZ2BiOBOfMDO/U0UalLMJmLDtpgE=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 87ruUamCetqhSgYD0RcbOPf8uxPRNusOY0RxdgFfa4k=) 3: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: bvbNtF0AY2UdGflEtQc3rZe1CpDIiWe7q6JZWQcMBNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2928 (0xb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: May 20 19:18:58 2026 GMT Not After : May 27 19:18:58 2026 GMT Subject: CN=6a0e0922-c52c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:b1:05:f0:0b:c8:eb:2e:90:62:47:dd:db: 43:7d:a1:dc:f5:6f:3b:71:3f:9a:f7:ce:bc:3f:2e: 60:49:26:a1:d9:10:87:4b:f9:a8:c7:7a:ca:99:85: f5:6b:65:f5:68:b9:41:f9:ce:fa:97:b6:58:19:7b: 84:27:b8:6d:d1:8d:88:c2:14:d0:7f:92:94:c3:b8: 70:e6:4b:18:a0:72:2a:ed:56:fd:6b:30:ec:db:d1: 66:ad:58:f1:3f:3b:c3:a2:d6:67:05:b1:45:cd:b0: 32:fa:dd:17:dc:33:48:5c:5c:0d:b1:8d:a7:73:a4: d6:38:d3:e0:a7:77:d2:98:2b:64:6d:d1:ca:ed:e2: 16:12:f8:ff:57:fb:01:1c:5a:e8:be:6c:7c:b9:5b: 0e:a6:aa:61:81:00:b8:e1:48:23:db:a1:d8:f2:df: 19:7d:a0:d9:04:05:49:04:b4:8c:a0:71:9b:f1:27: 8e:be:ba:7c:37:1e:dc:2a:35:fe:23:8a:15:63:b5: ae:a1:74:dc:e1:04:d6:a1:1c:48:b6:bd:4c:d3:f1: 65:e0:ef:a9:23:48:d2:a3:30:93:c5:8a:c8:4c:c0: 79:5c:6b:b3:60:c5:a8:e1:5d:49:6a:1d:50:1f:30: c9:ed:75:f7:56:9c:eb:57:15:36:a5:65:52:62:c3: 78:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E9:C3:EA:33:DE:85:A9:04:AE:9A:01:AA:B3:AC:4E:B4:25:43:B8 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c7:c6:8a:f6:0e:52:6a:9a:43:80:aa:12:90:70:51:38:fd: fb:46:ab:d9:98:56:01:05:db:b2:5a:ac:1b:8e:39:d9:25:ad: 0d:67:76:92:70:75:c4:46:81:0f:0d:c5:ca:87:c5:87:4c:17: 49:5b:6e:21:79:a2:d4:c1:30:1d:a2:f5:14:73:37:dc:55:a8: 3f:eb:2b:55:97:33:c5:1d:fb:85:1e:bc:41:52:c8:26:09:c0: 9c:ed:2f:6e:1a:ea:0f:f9:87:a4:5f:77:3e:4c:ca:f8:e6:4a: da:88:57:57:66:38:64:34:67:62:a1:b9:cc:e1:79:dc:4f:54: d8:4e:f1:b2:0e:fb:81:e1:90:ca:18:64:63:63:38:dd:d1:a7: 50:23:ac:40:23:eb:74:9d:03:33:8a:2d:37:68:d3:36:b5:cc: 44:80:0a:0d:ee:28:d6:b3:69:16:72:9f:48:9a:21:fb:01:10: 73:12:55:a7:7a:e0:00:21:27:74:63:af:9d:86:ae:5f:b3:e9: e3:ab:a2:24:e8:37:86:47:17:24:a7:2a:47:26:82:2c:c7:e9: 84:96:6e:d4:b8:88:b1:a8:6c:53:25:b8:b8:ef:30:29:79:5e: 26:3d:43:f5:16:c7:65:08:ea:9a:9f:d1:db:ec:14:aa:71:b8: 2b:17:ac:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjYwNTIwMTkxODU4WhcNMjYwNTI3MTkxODU4WjAYMRYwFAYD VQQDEw02YTBlMDkyMi1jNTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QCxBfALyOsukGJH3dtDfaHc9W87cT+a9868Py5gSSah2RCHS/mox3rKmYX1 a2X1aLlB+c76l7ZYGXuEJ7ht0Y2IwhTQf5KUw7hw5ksYoHIq7Vb9azDs29FmrVjx PzvDotZnBbFFzbAy+t0X3DNIXFwNsY2nc6TWONPgp3fSmCtkbdHK7eIWEvj/V/sB HFrovmx8uVsOpqphgQC44Ugj26HY8t8ZfaDZBAVJBLSMoHGb8SeOvrp8Nx7cKjX+ I4oVY7WuoXTc4QTWoRxItr1M0/Fl4O+pI0jSozCTxYrITMB5XGuzYMWo4V1Jah1Q HzDJ7XX3VpzrVxU2pWVSYsN4kQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA/pw+oz 3oWpBK6aAaqzrE60JUO4MB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPcfGivYOUmqaQ4CqEpBwUTj9+0ar2ZhWAQXbslqsG4452SWtDWd2knB1xEaB Dw3FyofFh0wXSVtuIXmi1MEwHaL1FHM33FWoP+srVZczxR37hR68QVLIJgnAnO0v bhrqD/mHpF93PkzK+OZK2ohXV2Y4ZDRnYqG5zOF53E9U2E7xsg77geGQyhhkY2M4 3dGnUCOsQCPrdJ0DM4otN2jTNrXMRIAKDe4o1rNpFnKfSJoh+wEQcxJVp3rgACEn dGOvnYauX7Pp46uiJOg3hkcXJKcqRyaCLMfphJZu1LiIsahsUyW4uO8wKXleJj1D 9RbHZQjqmp/R2+wUqnG4Kxesgw== -----END CERTIFICATE-----Generated at Thu May 21 10:20:48 2026 by rpki-client