$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: RieTqdj3Dr73pSjt1OtlK78M5Anj1DoZQ1qLsyQhcgo= Subject key identifier: 1E:C4:97:92:F6:5F:B7:68:AE:82:A4:D4:46:D2:04:24:36:89:CA:53 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0AD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0AB5 Signing time: Sun 24 Aug 2025 19:33:58 +0000 Manifest this update: Sun 24 Aug 2025 19:33:58 +0000 Manifest next update: Sun 31 Aug 2025 19:33:58 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: xu9Lqrv7K9zWEXcSvlId7ktJt7NYOqEX45CXstXBqy8=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: FqfsCDqHHflh/fqCgX2tuvENvAYV0R+3DD33J6tFfuE=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2770 (0xad2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Aug 24 19:33:58 2025 GMT Not After : Aug 31 19:33:58 2025 GMT Subject: CN=68ab6926-722c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:2c:7f:f8:22:23:78:71:de:c1:f6:7b:c2: 69:79:49:0c:68:36:72:36:db:f2:a4:e9:45:a8:c3: 2b:33:ea:a1:da:0f:e1:f6:2f:39:22:d1:80:58:f3: 28:83:15:d8:60:8e:48:71:9e:0f:24:7e:f0:84:39: 50:2c:c9:9b:83:6b:13:96:84:e3:2f:85:a0:ae:1e: 6b:da:0f:60:2d:3c:78:2e:04:72:3a:fc:be:bc:03: 98:98:d2:68:22:a7:c5:4e:bc:fc:99:1b:6a:3f:3a: b5:d8:13:b8:ef:c4:b6:29:53:e6:20:29:8d:ee:62: 60:4c:3d:a4:2b:56:a1:91:c1:42:dc:df:2d:16:e0: c1:99:15:bc:33:d3:79:f5:12:16:d3:27:67:ad:8f: 81:77:63:b9:ed:c6:e7:22:4f:b7:61:d5:15:64:75: 06:a8:51:98:65:0e:b9:dd:3d:85:a0:7f:f0:ad:e2: f0:6b:86:f0:21:91:30:ad:79:19:e4:ef:2c:18:e2: dc:65:62:3e:cf:be:a1:3b:6c:53:bf:1a:4c:04:c9: 53:58:fc:9e:c4:6e:5f:f8:bc:12:89:de:e1:ed:d4: f6:72:a2:de:57:43:a0:c7:5c:91:57:10:6f:cd:7f: 85:f2:c1:ed:d5:42:ee:21:34:74:d1:35:ed:d7:92: df:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C4:97:92:F6:5F:B7:68:AE:82:A4:D4:46:D2:04:24:36:89:CA:53 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:35:42:d5:22:a1:85:e0:ac:79:8f:c4:a6:93:89:f4:28:90: c4:9a:07:75:8f:66:58:4f:ca:a9:34:a8:d0:78:af:56:d0:82: 02:7d:37:ca:33:84:62:54:e7:ee:17:25:fb:9e:18:3b:db:4a: 36:30:10:15:e2:db:a4:c2:ec:d8:15:4b:d0:18:e1:dc:0c:5f: d2:9a:99:b4:85:6d:01:d0:3a:08:78:f0:53:d6:7e:3f:56:25: 61:39:62:08:27:21:34:e0:6b:d4:02:98:31:62:87:6d:bf:6c: 9f:ce:a4:96:46:de:e5:b3:f5:d7:d3:4f:60:99:1a:0a:94:92: 1a:98:d5:15:a1:9c:61:58:62:05:0c:b5:8e:8c:8b:e0:19:cd: 73:2c:b8:a7:88:b3:ad:ab:fa:90:7c:e1:ca:33:ee:9f:fa:cd: 94:4e:f4:52:1c:5e:b0:b7:0f:fb:2b:1e:1c:ca:c3:ab:ba:53: 37:7d:ab:a1:dc:88:40:e1:5d:be:a4:4b:d1:88:0d:fe:2c:37: a1:9b:ae:96:58:9b:02:19:7b:e6:d7:2e:41:04:33:08:58:24: d6:07:cf:94:8f:d0:61:b9:1f:bb:0f:16:e2:a4:f9:98:29:a6: 81:c1:8f:10:ed:df:49:fb:7d:cb:b0:b3:ea:56:38:4a:2c:78: dc:ce:e4:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUwODI0MTkzMzU4WhcNMjUwODMxMTkzMzU4WjAYMRYwFAYD VQQDEw02OGFiNjkyNi03MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUcsf/giI3hx3sH2e8JpeUkMaDZyNtvypOlFqMMrM+qh2g/h9i85ItGAWPMo gxXYYI5IcZ4PJH7whDlQLMmbg2sTloTjL4Wgrh5r2g9gLTx4LgRyOvy+vAOYmNJo IqfFTrz8mRtqPzq12BO478S2KVPmICmN7mJgTD2kK1ahkcFC3N8tFuDBmRW8M9N5 9RIW0ydnrY+Bd2O57cbnIk+3YdUVZHUGqFGYZQ653T2FoH/wreLwa4bwIZEwrXkZ 5O8sGOLcZWI+z76hO2xTvxpMBMlTWPyexG5f+LwSid7h7dT2cqLeV0Ogx1yRVxBv zX+F8sHt1ULuITR00TXt15Lf2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7El5L2 X7doroKk1EbSBCQ2icpTMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbNULVIqGF4Kx5j8Smk4n0KJDEmgd1j2ZYT8qpNKjQeK9W0IICfTfK M4RiVOfuFyX7nhg720o2MBAV4tukwuzYFUvQGOHcDF/Smpm0hW0B0DoIePBT1n4/ ViVhOWIIJyE04GvUApgxYodtv2yfzqSWRt7ls/XX009gmRoKlJIamNUVoZxhWGIF DLWOjIvgGc1zLLiniLOtq/qQfOHKM+6f+s2UTvRSHF6wtw/7Kx4cysOrulM3fauh 3IhA4V2+pEvRiA3+LDehm66WWJsCGXvm1y5BBDMIWCTWB8+Uj9BhuR+7DxbipPmY KaaBwY8Q7d9J+33LsLPqVjhKLHjczuQF -----END CERTIFICATE-----Generated at Sun Aug 24 22:00:38 2025 by rpki-client