$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: Gto+gxj2vDTL6Zwe+ezWBmX4Ldbt2qcvAKi5XCP5gro= Subject key identifier: 0B:33:99:AD:A1:83:1D:8C:04:3C:9E:FA:07:08:B5:48:7F:01:56:40 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0AA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0A8B Signing time: Wed 04 Jun 2025 19:34:15 +0000 Manifest this update: Wed 04 Jun 2025 19:34:14 +0000 Manifest next update: Wed 11 Jun 2025 19:34:14 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: xZzXbI06MY/oH1LVRVvOo1LGBi0NYIx9bz0J01SEtrU=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 19:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2727 (0xaa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Jun 4 19:34:14 2025 GMT Not After : Jun 11 19:34:14 2025 GMT Subject: CN=68409fb7-aeb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c0:5a:5f:bc:71:28:85:1e:1d:d6:71:77:7e: 18:97:af:19:4c:c8:8b:9b:46:f0:82:4b:12:ee:38: 06:2f:98:7a:2c:68:89:95:fa:3f:90:ff:3e:ff:07: 29:33:45:e5:f8:44:4f:38:40:74:b1:c8:f6:02:f7: 16:fb:6d:c6:5f:ea:d7:1f:9f:22:d0:56:19:29:b8: 6f:89:95:8c:68:b3:59:d7:67:47:36:63:7f:22:9f: 7e:ad:68:33:c0:f2:ce:86:fc:4f:7e:f4:7a:bb:aa: 8a:f2:53:f2:b5:91:b2:99:db:5b:96:5a:58:7a:72: c9:84:62:1d:9f:98:aa:16:d5:b3:79:40:7d:81:3b: 91:82:ac:b8:95:94:c9:fc:72:26:77:84:74:90:a1: 52:cf:b1:ef:2f:a4:82:1e:08:36:8b:c6:ac:3e:5d: 44:4d:16:34:68:78:7a:e1:9a:d5:dc:b0:43:98:2a: 0c:54:aa:56:db:c3:aa:ea:30:db:ed:31:43:62:c6: b8:b1:8c:4e:47:80:f1:cb:65:6c:0d:a8:b1:89:7e: 89:33:be:90:6b:e2:02:a0:e8:d7:c7:e7:05:c3:57: f0:88:15:05:0d:19:1f:a9:11:3e:00:c0:f8:97:bb: d2:d1:94:5e:19:d7:a3:95:83:02:f8:89:df:e2:3a: 56:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:33:99:AD:A1:83:1D:8C:04:3C:9E:FA:07:08:B5:48:7F:01:56:40 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:54:9c:fb:22:15:2a:a4:bc:8f:be:3c:73:9a:7c:4c:ef:81: 3b:52:6d:17:32:e4:38:d0:9e:af:63:e3:e1:35:e1:08:36:84: 3d:75:89:2e:43:d3:fd:42:64:e1:71:04:ad:76:42:ac:a6:02: b1:16:f9:87:9d:e1:67:3a:31:c6:5c:c6:92:b7:a5:9b:84:bb: a9:0d:53:86:40:6a:33:38:49:87:1b:62:2c:c8:22:5b:b1:c1: a0:34:29:43:17:27:69:a8:b8:1e:e3:df:8c:f6:17:8b:e8:6a: fa:35:8b:13:f0:3b:4c:bc:95:52:fe:4b:63:b7:90:23:f1:a0: 0f:80:fa:85:47:2e:37:e3:aa:1a:36:fd:c3:e5:c4:4b:ca:d6: 1e:12:38:72:76:51:96:be:d0:a7:c3:19:0d:04:19:c6:af:c1: 2b:6d:09:ba:1c:aa:54:de:2c:a2:18:12:c3:94:b5:83:84:26: b4:2c:b1:b1:61:06:64:ed:2b:63:b8:05:d4:26:fd:07:d5:91: 1d:81:4c:35:6e:13:62:ca:5f:3d:2a:34:6f:9f:93:72:11:ff: 50:68:22:69:6f:27:3c:21:74:ea:22:82:b5:72:9a:1d:eb:7f: 7d:b5:72:6e:46:77:74:c3:b6:5f:34:d7:83:40:f0:2d:0d:b0: 5a:e9:90:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUwNjA0MTkzNDE0WhcNMjUwNjExMTkzNDE0WjAYMRYwFAYD VQQDEw02ODQwOWZiNy1hZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8BaX7xxKIUeHdZxd34Yl68ZTMiLm0bwgksS7jgGL5h6LGiJlfo/kP8+/wcp M0Xl+ERPOEB0scj2AvcW+23GX+rXH58i0FYZKbhviZWMaLNZ12dHNmN/Ip9+rWgz wPLOhvxPfvR6u6qK8lPytZGymdtbllpYenLJhGIdn5iqFtWzeUB9gTuRgqy4lZTJ /HImd4R0kKFSz7HvL6SCHgg2i8asPl1ETRY0aHh64ZrV3LBDmCoMVKpW28Oq6jDb 7TFDYsa4sYxOR4Dxy2VsDaixiX6JM76Qa+ICoOjXx+cFw1fwiBUFDRkfqRE+AMD4 l7vS0ZReGdejlYMC+Inf4jpWTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAszma2h gx2MBDye+gcItUh/AVZAMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwVJz7IhUqpLyPvjxzmnxM74E7Um0XMuQ40J6vY+PhNeEINoQ9dYku Q9P9QmThcQStdkKspgKxFvmHneFnOjHGXMaSt6WbhLupDVOGQGozOEmHG2IsyCJb scGgNClDFydpqLge49+M9heL6Gr6NYsT8DtMvJVS/ktjt5Aj8aAPgPqFRy4346oa Nv3D5cRLytYeEjhydlGWvtCnwxkNBBnGr8ErbQm6HKpU3iyiGBLDlLWDhCa0LLGx YQZk7StjuAXUJv0H1ZEdgUw1bhNiyl89KjRvn5NyEf9QaCJpbyc8IXTqIoK1cpod 6399tXJuRnd0w7ZfNNeDQPAtDbBa6ZDt -----END CERTIFICATE-----Generated at Fri Jun 6 16:55:16 2025 by rpki-client