$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: rXL+RghwQm9CNjBIkBt3RvBZIXNyV3i0sFsNN9F9kPQ= Subject key identifier: 76:BD:29:06:81:72:0C:66:7D:5A:E3:6F:E1:A7:39:8D:7F:9E:A1:10 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0AE0 Signing time: Sun 02 Nov 2025 19:27:33 +0000 Manifest this update: Sun 02 Nov 2025 19:27:33 +0000 Manifest next update: Sun 09 Nov 2025 19:27:33 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: bB/IR2NaU7fl6nIZHC5RVxhYVV6LXGmfTKGf88TtlXw=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: u5qMQVovxMEdO3VlriBzt3ygKjHOuxT4HxOLZ60i5D0=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Nov 2 19:27:33 2025 GMT Not After : Nov 9 19:27:33 2025 GMT Subject: CN=6907b0a5-c6d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:47:7f:f0:e9:ae:30:87:5a:3c:18:ee:e6: 44:bc:98:2d:78:9a:9e:11:60:81:eb:4c:5b:12:c9: 62:ac:dd:0d:6a:7c:e8:76:84:65:54:b2:36:49:56: 84:00:bf:f5:f2:75:01:9e:98:90:3a:c9:27:b4:4e: fa:fe:8a:20:db:2d:02:54:ff:8a:ee:94:93:c6:2d: 92:e5:f7:6b:a8:97:27:5d:a9:29:a7:23:b1:42:c3: c8:29:3f:e2:fc:5a:9a:2c:7b:68:83:f9:03:ec:33: cb:f1:a7:4f:20:0e:fe:93:09:89:56:7e:be:0e:c0: 45:b0:92:f6:17:29:27:0c:ae:e8:99:38:bc:d5:27: 4d:c5:99:8d:e2:f7:c8:66:39:aa:43:75:34:b2:a9: 7e:38:8e:a9:ea:ff:a7:79:51:eb:31:91:c9:f4:eb: f9:27:b4:cf:28:af:e4:d0:8b:b7:53:18:d9:a4:41: b2:e0:cc:ba:4f:b1:a6:82:c2:2a:f0:c2:ac:9a:aa: 1b:71:32:73:bf:41:ee:25:ab:bb:2e:be:5a:84:5f: 8b:f4:ba:19:ae:22:ca:a4:ef:ec:2d:5a:b9:cf:c7: 48:5c:11:b3:79:df:3a:f1:db:a1:0a:09:9e:e4:dd: 89:40:f2:a3:8c:9d:42:ae:ed:53:4a:c4:31:5b:ee: 7a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BD:29:06:81:72:0C:66:7D:5A:E3:6F:E1:A7:39:8D:7F:9E:A1:10 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:3a:9b:a9:76:6a:89:be:1a:a4:82:3a:aa:43:87:d9:a6:f7: a1:ef:46:bd:c8:de:42:ca:53:72:3e:3b:61:98:e8:ee:30:a6: 85:ab:16:4f:65:78:a2:19:55:a0:0f:a1:ca:83:29:3b:8e:5b: 48:67:2b:10:e7:7c:13:44:2b:ad:18:12:74:a3:58:8a:d8:cf: e4:d9:bc:07:08:cc:8b:7e:38:ba:ca:e1:6e:1a:98:d9:21:7e: c3:44:8d:ab:b9:28:ce:82:d0:d5:25:c4:49:99:89:c7:43:a8: ec:c7:35:d9:6b:b6:2b:9c:63:02:c2:6f:7d:ff:4b:11:30:1a: 3a:a8:ad:e2:46:ef:32:5f:bb:c2:78:d3:36:86:30:7c:c6:ac: 7f:2b:33:42:56:7b:d3:b2:0a:f0:86:05:73:de:51:a9:e4:96: 70:52:e9:13:89:56:ff:30:d6:04:eb:e6:2d:cc:23:8a:1a:ce: e6:0c:51:d6:6c:2d:0f:3c:0d:7f:48:bb:67:75:ae:20:51:59: 81:2e:6e:46:da:bc:83:72:e5:ea:c8:a7:13:63:83:0a:13:14: f3:6e:e4:d7:86:50:94:15:9f:06:6c:0f:da:1f:ca:0c:af:4d: 68:d7:28:c0:5a:c9:66:e6:87:4a:dc:c6:8a:2b:8a:3b:ad:e9: 30:c2:64:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUxMTAyMTkyNzMzWhcNMjUxMTA5MTkyNzMzWjAYMRYwFAYD VQQDEw02OTA3YjBhNS1jNmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVJHf/DprjCHWjwY7uZEvJgteJqeEWCB60xbEslirN0NanzodoRlVLI2SVaE AL/18nUBnpiQOskntE76/oog2y0CVP+K7pSTxi2S5fdrqJcnXakppyOxQsPIKT/i /FqaLHtog/kD7DPL8adPIA7+kwmJVn6+DsBFsJL2FyknDK7omTi81SdNxZmN4vfI ZjmqQ3U0sql+OI6p6v+neVHrMZHJ9Ov5J7TPKK/k0Iu3UxjZpEGy4My6T7GmgsIq 8MKsmqobcTJzv0HuJau7Lr5ahF+L9LoZriLKpO/sLVq5z8dIXBGzed868duhCgme 5N2JQPKjjJ1Cru1TSsQxW+56awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHa9KQaB cgxmfVrjb+GnOY1/nqEQMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3OpupdmqJvhqkgjqqQ4fZpveh70a9yN5CylNyPjthmOjuMKaFqxZP ZXiiGVWgD6HKgyk7jltIZysQ53wTRCutGBJ0o1iK2M/k2bwHCMyLfji6yuFuGpjZ IX7DRI2ruSjOgtDVJcRJmYnHQ6jsxzXZa7YrnGMCwm99/0sRMBo6qK3iRu8yX7vC eNM2hjB8xqx/KzNCVnvTsgrwhgVz3lGp5JZwUukTiVb/MNYE6+YtzCOKGs7mDFHW bC0PPA1/SLtnda4gUVmBLm5G2ryDcuXqyKcTY4MKExTzbuTXhlCUFZ8GbA/aH8oM r01o1yjAWslm5odK3MaKK4o7rekwwmTH -----END CERTIFICATE-----Generated at Tue Nov 4 12:38:10 2025 by rpki-client