$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft File: ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft (raw, json) Hash identifier: htob+EkTsudZHXsme/ybsIQ68Ssw7Y6Q0hWBaiVENzc= Subject key identifier: 27:28:0B:C2:43:4C:BA:4B:EE:E4:EE:01:02:1D:06:D9:18:1B:31:87 Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0BB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft Manifest number: 0BAC Signing time: Sun 02 Nov 2025 18:56:05 +0000 Manifest this update: Sun 02 Nov 2025 18:56:05 +0000 Manifest next update: Sun 09 Nov 2025 18:56:05 +0000 Files and hashes: 1: ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl (hash: ccv3TND5ZFlO1U1DYOZgQlqxvAWJqBH19iHIFEMVgfU=) 2: 1A8553B831F011EAA18AC76AC4F9AE02.roa (hash: 2QDvhbtMSuUMKkHjiP/BzPb8Yd8fGPxfNmWlpQE2e54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:56:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2995 (0xbb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6, serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Nov 2 18:56:05 2025 GMT Not After : Nov 9 18:56:05 2025 GMT Subject: CN=6907a945-e5ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:e1:4b:00:a8:63:9d:47:65:24:75:21:c9: a6:22:88:84:94:a8:3f:59:d0:fd:66:69:56:78:ed: 88:e1:b2:9f:69:2b:34:a5:02:36:1e:25:45:2d:2d: 10:52:a3:63:48:7f:e3:62:e8:50:7f:50:e5:b4:f2: a1:ba:c9:4e:d4:3e:85:d8:ec:aa:de:b8:c0:66:30: d1:a2:49:c1:13:e7:4d:ee:e4:ea:9d:b2:08:42:a3: 2b:db:04:08:f1:aa:a1:d4:c4:ca:e3:ae:4a:9f:52: 01:5f:2e:70:df:39:ec:5e:21:0b:0a:6f:bc:87:ad: 18:5c:87:9e:45:c9:a6:b2:d3:51:28:6c:dd:ae:bb: 67:d6:89:cd:35:a2:af:ad:d1:4d:fc:b5:d3:44:3f: 52:a7:b5:7e:d5:4f:1e:b1:42:4e:aa:02:b1:22:1e: f8:c9:62:09:e6:88:6d:c6:f7:10:65:bc:ed:31:f5: c8:8c:97:64:4e:1a:8d:d8:e7:1a:a2:62:e9:12:73: ab:c9:02:03:23:c9:38:74:90:74:b2:22:9b:a9:4b: 59:d3:4d:b7:ac:b2:dd:b3:f0:33:0b:63:37:78:69: 97:04:9b:b8:ab:1e:12:ff:d6:b0:af:a6:b8:17:e3: 7d:a5:97:72:76:24:2a:ce:5b:44:55:fe:9e:1a:dd: 35:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:28:0B:C2:43:4C:BA:4B:EE:E4:EE:01:02:1D:06:D9:18:1B:31:87 X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:1c:8d:80:d5:8c:52:b2:43:c2:f7:fc:45:4a:ee:4d:fe:16: 28:ed:c3:4f:86:b4:1d:7a:1f:a3:70:ad:43:7d:6c:61:29:10: 95:14:1a:66:f7:20:fa:a1:3c:a6:05:5b:23:9c:f4:7e:55:10: 7a:ed:0f:68:ff:59:2f:ca:f1:04:a4:54:e8:e4:66:93:f5:ba: cb:46:a0:55:3e:27:df:ee:3e:af:a0:81:b4:16:6f:7e:7e:6d: 60:b2:c0:eb:c0:18:4f:7a:5e:e9:07:cd:3a:b2:76:36:ec:8d: 6c:3d:6a:4e:e6:67:41:4e:51:71:bd:a3:0a:b5:06:94:96:55: 7e:cb:dc:b7:8d:5d:b8:b8:1f:4f:6b:f2:6a:f6:07:0d:9d:cb: 44:28:7e:49:2f:d0:72:41:55:96:c2:07:a4:4b:31:38:55:6f: 28:a9:d3:dd:3c:24:09:4c:cd:67:c5:76:5e:14:f3:78:f6:9a: 81:31:1b:8f:40:6c:c1:26:1c:ab:22:57:3c:a8:f6:cf:4a:b8: cc:eb:c3:e5:63:f5:f2:4f:f4:fa:ce:ff:c6:db:f7:41:bc:ca: c0:79:68:5e:9c:8c:b7:bd:34:5f:74:46:c5:f8:4f:b4:cd:aa: f6:b0:5c:5a:66:5c:dc:de:49:28:56:3f:f5:40:56:83:82:7d: fb:cf:be:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjUxMTAyMTg1NjA1WhcNMjUxMTA5MTg1NjA1WjAYMRYwFAYD VQQDEw02OTA3YTk0NS1lNWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdbhSwCoY51HZSR1IcmmIoiElKg/WdD9ZmlWeO2I4bKfaSs0pQI2HiVFLS0Q UqNjSH/jYuhQf1DltPKhuslO1D6F2Oyq3rjAZjDRoknBE+dN7uTqnbIIQqMr2wQI 8aqh1MTK465Kn1IBXy5w3znsXiELCm+8h60YXIeeRcmmstNRKGzdrrtn1onNNaKv rdFN/LXTRD9Sp7V+1U8esUJOqgKxIh74yWIJ5ohtxvcQZbztMfXIjJdkThqN2Oca omLpEnOryQIDI8k4dJB0siKbqUtZ0023rLLds/AzC2M3eGmXBJu4qx4S/9awr6a4 F+N9pZdydiQqzltEVf6eGt012wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcoC8JD TLpL7uTuAQIdBtkYGzGHMB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzdCNi80M0Y2QTU3ODMxRUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5 aEI2ZnF5VnRER0JFeTRXTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVHI2A1YxSskPC9/xFSu5N/hYo7cNPhrQdeh+jcK1DfWxhKRCVFBpm 9yD6oTymBVsjnPR+VRB67Q9o/1kvyvEEpFTo5GaT9brLRqBVPiff7j6voIG0Fm9+ fm1gssDrwBhPel7pB806snY27I1sPWpO5mdBTlFxvaMKtQaUllV+y9y3jV24uB9P a/Jq9gcNnctEKH5JL9ByQVWWwgekSzE4VW8oqdPdPCQJTM1nxXZeFPN49pqBMRuP QGzBJhyrIlc8qPbPSrjM68PlY/XyT/T6zv/G2/dBvMrAeWhenIy3vTRfdEbF+E+0 zar2sFxaZlzc3kkoVj/1QFaDgn37z77C -----END CERTIFICATE-----Generated at Tue Nov 4 12:32:59 2025 by rpki-client