$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: prUtK9jk/9FgsO0+8lzzZebGZNenvRBDxHjN1TTvSTc= Subject key identifier: D9:A2:D8:2F:C5:0F:0D:82:9D:FA:7E:14:7B:E5:97:6E:39:2E:89:CB Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0A95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0A79 Signing time: Mon 28 Apr 2025 20:03:48 +0000 Manifest this update: Mon 28 Apr 2025 20:03:48 +0000 Manifest next update: Mon 05 May 2025 20:03:48 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: 1ZZw7yM8b80gSrYIzPX1OSgOR1nRlCHrrQEnko0T9W0=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Apr 28 20:03:48 2025 GMT Not After : May 5 20:03:48 2025 GMT Subject: CN=680fdf24-ba34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:97:a6:53:69:72:b5:b6:91:57:aa:3a:2f:e3: 87:4a:5d:ba:ab:b2:01:59:a8:81:af:4e:fb:02:49: 18:d6:b7:a6:8c:19:e5:28:a8:d7:f0:59:ed:2d:69: 0b:59:81:7b:9e:1d:f7:bb:eb:fd:b5:c7:ae:72:23: 66:3f:b1:45:e9:bc:1b:3e:93:ad:80:22:3b:7d:f4: 74:fc:84:69:b6:b8:8a:c3:83:3c:d1:4d:be:9d:fa: 27:c7:2e:73:28:1d:aa:91:86:15:05:5e:67:b7:1d: 13:60:9b:92:68:fa:0b:a9:10:ba:a0:c0:37:94:67: 18:a1:79:13:cd:03:6d:2e:79:60:d8:98:c6:a3:55: 6d:0d:54:88:d3:54:f4:e9:c8:b1:6a:6a:5c:6e:eb: d9:78:f9:1c:47:99:ff:7a:2b:d6:ea:9f:51:ad:41: 2d:06:0c:7f:7b:5b:da:54:43:12:d2:7f:30:2d:01: f5:1b:ac:02:0a:1c:bb:f6:69:43:7c:7e:26:5c:b8: b3:dd:dd:16:dc:0d:48:33:ac:2f:32:69:99:6e:da: fd:e9:7d:05:39:a8:79:8a:30:77:b1:6e:79:b2:b8: e8:e5:14:37:fa:84:a0:dd:4a:3e:d3:5e:82:61:c8: df:11:ed:46:fd:86:f2:c6:45:e6:72:c1:87:c8:ae: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A2:D8:2F:C5:0F:0D:82:9D:FA:7E:14:7B:E5:97:6E:39:2E:89:CB X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:74:21:9e:6c:bf:ca:dc:cf:aa:dc:ff:de:f4:c0:81:cc:d3: 2f:42:7e:ef:23:1e:ce:01:a1:bf:97:7b:fc:fc:a8:ae:d6:25: ff:79:11:9d:04:00:da:6b:af:f9:b3:1f:21:69:92:bc:81:2c: 9f:c1:bb:18:18:9b:c4:8c:2f:8c:57:7f:95:fa:89:59:27:87: 02:27:7a:4b:7b:93:a9:4a:00:d9:a7:7b:12:63:0d:dd:fd:f1: d9:50:67:2f:53:5d:14:0e:89:81:0a:b1:da:fb:39:88:93:c5: 56:01:bf:ef:19:ec:1f:d2:72:b6:9d:4d:16:a4:5f:4b:37:ae: 20:a4:86:c9:a3:36:4b:8c:ed:1e:4b:af:3b:f2:7c:94:6e:c2: b7:45:b3:e1:46:e3:4c:cc:bb:6c:86:15:e3:c3:11:ab:68:b7: 80:5b:f5:fd:61:ee:72:50:71:98:fb:6a:f1:63:b0:dd:1c:11: 57:a8:19:d6:c8:e6:09:a6:1d:e9:73:eb:a5:03:d0:3c:cf:11: 59:52:23:29:48:09:b9:b1:9e:b0:3f:65:6d:c9:b0:c8:0b:a3: 57:c8:c7:0b:9c:bc:a7:d2:db:32:31:d8:01:10:e8:62:7a:f8: 64:0f:7c:74:43:31:8e:9d:9b:bc:1e:2c:4c:f8:ae:f3:24:98: 18:2f:93:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUwNDI4MjAwMzQ4WhcNMjUwNTA1MjAwMzQ4WjAYMRYwFAYD VQQDEw02ODBmZGYyNC1iYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA95emU2lytbaRV6o6L+OHSl26q7IBWaiBr077AkkY1remjBnlKKjX8FntLWkL WYF7nh33u+v9tceuciNmP7FF6bwbPpOtgCI7ffR0/IRptriKw4M80U2+nfonxy5z KB2qkYYVBV5ntx0TYJuSaPoLqRC6oMA3lGcYoXkTzQNtLnlg2JjGo1VtDVSI01T0 6cixampcbuvZePkcR5n/eivW6p9RrUEtBgx/e1vaVEMS0n8wLQH1G6wCChy79mlD fH4mXLiz3d0W3A1IM6wvMmmZbtr96X0FOah5ijB3sW55srjo5RQ3+oSg3Uo+016C YcjfEe1G/YbyxkXmcsGHyK6QiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmi2C/F Dw2Cnfp+FHvll245LonLMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKdCGebL/K3M+q3P/e9MCBzNMvQn7vIx7OAaG/l3v8/Kiu1iX/eRGd BADaa6/5sx8haZK8gSyfwbsYGJvEjC+MV3+V+olZJ4cCJ3pLe5OpSgDZp3sSYw3d /fHZUGcvU10UDomBCrHa+zmIk8VWAb/vGewf0nK2nU0WpF9LN64gpIbJozZLjO0e S6878nyUbsK3RbPhRuNMzLtshhXjwxGraLeAW/X9Ye5yUHGY+2rxY7DdHBFXqBnW yOYJph3pc+ulA9A8zxFZUiMpSAm5sZ6wP2VtybDIC6NXyMcLnLyn0tsyMdgBEOhi evhkD3x0QzGOnZu8HixM+K7zJJgYL5P7 -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:21 2025 by rpki-client on console.sobornost.net