$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: Mu3+/uhRpVuBZZQr3FVpILsUGia1C7wiHRkmQ2i80Sc= Subject key identifier: D3:B2:12:81:21:BE:C4:4B:F6:37:3E:81:5B:93:5A:3B:8E:F2:BC:60 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 34D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3441 Signing time: Mon 16 Jun 2025 15:23:17 +0000 Manifest this update: Mon 16 Jun 2025 15:23:16 +0000 Manifest next update: Mon 23 Jun 2025 15:23:16 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: wrGnFlZE5CZPGLtf5RUN8lJMfZZyb2KFAOXBpjNFiGg=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 10: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 11: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Jun 16 15:23:16 2025 GMT Not After : Jun 23 15:23:16 2025 GMT Subject: CN=685036e4-895f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:26:2d:36:8d:ea:c5:a7:6f:4c:72:9d:5e: 7f:12:73:5c:40:a1:b1:23:e0:20:ea:36:43:ec:55: 5c:de:79:a4:d6:05:76:47:a4:d3:af:53:44:84:1f: fa:30:1d:48:e4:00:86:2c:09:46:82:d7:9a:72:2e: cb:33:34:8c:75:8b:6a:f5:d4:18:80:66:a3:2e:3f: 91:a2:aa:99:06:f0:c8:bc:68:71:24:b0:5f:72:36: ce:f8:b1:10:e6:8f:f7:bc:32:e7:17:43:5b:23:f4: a6:57:f0:be:3c:6a:49:fd:45:95:ac:15:39:d4:21: af:8f:20:88:37:a3:ff:dc:52:e1:3f:ef:85:c7:51: c4:ed:df:a6:17:ec:93:b3:60:cf:de:1b:d5:ef:c4: 36:9a:c2:59:d6:ba:0a:35:8d:ff:93:82:51:fc:97: 41:27:48:11:25:5b:f5:16:d1:0c:32:44:ad:e2:45: 57:4d:25:44:0e:9b:19:c4:77:30:2c:82:33:2e:12: 07:d1:02:eb:ff:10:86:0a:d6:dd:70:af:2e:54:85: 28:a3:8e:aa:3a:5a:45:5d:2c:ab:de:34:44:a0:72: 5c:9b:c0:38:2c:0e:8c:d4:76:67:46:8d:6d:83:4c: 9b:61:74:4f:6d:e5:5e:36:48:6b:de:47:c4:9d:5a: 1b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B2:12:81:21:BE:C4:4B:F6:37:3E:81:5B:93:5A:3B:8E:F2:BC:60 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:ec:7c:18:a0:10:ff:b3:d6:a6:32:ca:80:8a:b2:af:a6:ba: f6:50:a9:1c:a6:06:e5:79:1a:68:76:0a:27:fb:4e:f1:78:9c: b5:ce:c9:6d:31:54:95:b3:05:bc:4e:9a:da:dd:57:a4:ed:1f: fd:9d:8c:dd:f3:fd:5e:b9:83:c3:db:ec:fa:fe:c0:c3:8f:89: 03:93:49:a8:ad:d3:47:56:fc:20:56:4c:6f:22:0f:a0:da:ca: ce:dc:48:ff:05:23:70:24:ae:23:7d:f5:f3:ef:67:ff:e4:b3: 84:2b:f9:b0:0b:57:37:2f:5e:ed:c6:6f:ce:18:31:89:dc:cb: 8d:99:ed:34:b1:30:e6:32:a2:5f:2b:b8:85:62:b4:8e:f2:95: 38:c0:59:91:33:5e:06:5b:c5:c5:14:c8:19:fd:ba:90:8a:bf: ae:9a:3a:10:31:c7:88:46:7a:d5:43:54:51:03:10:0d:28:a4: de:6c:34:8f:5e:8c:8b:2b:0f:f3:08:c0:c5:fa:46:48:b1:77: 64:b0:30:dd:eb:f5:b8:6c:6f:13:f7:dc:59:63:8f:1a:19:a0: d0:df:3f:b2:d6:5e:1f:df:61:13:24:6d:db:97:bc:5f:6e:22: 38:6a:8b:42:aa:69:99:08:5b:8a:e3:3d:90:12:33:5f:ba:f6: de:80:07:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwNjE2MTUyMzE2WhcNMjUwNjIzMTUyMzE2WjAYMRYwFAYD VQQDEw02ODUwMzZlNC04OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOgmLTaN6sWnb0xynV5/EnNcQKGxI+Ag6jZD7FVc3nmk1gV2R6TTr1NEhB/6 MB1I5ACGLAlGgteaci7LMzSMdYtq9dQYgGajLj+RoqqZBvDIvGhxJLBfcjbO+LEQ 5o/3vDLnF0NbI/SmV/C+PGpJ/UWVrBU51CGvjyCIN6P/3FLhP++Fx1HE7d+mF+yT s2DP3hvV78Q2msJZ1roKNY3/k4JR/JdBJ0gRJVv1FtEMMkSt4kVXTSVEDpsZxHcw LIIzLhIH0QLr/xCGCtbdcK8uVIUoo46qOlpFXSyr3jREoHJcm8A4LA6M1HZnRo1t g0ybYXRPbeVeNkhr3kfEnVobjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOyEoEh vsRL9jc+gVuTWjuO8rxgMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA7HwYoBD/s9amMsqAirKvprr2UKkcpgbleRpodgon+07xeJy1zslt MVSVswW8Tpra3Vek7R/9nYzd8/1euYPD2+z6/sDDj4kDk0mordNHVvwgVkxvIg+g 2srO3Ej/BSNwJK4jffXz72f/5LOEK/mwC1c3L17txm/OGDGJ3MuNme00sTDmMqJf K7iFYrSO8pU4wFmRM14GW8XFFMgZ/bqQir+umjoQMceIRnrVQ1RRAxANKKTebDSP XoyLKw/zCMDF+kZIsXdksDDd6/W4bG8T99xZY48aGaDQ3z+y1l4f32ETJG3bl7xf biI4aotCqmmZCFuK4z2QEjNfuvbegAeI -----END CERTIFICATE-----Generated at Wed Jun 18 02:27:39 2025 by rpki-client