$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: c8+UNdgwVEGOnq4RmSdTMkuifZBO8KdaNKLSK+983/I= Subject key identifier: CD:D7:69:DF:69:BF:D3:CC:78:1E:58:5D:E8:13:A8:16:F6:D4:84:5A Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3426 Signing time: Thu 24 Apr 2025 15:20:51 +0000 Manifest this update: Thu 24 Apr 2025 15:20:50 +0000 Manifest next update: Thu 01 May 2025 15:20:50 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: ngBGFKB8ujsxvDP4B0fnTjtQgRPjpsHyARqsVukmAS8=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 10: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 11: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Apr 24 15:20:50 2025 GMT Not After : May 1 15:20:50 2025 GMT Subject: CN=680a56d3-ef6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:67:66:6e:f1:48:59:e1:fd:1b:1c:41:24:f3: bf:06:39:82:9e:b9:16:10:47:ec:8d:21:59:5d:c1: 21:c1:8e:a2:c2:d2:84:2d:2e:fc:a6:df:9c:e6:09: 6e:c3:6b:42:56:bc:c7:8e:08:3c:c3:70:a7:cf:52: 4e:d1:cd:4a:84:78:47:58:23:61:77:a6:51:87:d0: 69:69:fc:90:a2:a7:fc:17:92:3a:f9:d9:92:2c:a1: ae:5d:81:90:ba:c3:ec:99:1f:ce:ab:e4:fa:ef:af: c4:fe:cb:1c:d6:b7:26:dc:38:8b:10:a8:63:86:18: 10:bd:5e:ef:5a:c1:3f:a5:c8:0d:33:bf:1a:7a:ab: d4:86:ff:c4:cf:99:e6:5c:2e:c8:4e:ed:de:aa:ab: 07:b8:63:67:a1:c1:d3:6e:16:63:c6:54:6a:76:82: f2:49:0a:42:4c:2d:b4:1f:8a:b7:df:3b:f5:33:2f: 4d:76:a0:5c:5c:b3:2a:0e:5c:09:32:e9:87:83:e4: 6b:6d:c8:ef:ed:d6:59:66:73:eb:cf:b1:4a:bb:ce: ca:d5:5f:2b:a7:ea:5e:36:9a:c6:c3:c4:64:b8:4a: 07:87:ce:19:68:b7:92:bd:68:80:cc:13:75:03:77: 0c:de:55:9a:9b:58:6e:95:ae:4a:92:11:35:71:68: 08:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D7:69:DF:69:BF:D3:CC:78:1E:58:5D:E8:13:A8:16:F6:D4:84:5A X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f0:61:a6:5f:29:0d:91:af:ad:b1:7a:2f:37:f8:b5:aa:a8:b5: 1c:d5:de:ea:13:2e:a5:4e:ce:d6:e1:71:ff:20:ed:82:f7:59: 1a:b6:93:21:1a:3d:c8:41:a4:7e:cc:fd:28:f1:ff:c4:7e:ee: 13:52:ea:8c:4f:23:7f:44:7f:75:f3:00:d1:6d:0f:2c:65:ea: 2d:07:37:4b:30:8a:6a:5c:41:dd:ab:f3:7c:69:02:d5:49:04: 7b:e7:80:c8:2d:50:89:9f:92:0f:21:7b:d3:5d:71:16:9f:ea: a4:89:f7:cd:f5:64:60:62:11:cd:4c:d0:17:1f:82:8f:35:79: 31:35:b2:c4:f8:e5:9e:03:20:08:db:bf:e2:a3:54:9e:6b:5c: 6b:ce:06:fe:44:03:db:ca:79:ff:cd:bb:85:77:ee:ef:63:5f: 12:93:ae:9e:7e:f5:78:7c:ee:08:63:2e:5b:eb:32:95:4c:44: de:97:79:bd:e9:2c:86:71:42:88:ce:c7:c8:b6:47:77:19:a1: 38:56:68:09:30:eb:c6:bc:c8:93:ef:2e:12:73:f4:f3:e8:2d: 01:ea:2b:b3:0a:9c:e7:18:98:1e:6f:9d:52:28:52:78:5a:f9: 9a:32:1a:4c:97:c7:17:84:b4:7b:07:45:2a:92:f1:0e:55:27: fb:99:c3:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwNDI0MTUyMDUwWhcNMjUwNTAxMTUyMDUwWjAYMRYwFAYD VQQDEw02ODBhNTZkMy1lZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2dmbvFIWeH9GxxBJPO/BjmCnrkWEEfsjSFZXcEhwY6iwtKELS78pt+c5glu w2tCVrzHjgg8w3Cnz1JO0c1KhHhHWCNhd6ZRh9BpafyQoqf8F5I6+dmSLKGuXYGQ usPsmR/Oq+T676/E/ssc1rcm3DiLEKhjhhgQvV7vWsE/pcgNM78aeqvUhv/Ez5nm XC7ITu3eqqsHuGNnocHTbhZjxlRqdoLySQpCTC20H4q33zv1My9NdqBcXLMqDlwJ MumHg+Rrbcjv7dZZZnPrz7FKu87K1V8rp+peNprGw8RkuEoHh84ZaLeSvWiAzBN1 A3cM3lWam1hula5KkhE1cWgISwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3Xad9p v9PMeB5YXegTqBb21IRaMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDwYaZfKQ2Rr62xei83+LWqqLUc1d7qEy6lTs7W4XH/IO2C91katpMh Gj3IQaR+zP0o8f/Efu4TUuqMTyN/RH918wDRbQ8sZeotBzdLMIpqXEHdq/N8aQLV SQR754DILVCJn5IPIXvTXXEWn+qkiffN9WRgYhHNTNAXH4KPNXkxNbLE+OWeAyAI 27/io1Sea1xrzgb+RAPbynn/zbuFd+7vY18Sk66efvV4fO4IYy5b6zKVTETel3m9 6SyGcUKIzsfItkd3GaE4VmgJMOvGvMiT7y4Sc/Tz6C0B6iuzCpznGJgeb51SKFJ4 WvmaMhpMl8cXhLR7B0UqkvEOVSf7mcOM -----END CERTIFICATE-----Generated at Sat Apr 26 05:14:30 2025 by rpki-client