$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: U1F5XHMvOmlt5w8kdzu4yt1f4Z/o+k8zsCRVz2rPeok= Subject key identifier: 9C:63:06:D8:49:B2:BD:01:06:44:C0:53:A8:AA:CB:37:48:54:D7:70 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 34F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3463 Signing time: Fri 22 Aug 2025 15:22:35 +0000 Manifest this update: Fri 22 Aug 2025 15:22:35 +0000 Manifest next update: Fri 29 Aug 2025 15:22:35 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: ZimG2TyyvxsGLybipx26DSSCU2Da65/11dBWLyXcWcE=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 10: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 11: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13558 (0x34f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Aug 22 15:22:35 2025 GMT Not After : Aug 29 15:22:35 2025 GMT Subject: CN=68a88b3b-3bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9c:49:69:2e:ef:ad:fb:6b:a6:30:ee:6b:5e: 6c:49:ae:45:b4:58:1c:5b:2d:27:d6:e2:ad:27:13: 9e:c2:96:e8:7a:24:32:64:f9:be:3e:70:9b:59:32: df:ef:97:db:12:19:54:36:85:78:33:49:35:c5:a2: c1:5d:06:cb:81:a3:93:4a:2f:38:ad:b4:e5:6b:34: 91:fc:10:bd:de:f2:b4:d0:6f:3a:ae:da:d4:f9:3d: 88:0b:62:64:4a:a6:0e:11:56:fe:de:c9:84:96:63: a4:d9:aa:84:84:11:82:ba:5d:67:c3:2e:c5:da:37: 65:c9:8e:a5:e5:70:55:87:1b:9d:38:e9:dc:14:5d: 49:7f:2f:8c:f7:c2:37:f3:54:e5:50:ce:14:1a:43: 29:05:d5:7b:16:b5:5a:c9:68:a1:46:ee:8d:4e:f3: 50:7d:7a:53:c3:03:4f:09:9c:d7:48:f9:8c:0d:b9: b6:0e:36:3d:89:e6:e5:bd:b4:0b:20:94:dc:26:7b: 07:78:59:25:26:0d:49:87:94:0c:12:85:4a:a5:c1: 5c:2b:0b:db:8f:34:27:4b:3d:24:17:f3:86:79:9e: 3b:94:99:4f:8f:07:ee:de:7d:a5:12:54:21:6d:7a: c4:1f:ce:3e:c5:48:ee:56:35:db:f7:85:bb:ee:0a: 2d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:63:06:D8:49:B2:BD:01:06:44:C0:53:A8:AA:CB:37:48:54:D7:70 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:55:7a:9c:f2:b1:b7:81:eb:7b:ad:0e:5d:e2:86:e9:99:d9: c0:2b:2c:bc:b7:0d:1c:6d:b6:dd:b2:8a:32:5d:18:b8:a7:36: f9:7d:6d:2b:63:84:01:4d:9f:99:82:e7:a3:d5:86:ea:b2:5f: a7:99:ca:7f:8f:0b:c0:81:60:0c:e6:ec:1a:18:a6:81:68:6e: a3:b5:f8:4e:64:56:e1:11:3e:45:c6:86:5e:68:c8:52:b2:5e: f5:b2:38:c0:15:bc:95:c4:7f:cd:45:d4:0b:05:1b:e9:c6:9b: e2:5d:89:1a:53:58:4b:7a:54:49:9e:8f:03:6c:f7:e3:3a:02: dd:3e:e1:29:46:9d:d1:e7:62:36:07:72:bc:8d:39:db:d7:fe: c2:cb:56:6c:83:84:82:d3:8b:f9:ca:21:c6:74:90:bc:65:f2: e5:14:e0:0d:68:d8:2b:d1:07:ba:3b:36:63:5c:a2:77:45:e9: 7f:c2:2c:54:c6:22:8b:c2:c3:1d:b4:f6:72:f9:7b:92:4f:43: 6c:f1:40:19:2d:29:09:b7:35:e3:40:e8:fc:f2:a5:05:3f:2b: 21:b6:10:9a:ab:84:9d:cf:7c:e2:f2:b6:fe:7d:8a:ff:e1:18: 04:49:de:af:66:80:d4:49:81:f2:92:8a:57:29:0a:45:65:19: 55:e4:77:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwODIyMTUyMjM1WhcNMjUwODI5MTUyMjM1WjAYMRYwFAYD VQQDEw02OGE4OGIzYi0zYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZxJaS7vrftrpjDua15sSa5FtFgcWy0n1uKtJxOewpboeiQyZPm+PnCbWTLf 75fbEhlUNoV4M0k1xaLBXQbLgaOTSi84rbTlazSR/BC93vK00G86rtrU+T2IC2Jk SqYOEVb+3smElmOk2aqEhBGCul1nwy7F2jdlyY6l5XBVhxudOOncFF1Jfy+M98I3 81TlUM4UGkMpBdV7FrVayWihRu6NTvNQfXpTwwNPCZzXSPmMDbm2DjY9ieblvbQL IJTcJnsHeFklJg1Jh5QMEoVKpcFcKwvbjzQnSz0kF/OGeZ47lJlPjwfu3n2lElQh bXrEH84+xUjuVjXb94W77got9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxjBthJ sr0BBkTAU6iqyzdIVNdwMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkVXqc8rG3get7rQ5d4obpmdnAKyy8tw0cbbbdsooyXRi4pzb5fW0r Y4QBTZ+Zguej1Ybqsl+nmcp/jwvAgWAM5uwaGKaBaG6jtfhOZFbhET5FxoZeaMhS sl71sjjAFbyVxH/NRdQLBRvpxpviXYkaU1hLelRJno8DbPfjOgLdPuEpRp3R52I2 B3K8jTnb1/7Cy1Zsg4SC04v5yiHGdJC8ZfLlFOANaNgr0Qe6OzZjXKJ3Rel/wixU xiKLwsMdtPZy+XuST0Ns8UAZLSkJtzXjQOj88qUFPyshthCaq4Sdz3zi8rb+fYr/ 4RgESd6vZoDUSYHykopXKQpFZRlV5Hfr -----END CERTIFICATE-----Generated at Sat Aug 23 15:13:33 2025 by rpki-client