$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: hGF/iE06dn1Cmxj0qKQPTxN0rCV6hoCKNxEMOFRJHyY= Subject key identifier: ED:47:43:CF:58:A1:FA:F6:2A:24:3D:8B:8E:7F:D5:B4:D9:25:30:D3 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 34C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 342E Signing time: Sat 10 May 2025 15:18:47 +0000 Manifest this update: Sat 10 May 2025 15:18:47 +0000 Manifest next update: Sat 17 May 2025 15:18:47 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: 0KKlqcBbKFiFMZEb0Zjy8hL5JDHtQiIHjLu0ivxpCzU=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 10: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 11: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: May 10 15:18:47 2025 GMT Not After : May 17 15:18:47 2025 GMT Subject: CN=681f6e57-e1ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5e:c6:e2:0f:83:af:c5:2a:ae:f1:7b:e2:c7: dd:8c:26:34:30:11:d7:8d:f1:38:be:1e:03:0f:4e: 24:f1:ab:62:33:8f:39:de:be:50:13:4a:b8:2e:12: eb:92:4f:af:e6:43:cc:b8:43:e1:99:e3:c8:9b:af: 62:61:03:13:51:97:23:fb:5c:97:53:9c:1d:f6:d5: db:f6:2d:6e:d8:d9:4f:40:32:f7:03:cd:ff:2e:3a: 64:76:55:af:85:37:28:ba:e1:68:d0:f0:70:6b:88: 42:22:b3:e6:44:5a:46:c9:3e:45:aa:8d:57:53:ae: a5:69:a9:f3:5e:a3:db:25:ce:d7:b9:e9:c1:ad:4b: 8c:9e:ee:63:5d:77:82:ff:20:0e:10:23:44:3e:82: 56:87:f2:80:8f:91:70:df:22:ac:31:1f:7b:40:05: a7:43:63:c2:ae:17:61:36:56:34:38:f4:97:6e:66: e7:ea:21:32:85:94:c6:5b:53:43:36:52:74:6c:66: 33:5b:44:fe:c0:72:50:cf:6b:c7:6b:6b:6e:4d:6c: 0e:f3:67:12:26:87:e4:81:1e:36:fb:cb:29:dc:ca: cc:9f:e4:63:eb:a1:a7:64:3e:ad:99:9b:9b:ca:99: 70:1f:19:8c:bb:0a:c2:cd:20:b2:6c:d7:06:08:40: 0d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:47:43:CF:58:A1:FA:F6:2A:24:3D:8B:8E:7F:D5:B4:D9:25:30:D3 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:dd:74:cf:a3:c3:b7:43:56:e9:c2:38:17:80:f9:b3:e6:8e: cb:61:68:91:08:1e:a8:c7:94:43:d9:3f:56:c7:c9:f8:20:00: ce:1d:5c:28:85:22:98:3f:56:51:ba:46:5b:eb:5c:a2:a7:fa: 86:04:9b:e4:1f:cf:3b:6a:c1:2c:35:84:76:17:29:29:c0:72: ba:8e:a6:45:15:e3:6b:14:3d:a8:01:0d:fa:e3:dd:7e:13:4b: 61:16:82:40:73:54:7b:6d:47:b3:06:cf:bd:82:44:b6:aa:6b: 4f:af:54:16:70:42:c0:aa:57:b4:76:d7:9b:ba:0a:4d:e0:f0: 4a:fa:4a:07:19:b3:99:97:a1:96:3f:e2:51:4e:47:74:1a:f7: 82:10:e9:a1:eb:c7:ea:d1:05:73:8c:14:e7:51:29:f0:69:f0: c2:bf:da:84:39:6b:11:77:c5:84:28:f0:f6:30:f5:87:06:bb: 6a:2a:b3:20:d5:97:90:93:23:04:f0:f9:b0:48:b1:e3:e7:50: 80:b8:5e:37:32:ed:70:3d:f9:97:5b:2b:21:e9:4e:e7:d8:83: d8:c1:b8:a2:16:82:1a:fc:4c:30:d1:2b:ed:ae:e1:bd:33:19: 24:42:14:98:73:33:fe:43:a3:47:a5:d5:a5:cb:a2:a2:81:de: 06:b8:5a:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwNTEwMTUxODQ3WhcNMjUwNTE3MTUxODQ3WjAYMRYwFAYD VQQDEw02ODFmNmU1Ny1lMWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV7G4g+Dr8UqrvF74sfdjCY0MBHXjfE4vh4DD04k8atiM4853r5QE0q4LhLr kk+v5kPMuEPhmePIm69iYQMTUZcj+1yXU5wd9tXb9i1u2NlPQDL3A83/LjpkdlWv hTcouuFo0PBwa4hCIrPmRFpGyT5Fqo1XU66laanzXqPbJc7XuenBrUuMnu5jXXeC /yAOECNEPoJWh/KAj5Fw3yKsMR97QAWnQ2PCrhdhNlY0OPSXbmbn6iEyhZTGW1ND NlJ0bGYzW0T+wHJQz2vHa2tuTWwO82cSJofkgR42+8sp3MrMn+Rj66GnZD6tmZub yplwHxmMuwrCzSCybNcGCEANcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1HQ89Y ofr2KiQ9i45/1bTZJTDTMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe3XTPo8O3Q1bpwjgXgPmz5o7LYWiRCB6ox5RD2T9Wx8n4IADOHVwo hSKYP1ZRukZb61yip/qGBJvkH887asEsNYR2FykpwHK6jqZFFeNrFD2oAQ36491+ E0thFoJAc1R7bUezBs+9gkS2qmtPr1QWcELAqle0dtebugpN4PBK+koHGbOZl6GW P+JRTkd0GveCEOmh68fq0QVzjBTnUSnwafDCv9qEOWsRd8WEKPD2MPWHBrtqKrMg 1ZeQkyME8PmwSLHj51CAuF43Mu1wPfmXWysh6U7n2IPYwbiiFoIa/Eww0SvtruG9 MxkkQhSYczP+Q6NHpdWly6Kigd4GuFrX -----END CERTIFICATE-----Generated at Mon May 12 15:11:27 2025 by rpki-client