$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: bajvb7ZWSduxQVrYTgPFKW9hfqQCpiPbFSiG3MmAsIY= Subject key identifier: 63:C5:BE:53:81:3B:E4:4B:26:0B:12:73:70:2B:F0:51:F3:D4:84:68 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 34DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3448 Signing time: Mon 30 Jun 2025 15:22:51 +0000 Manifest this update: Mon 30 Jun 2025 15:22:51 +0000 Manifest next update: Mon 07 Jul 2025 15:22:51 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: iayMhaSwon7bieonPww7Y4GHxyyjBFpLVz0lAAjECRM=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 10: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 11: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13531 (0x34db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Jun 30 15:22:51 2025 GMT Not After : Jul 7 15:22:51 2025 GMT Subject: CN=6862abcb-9362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:81:87:49:ef:34:44:ef:3f:84:ad:95:71: a0:f5:ed:84:22:8b:35:4b:2f:e2:77:a3:a2:f0:2f: 17:b2:10:ff:de:84:33:cd:13:28:7f:01:fc:5b:6a: bb:3c:6e:1e:69:33:62:77:7b:1e:b4:57:20:2d:b2: 94:b3:52:77:ee:36:1c:27:d0:d6:fc:f0:50:cf:b1: 90:7f:d2:1b:fc:4d:0c:bf:bf:70:bf:3d:73:3b:25: d0:bb:cd:97:a5:68:b9:5c:64:a8:f0:61:e6:42:ea: d7:c1:57:d6:ae:be:63:1f:89:2d:3d:c8:ba:a3:e1: c9:96:eb:65:9d:24:80:e0:e0:72:d9:e8:39:70:a5: f4:3e:6e:f9:fc:33:c2:b4:6c:09:a9:e0:e8:69:dc: d2:29:01:3f:1c:27:06:44:64:76:00:e4:3a:c1:33: 7e:17:b4:09:10:5d:85:44:05:11:8e:f5:e5:e8:65: d4:c0:df:ac:f1:71:82:b0:22:c1:92:36:65:2c:4e: a7:8f:b0:94:56:18:21:97:1b:a4:5e:09:fa:82:12: 03:4c:7c:6f:9a:49:0d:5b:b5:d3:3f:af:8e:9d:f9: 63:f7:df:a8:ff:f8:f3:2a:c2:98:c0:98:40:15:68: 3e:62:4d:06:e8:c8:12:b4:8a:b7:fc:c1:44:e3:35: d8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C5:BE:53:81:3B:E4:4B:26:0B:12:73:70:2B:F0:51:F3:D4:84:68 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c4:1b:91:77:4a:e5:fd:83:b0:9c:e3:46:48:f5:79:6d:a5: 2c:36:f4:23:a0:8c:18:47:c5:cb:d8:d8:bf:51:f0:2d:95:03: 25:61:4e:40:16:18:79:7e:49:33:15:44:21:ff:81:80:d4:03: e9:88:78:4e:72:a0:9a:b4:a1:5c:73:4a:95:5a:c7:be:a1:60: 85:d3:d2:32:78:d9:51:da:ef:aa:1d:48:ae:2f:c1:44:f1:72: bc:b0:c1:d3:0d:cc:b9:49:dc:24:22:c9:8f:30:ae:34:ba:b3: 1b:c4:e6:12:3c:ca:7d:36:b5:91:16:3f:1b:0e:4e:43:d4:e6: 3b:c9:32:4c:eb:1a:8e:3b:b2:04:79:89:55:00:18:ae:f8:c9: a5:d3:37:55:5a:8c:e3:65:90:ab:91:04:ee:52:b4:92:d2:ab: 4c:19:bb:02:eb:0a:c0:30:9e:71:c9:a6:28:6d:be:c5:f4:69: 9c:33:d0:63:69:e6:f1:c3:85:a8:22:a1:49:63:ed:a8:16:36: a5:6f:8b:6d:2d:e1:38:23:aa:19:44:1d:61:ab:16:65:12:75: 30:c9:ee:ea:46:91:1c:53:5c:8e:4f:b0:53:4c:57:2c:83:fa: 83:9e:8a:ea:f1:fd:b3:57:18:b0:ae:13:d7:be:4c:0d:06:03: a7:22:5d:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwNjMwMTUyMjUxWhcNMjUwNzA3MTUyMjUxWjAYMRYwFAYD VQQDEw02ODYyYWJjYi05MzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9WBh0nvNETvP4StlXGg9e2EIos1Sy/id6Oi8C8XshD/3oQzzRMofwH8W2q7 PG4eaTNid3setFcgLbKUs1J37jYcJ9DW/PBQz7GQf9Ib/E0Mv79wvz1zOyXQu82X pWi5XGSo8GHmQurXwVfWrr5jH4ktPci6o+HJlutlnSSA4OBy2eg5cKX0Pm75/DPC tGwJqeDoadzSKQE/HCcGRGR2AOQ6wTN+F7QJEF2FRAURjvXl6GXUwN+s8XGCsCLB kjZlLE6nj7CUVhghlxukXgn6ghIDTHxvmkkNW7XTP6+Onflj99+o//jzKsKYwJhA FWg+Yk0G6MgStIq3/MFE4zXYMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPFvlOB O+RLJgsSc3Ar8FHz1IRoMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0xBuRd0rl/YOwnONGSPV5baUsNvQjoIwYR8XL2Ni/UfAtlQMlYU5A Fhh5fkkzFUQh/4GA1APpiHhOcqCatKFcc0qVWse+oWCF09IyeNlR2u+qHUiuL8FE 8XK8sMHTDcy5SdwkIsmPMK40urMbxOYSPMp9NrWRFj8bDk5D1OY7yTJM6xqOO7IE eYlVABiu+Mml0zdVWozjZZCrkQTuUrSS0qtMGbsC6wrAMJ5xyaYobb7F9GmcM9Bj aebxw4WoIqFJY+2oFjalb4ttLeE4I6oZRB1hqxZlEnUwye7qRpEcU1yOT7BTTFcs g/qDnorq8f2zVxiwrhPXvkwNBgOnIl1r -----END CERTIFICATE-----Generated at Wed Jul 2 15:03:02 2025 by rpki-client