$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: KnPFl0GNl+QcgMbwM1ecPHOFQgx6lslYmQo8gzdfPsA= Subject key identifier: 0A:72:AA:87:01:8F:5C:CF:4F:B6:4B:29:70:73:23:11:2F:B1:0C:E3 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 341C Signing time: Fri 04 Apr 2025 15:23:36 +0000 Manifest this update: Fri 04 Apr 2025 15:23:35 +0000 Manifest next update: Fri 11 Apr 2025 15:23:35 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: t7FLwmleB1YBy0maIYroCJzv/xfNN6fZfHGjkebEccM=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: ICLuCqdPid1RG8G/uczcAZrYY/Vhg9vDB0Y4ZuWrsgg=) 3: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: esENVVA6EiNHoh8zYMrrGIlsPVgfxlInP1Q1Dqp1TX0=) 4: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: vlPdQwiOxGdbOdhmlbrhpezVJ256bDBMeryFLzti+9k=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: t0X2DtahA6cVGvL8LAxWIioK5JV3S/HBQuQOiXYnF58=) 6: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: osXWx1pbxHv+AmHj+bmzgWhkOOzEZkepu7gweinGAO4=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: pxP+7JsX1QXgZ6389EUW7Rq0A265BP9eId8bGB02ABI=) 8: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: hzE638zELYjKoWqOncVd2PWwcT0doUZBbmbjdlD3Egk=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4=) 10: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 5OfOPHDKno3z0OXXcGhOFxPs0axjwDkS/h/HmudH3qQ=) 11: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: OqgL79PVwss/L9YJSqF29Xvq2wNOU6UYyi3JyoLgqms=) 12: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: V1fSCsWS5cdJM7voSc5ZTQaks8azUpLSc/ONX61tIJU=) 13: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kXSKiPTBMMpV/v8BhM7mqRhZb0qkCrS5RGh8ixYaHOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A Validity Not Before: Apr 4 15:23:35 2025 GMT Not After : Apr 11 15:23:35 2025 GMT Subject: CN=67eff977-a910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a7:7e:2c:0e:9e:a3:47:1d:46:9a:9f:6f:a8: 38:73:cd:cd:8a:25:6c:c9:df:10:0a:f3:a8:54:99: ed:d2:7d:6d:87:0b:5b:c7:70:2c:cb:e5:10:39:0e: 00:87:44:38:47:da:5d:ea:f6:45:96:13:47:76:de: 0c:7d:7d:bd:99:30:2a:cf:93:86:8b:1d:51:72:d7: ad:9d:ea:30:a9:c8:36:0c:05:c2:93:49:52:6f:67: 96:34:3f:55:86:8d:86:9f:3e:c0:d5:b8:a8:b2:84: 60:9a:1b:39:65:97:77:97:3f:a6:a8:99:25:8e:5d: f3:85:b8:0d:43:84:ea:d6:a9:aa:9c:2f:e8:d4:af: b3:0a:c3:47:23:d1:56:8f:9d:b1:1e:10:17:12:95: 5b:2c:e1:33:5c:2c:88:21:da:c4:65:a4:d8:72:48: de:9d:db:b0:50:4b:fd:9b:47:73:d1:39:d7:93:94: 8c:34:c5:29:75:34:30:90:e5:ab:0a:df:ee:dc:ad: 18:c6:b2:08:10:8a:08:58:81:3c:20:c0:85:40:76: 9e:ab:96:7a:a0:ee:11:42:1d:0f:40:a2:54:40:08: 3b:a5:b8:8f:bb:95:07:60:1f:5b:81:ec:e2:67:1a: 89:00:55:1c:3b:c8:ff:d7:50:ac:76:13:4a:d5:aa: a5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:72:AA:87:01:8F:5C:CF:4F:B6:4B:29:70:73:23:11:2F:B1:0C:E3 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:1c:ef:91:0b:93:c1:8b:d5:49:15:b7:f9:70:02:eb:b9:67: 6e:81:60:70:eb:03:f3:c3:d8:4e:a4:9a:29:c2:58:1e:f7:ee: 4e:ce:35:09:09:8b:91:1f:89:e8:c3:34:fe:00:3f:85:d6:b8: bd:51:1c:18:78:e0:9c:fa:0a:5a:3b:8e:08:36:82:47:87:b7: f4:80:54:d6:89:49:55:bb:b4:b4:f1:7c:8d:7e:bd:1f:85:58: b8:1c:71:b7:f9:c0:97:dc:e1:dd:95:f7:9a:c9:2e:cd:00:54: 6e:f0:59:82:8e:2f:27:76:23:33:cf:dd:53:6a:3c:9c:af:4a: 68:07:75:60:32:bc:ab:07:3c:d8:1c:b1:a3:82:91:eb:7a:27: 6f:b5:79:2e:c2:0b:cc:5a:c7:e1:c7:d3:34:c0:3b:6f:e4:33: 51:13:ca:12:f7:c8:75:6b:c8:fb:87:5f:87:ad:69:0e:ed:10: 07:06:9c:ac:14:b0:5f:68:a8:66:11:a0:01:fa:67:28:ab:29: 55:8d:9b:21:fb:83:a0:7b:52:e0:c7:74:0d:0a:6f:23:e2:e1: d1:c8:c3:22:b6:6c:db:c9:0f:a8:cc:1a:8d:9c:0a:a9:b9:3c: 74:dd:7f:99:5f:86:8d:2c:55:98:bb:8b:30:13:48:cf:61:f2: b9:6e:2a:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUwNDA0MTUyMzM1WhcNMjUwNDExMTUyMzM1WjAYMRYwFAYD VQQDEw02N2VmZjk3Ny1hOTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26d+LA6eo0cdRpqfb6g4c83NiiVsyd8QCvOoVJnt0n1thwtbx3Asy+UQOQ4A h0Q4R9pd6vZFlhNHdt4MfX29mTAqz5OGix1Rctetneowqcg2DAXCk0lSb2eWND9V ho2Gnz7A1biosoRgmhs5ZZd3lz+mqJkljl3zhbgNQ4Tq1qmqnC/o1K+zCsNHI9FW j52xHhAXEpVbLOEzXCyIIdrEZaTYckjenduwUEv9m0dz0TnXk5SMNMUpdTQwkOWr Ct/u3K0YxrIIEIoIWIE8IMCFQHaeq5Z6oO4RQh0PQKJUQAg7pbiPu5UHYB9bgezi ZxqJAFUcO8j/11CsdhNK1aql8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApyqocB j1zPT7ZLKXBzIxEvsQzjMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmHO+RC5PBi9VJFbf5cALruWdugWBw6wPzw9hOpJopwlge9+5OzjUJ CYuRH4nowzT+AD+F1ri9URwYeOCc+gpaO44INoJHh7f0gFTWiUlVu7S08XyNfr0f hVi4HHG3+cCX3OHdlfeayS7NAFRu8FmCji8ndiMzz91Tajycr0poB3VgMryrBzzY HLGjgpHreidvtXkuwgvMWsfhx9M0wDtv5DNRE8oS98h1a8j7h1+HrWkO7RAHBpys FLBfaKhmEaAB+mcoqylVjZsh+4Oge1Lgx3QNCm8j4uHRyMMitmzbyQ+ozBqNnAqp uTx03X+ZX4aNLFWYu4swE0jPYfK5bir/ -----END CERTIFICATE-----Generated at Sat Apr 5 19:20:30 2025 by rpki-client