$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: h3/mhJAYg9iQw7q3Po0Onj1rgDY/yen8AJz9x739y28= Subject key identifier: 8B:7A:43:67:8E:07:56:05:AD:8E:3B:E3:B5:27:B7:EA:06:CA:84:84 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 355D Signing time: Thu 26 Mar 2026 15:20:35 +0000 Manifest this update: Thu 26 Mar 2026 15:20:34 +0000 Manifest next update: Thu 02 Apr 2026 15:20:34 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: CY0NF5H7ntmhw+/FPvu/6aEd9nkYywkYTK98RZVhN7E=) 2: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: d4lTODvUkouxXVPPc6ygUkOl8NqMMqWXrGfdqtm829Y=) 3: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: YRii0Zo0Ii/RPFSSaW2DmXwDsKKvPuXOrEkEJHdLhV0=) 4: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: ZiJdNAI9D1fhgY+vFrSQSO5HYdO+TKWApMeaHQROAjU=) 5: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: WNcYetTPqeiv/gJdhSaTlqe8oWCCpgSvbxYX4ELwCGg=) 6: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: kH5XvLgwYNGVU4SNZtJIVKDH6abpZgZgif4ntA/Uq98=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: a063z56fhF465bYqQMqQ/VS6+YD1pprAbiKfQKP6c7Q=) 8: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: d6iO9u2ih9RRm7pMd+vjg8OegUnNhTtH4LrmCu5pQ4M=) 9: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: mVGA78Zl2U0B3hkzOEy3AAD5vMNBI+xTYAZL5c4Orlk=) 10: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: noBQw864/f72VFx3andbpjd4W9nv+2EjSEATcB2fGbI=) 11: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kgR3YHk5XEHcnqdC6D3tAl758+AW2RhczADq1evpAQs=) 12: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: QN6urrq0/MRPBsyVwW06hj5Hgqfql2xPz8BmJ6v46LI=) 13: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: effeuvJ8l3AUehdgLEWM2HD3kmQlAIDMK+QRL0CUES8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13847 (0x3617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Mar 26 15:20:34 2026 GMT Not After : Apr 2 15:20:34 2026 GMT Subject: CN=69c54ec2-abc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:b0:4e:d7:12:05:40:d2:61:1e:cf:3c:96: cf:73:ad:6f:3f:fe:e3:3b:70:88:25:c9:75:13:cc: 26:64:ae:10:b4:06:cc:60:72:f8:96:d6:25:01:a3: 39:2f:7f:3d:89:e8:f5:4b:10:7c:ee:f4:71:0c:9e: ec:d2:10:7c:2a:3d:e6:09:15:49:6c:e8:cd:5c:bc: 8d:8a:03:3b:4c:08:6c:9e:c4:8b:45:4c:39:8d:41: a1:11:5c:f8:01:81:7e:4f:c3:be:25:3c:76:00:5a: c4:9e:cb:9f:d1:27:56:fe:41:0d:2b:d1:b7:2d:d4: 23:dc:5c:57:9c:c1:82:0e:23:06:8f:81:ba:f2:ad: 52:cd:b9:82:f7:b5:40:44:79:5b:3d:5d:b1:35:75: 79:ee:88:57:45:c8:90:79:e8:63:8b:5a:95:7a:d7: 92:a1:90:b3:f9:1b:21:c8:2f:c8:8a:da:ff:34:7c: 64:b1:39:39:e1:82:67:4d:35:c8:10:b9:26:8e:95: 46:ca:a3:91:bd:94:3f:45:e8:cb:87:ad:ec:57:fe: f1:f5:17:b4:14:61:19:56:76:19:99:43:49:12:1a: d4:cd:3f:bc:38:2d:28:9c:73:df:9d:25:24:96:74: 1b:c7:b6:86:70:75:4c:70:f1:48:7b:e3:c1:5e:84: 6e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7A:43:67:8E:07:56:05:AD:8E:3B:E3:B5:27:B7:EA:06:CA:84:84 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:53:62:76:71:6d:80:18:e7:79:1e:7e:fd:9d:a7:c7:19:6a: 0c:81:49:08:59:30:d9:70:da:c8:71:40:d8:e6:39:ce:1f:81: b3:33:d2:c5:b0:1f:4d:fd:ba:ed:df:c1:ab:34:81:a8:ab:81: c4:b8:95:78:5d:da:6e:f1:82:e5:e9:a7:43:af:b0:58:dd:35: ae:d1:d1:73:a7:73:aa:28:d1:c9:d8:64:d2:f0:8a:27:cb:ef: 1c:e0:5b:e7:82:53:71:6f:b0:ad:cf:ed:11:55:63:ab:99:5e: 96:e0:d5:28:2f:f5:e0:db:fb:31:c8:2f:0d:c8:ee:4c:7a:f5: cf:47:a7:ae:8b:01:e0:d8:24:32:d7:e3:1a:d0:8d:35:3b:71: 67:8f:7e:0f:44:1f:c6:73:91:d2:a4:e7:ca:8b:67:57:09:63: db:8f:d0:89:8a:cf:6d:eb:92:ad:a7:74:c2:12:cf:85:b0:5f: c1:f2:ce:ef:85:86:4e:03:f8:f2:bb:a5:dd:68:29:5f:ca:d8: 65:44:1c:5e:47:9a:21:51:f3:c6:c8:a8:69:11:3f:59:30:c8: ce:f7:b4:0b:56:84:b8:00:07:03:b9:30:9e:52:6f:0f:be:d7: d8:57:90:04:0e:c6:7e:1f:23:fc:54:7b:9a:f9:4f:da:0e:9d: c4:0e:05:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjYwMzI2MTUyMDM0WhcNMjYwNDAyMTUyMDM0WjAYMRYwFAYD VQQDEw02OWM1NGVjMi1hYmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnSwTtcSBUDSYR7PPJbPc61vP/7jO3CIJcl1E8wmZK4QtAbMYHL4ltYlAaM5 L389iej1SxB87vRxDJ7s0hB8Kj3mCRVJbOjNXLyNigM7TAhsnsSLRUw5jUGhEVz4 AYF+T8O+JTx2AFrEnsuf0SdW/kENK9G3LdQj3FxXnMGCDiMGj4G68q1SzbmC97VA RHlbPV2xNXV57ohXRciQeehji1qVeteSoZCz+RshyC/Iitr/NHxksTk54YJnTTXI ELkmjpVGyqORvZQ/RejLh63sV/7x9Re0FGEZVnYZmUNJEhrUzT+8OC0onHPfnSUk lnQbx7aGcHVMcPFIe+PBXoRuCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIt6Q2eO B1YFrY4747Unt+oGyoSEMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3VNidnFtgBjneR5+/Z2nxxlqDIFJCFkw2XDayHFA2OY5zh+BszPSxbAfTf26 7d/BqzSBqKuBxLiVeF3abvGC5emnQ6+wWN01rtHRc6dzqijRydhk0vCKJ8vvHOBb 54JTcW+wrc/tEVVjq5leluDVKC/14Nv7McgvDcjuTHr1z0enrosB4NgkMtfjGtCN NTtxZ49+D0QfxnOR0qTnyotnVwlj24/QiYrPbeuSrad0whLPhbBfwfLO74WGTgP4 8rul3WgpX8rYZUQcXkeaIVHzxsioaRE/WTDIzve0C1aEuAAHA7kwnlJvD77X2FeQ BA7Gfh8j/FR7mvlP2g6dxA4F5Q== -----END CERTIFICATE-----Generated at Thu Mar 26 21:18:07 2026 by rpki-client