$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: 07lWGRdb9E1klfpC/TAN/UvpyRxiW9Vl02nteGTKidQ= Subject key identifier: 25:F3:6F:D7:C1:35:03:E2:DC:17:B4:88:E8:CA:02:B6:08:96:2C:DE Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 360B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3551 Signing time: Mon 02 Mar 2026 15:25:17 +0000 Manifest this update: Mon 02 Mar 2026 15:25:17 +0000 Manifest next update: Mon 09 Mar 2026 15:25:17 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: CbgIrVCwVOX6jnAdFWePR4J6C6H17PQ6aRyPbY/PZ6E=) 2: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: d4lTODvUkouxXVPPc6ygUkOl8NqMMqWXrGfdqtm829Y=) 3: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kgR3YHk5XEHcnqdC6D3tAl758+AW2RhczADq1evpAQs=) 4: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: effeuvJ8l3AUehdgLEWM2HD3kmQlAIDMK+QRL0CUES8=) 5: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: ZiJdNAI9D1fhgY+vFrSQSO5HYdO+TKWApMeaHQROAjU=) 6: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: YRii0Zo0Ii/RPFSSaW2DmXwDsKKvPuXOrEkEJHdLhV0=) 7: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: a063z56fhF465bYqQMqQ/VS6+YD1pprAbiKfQKP6c7Q=) 8: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: QN6urrq0/MRPBsyVwW06hj5Hgqfql2xPz8BmJ6v46LI=) 9: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: noBQw864/f72VFx3andbpjd4W9nv+2EjSEATcB2fGbI=) 10: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: mVGA78Zl2U0B3hkzOEy3AAD5vMNBI+xTYAZL5c4Orlk=) 11: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: d6iO9u2ih9RRm7pMd+vjg8OegUnNhTtH4LrmCu5pQ4M=) 12: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: kH5XvLgwYNGVU4SNZtJIVKDH6abpZgZgif4ntA/Uq98=) 13: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: WNcYetTPqeiv/gJdhSaTlqe8oWCCpgSvbxYX4ELwCGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13835 (0x360b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Mar 2 15:25:17 2026 GMT Not After : Mar 9 15:25:17 2026 GMT Subject: CN=69a5abdd-087e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:06:63:a9:52:7e:e4:c0:73:a4:14:9a:d3:ea: 80:6b:df:2a:96:a9:de:36:20:33:10:16:fe:98:9d: 30:96:97:c1:a6:df:05:15:ba:fa:ba:62:dc:37:aa: de:66:39:ad:fd:0a:84:c7:22:a9:d7:ef:9a:c7:61: bf:a8:48:ef:53:46:9d:b0:4d:f0:dc:d5:70:da:19: fb:89:0e:5f:98:2d:d1:72:06:7f:50:a2:93:f2:55: 1c:fa:ad:69:e9:34:24:ed:32:b1:f2:c7:da:fe:d0: f7:5d:cc:6c:af:86:df:c6:49:43:0a:87:e6:f3:97: 08:e7:4c:fc:5d:1d:0c:fe:da:00:56:3b:89:c4:de: a4:8a:66:d4:80:8f:62:65:89:81:13:e2:be:04:2a: 3f:96:8a:be:5c:12:24:9c:d4:ad:3c:c6:eb:e7:3c: 8b:31:6e:95:cb:a6:98:88:66:15:d3:8d:c2:5a:11: d9:6f:a8:46:0c:c1:e3:37:44:ed:be:ec:60:07:41: 67:03:0e:0a:1a:0c:99:4e:b1:21:43:d1:60:f8:2d: 5a:10:3f:39:0d:b6:ac:4a:d4:e1:1f:7a:9a:73:bd: 21:42:03:bf:78:78:9d:78:8d:8d:10:c4:10:f1:50: 52:d2:c2:52:47:86:95:d1:b1:3e:99:34:18:60:7a: 11:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F3:6F:D7:C1:35:03:E2:DC:17:B4:88:E8:CA:02:B6:08:96:2C:DE X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:f8:11:be:47:70:8a:fb:f2:9c:f5:e8:ed:24:f8:42:5b:d5: 6c:7c:61:01:38:23:8b:8b:5b:21:e6:9a:94:3d:97:8f:da:72: 85:e8:d1:cd:84:15:c8:c0:f7:04:7a:ea:1f:fe:48:ac:7e:84: 5d:4b:96:84:61:de:86:10:2a:97:d2:18:96:69:33:67:e7:c0: e2:4a:b0:b6:f1:b2:73:eb:5b:6d:a8:89:9a:35:e6:7b:04:2c: 42:a7:ad:4c:7a:0d:d4:a2:cd:69:98:6c:3e:8c:17:9e:64:24: 8f:8e:e2:aa:9c:f8:9e:a3:36:1c:e3:1f:a7:20:69:91:07:01: 78:5c:f5:88:5a:6a:f2:97:f5:25:bb:3f:ac:77:9c:9c:3a:95: a7:ff:f5:c8:bb:ae:23:33:2d:46:80:19:d5:52:21:d9:a1:7b: 50:ce:23:a3:97:95:7c:d1:63:d3:40:41:ab:c9:9c:50:84:b0: eb:82:a2:0e:1e:e7:60:1f:f9:27:b1:04:4e:94:a2:1f:25:3e: e6:38:b0:0f:cb:ae:c5:89:20:ed:c4:79:7e:05:d5:e8:19:89: fc:75:36:9a:5d:7c:c4:99:e4:76:68:e1:99:cf:fc:fd:74:77: 87:ba:b1:f4:a8:85:56:d2:cd:ae:31:b4:06:1a:20:27:67:d2: db:7c:eb:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjYwMzAyMTUyNTE3WhcNMjYwMzA5MTUyNTE3WjAYMRYwFAYD VQQDEw02OWE1YWJkZC0wODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAZjqVJ+5MBzpBSa0+qAa98qlqneNiAzEBb+mJ0wlpfBpt8FFbr6umLcN6re Zjmt/QqExyKp1++ax2G/qEjvU0adsE3w3NVw2hn7iQ5fmC3RcgZ/UKKT8lUc+q1p 6TQk7TKx8sfa/tD3Xcxsr4bfxklDCofm85cI50z8XR0M/toAVjuJxN6kimbUgI9i ZYmBE+K+BCo/loq+XBIknNStPMbr5zyLMW6Vy6aYiGYV043CWhHZb6hGDMHjN0Tt vuxgB0FnAw4KGgyZTrEhQ9Fg+C1aED85DbasStThH3qac70hQgO/eHideI2NEMQQ 8VBS0sJSR4aV0bE+mTQYYHoRZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCXzb9fB NQPi3Be0iOjKArYIlizeMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxPgRvkdwivvynPXo7ST4QlvVbHxhATgji4tbIeaalD2Xj9pyhejRzYQVyMD3 BHrqH/5IrH6EXUuWhGHehhAql9IYlmkzZ+fA4kqwtvGyc+tbbaiJmjXmewQsQqet THoN1KLNaZhsPowXnmQkj47iqpz4nqM2HOMfpyBpkQcBeFz1iFpq8pf1Jbs/rHec nDqVp//1yLuuIzMtRoAZ1VIh2aF7UM4jo5eVfNFj00BBq8mcUISw64KiDh7nYB/5 J7EETpSiHyU+5jiwD8uuxYkg7cR5fgXV6BmJ/HU2ml18xJnkdmjhmc/8/XR3h7qx 9KiFVtLNrjG0BhogJ2fS23zr5g== -----END CERTIFICATE-----Generated at Mon Mar 2 18:51:17 2026 by rpki-client