$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: 8aKvP03116fC7RMsZ0leRQN17JC/0gAlDpZ1plEaiP4= Subject key identifier: C8:CA:DE:8D:F0:6A:66:B1:A9:3D:CB:C2:02:ED:46:A7:27:37:6A:08 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3568 Signing time: Thu 16 Apr 2026 15:18:05 +0000 Manifest this update: Thu 16 Apr 2026 15:18:04 +0000 Manifest next update: Thu 23 Apr 2026 15:18:04 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: YB/GzxriTYL/7uZsqhUTjy9rd2nO5UcWzNfDr8CT/6c=) 2: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: a063z56fhF465bYqQMqQ/VS6+YD1pprAbiKfQKP6c7Q=) 3: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: noBQw864/f72VFx3andbpjd4W9nv+2EjSEATcB2fGbI=) 4: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: kgR3YHk5XEHcnqdC6D3tAl758+AW2RhczADq1evpAQs=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: d4lTODvUkouxXVPPc6ygUkOl8NqMMqWXrGfdqtm829Y=) 6: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: WNcYetTPqeiv/gJdhSaTlqe8oWCCpgSvbxYX4ELwCGg=) 7: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: effeuvJ8l3AUehdgLEWM2HD3kmQlAIDMK+QRL0CUES8=) 8: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: ZiJdNAI9D1fhgY+vFrSQSO5HYdO+TKWApMeaHQROAjU=) 9: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: YRii0Zo0Ii/RPFSSaW2DmXwDsKKvPuXOrEkEJHdLhV0=) 10: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: d6iO9u2ih9RRm7pMd+vjg8OegUnNhTtH4LrmCu5pQ4M=) 11: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: mVGA78Zl2U0B3hkzOEy3AAD5vMNBI+xTYAZL5c4Orlk=) 12: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: QN6urrq0/MRPBsyVwW06hj5Hgqfql2xPz8BmJ6v46LI=) 13: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: kH5XvLgwYNGVU4SNZtJIVKDH6abpZgZgif4ntA/Uq98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13858 (0x3622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Apr 16 15:18:04 2026 GMT Not After : Apr 23 15:18:04 2026 GMT Subject: CN=69e0fdac-1ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:cb:d8:1c:69:5a:8c:bf:63:26:65:f8:a5: da:1f:9e:77:28:5f:4e:b6:02:cf:1d:db:31:10:1a: 5a:ce:a2:0b:db:7a:42:f8:a1:a8:8f:11:76:bc:bb: c8:f4:2a:c8:3b:9b:a1:83:e1:68:02:ef:13:b6:cf: 75:07:4e:1f:41:ee:f1:6a:6e:84:62:55:c7:6d:40: c5:f5:bf:5d:05:d3:45:bd:cb:49:0a:30:5d:9a:fa: 3d:c7:66:9e:5b:a1:f7:1a:60:c0:24:b9:b2:d7:f0: e6:93:a2:08:e7:06:48:cc:ac:5c:62:c9:b0:fc:1e: f8:16:93:08:a2:d8:52:b2:d8:ea:fe:80:7a:bf:aa: b4:0c:bf:ea:03:5a:e9:39:1e:7d:dd:af:eb:0a:e4: 23:ae:c6:f7:e8:ba:2d:91:ce:67:89:35:1d:63:76: db:53:3a:19:eb:d4:90:34:14:f6:20:05:26:9f:c3: c1:30:49:74:93:a4:e7:a4:81:b7:82:0c:64:c8:e9: 58:06:b1:56:ae:6f:41:de:3b:e6:1a:b0:30:b4:06: 6c:9c:7c:34:92:a4:d0:b6:2f:0c:c5:83:52:e0:ad: 55:72:69:e4:c3:21:08:17:ff:9f:fc:b9:c6:93:c7: c4:81:49:31:04:6b:f2:10:97:5c:3e:b1:53:16:e9: 17:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CA:DE:8D:F0:6A:66:B1:A9:3D:CB:C2:02:ED:46:A7:27:37:6A:08 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e5:21:85:0c:0d:59:28:20:80:67:b3:26:23:8b:42:b9:a3:4b: d0:fc:e8:17:35:08:c7:51:5d:dc:1e:b7:82:86:bb:e0:78:18: 89:ed:8b:e2:75:8e:09:ab:1f:d1:e2:04:4f:95:65:5d:60:ab: 8e:13:ae:66:8f:62:16:4d:c6:d1:d9:77:0d:32:ee:fd:56:f3: 98:19:ab:ad:f4:91:75:5a:8c:92:9c:3f:5b:96:da:93:33:d3: 8c:72:f4:6c:f7:3c:38:be:99:85:b1:2c:3b:09:9a:47:e4:cd: 98:e4:4b:7b:ea:a3:ec:6d:b6:fb:6b:28:b5:d5:7d:ed:69:d5: 71:e5:db:e0:1c:39:9c:c4:de:bb:62:bf:d8:48:17:06:e6:a8: a8:9f:46:f5:85:3d:5d:00:82:3a:a1:65:7e:fb:3d:11:24:21: 2f:bc:e3:d9:90:8e:a5:93:16:ca:fc:62:0c:b2:8f:d5:9a:0a: 3f:a8:5e:dd:37:0d:60:e8:38:4a:c8:eb:fa:94:99:9e:96:bf: 9f:32:3a:3d:c6:70:40:84:c8:29:a4:d3:7c:b7:93:1e:72:0a: 68:c7:ed:6c:fd:7d:e0:7b:05:fa:6f:f1:0e:a3:52:4b:04:45: cb:b6:e1:0d:81:c4:41:db:9d:34:00:e2:67:a0:e6:8b:7b:dd: 72:17:98:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjYwNDE2MTUxODA0WhcNMjYwNDIzMTUxODA0WjAYMRYwFAYD VQQDEw02OWUwZmRhYy0xYWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ3L2BxpWoy/YyZl+KXaH553KF9OtgLPHdsxEBpazqIL23pC+KGojxF2vLvI 9CrIO5uhg+FoAu8Tts91B04fQe7xam6EYlXHbUDF9b9dBdNFvctJCjBdmvo9x2ae W6H3GmDAJLmy1/Dmk6II5wZIzKxcYsmw/B74FpMIothSstjq/oB6v6q0DL/qA1rp OR593a/rCuQjrsb36Lotkc5niTUdY3bbUzoZ69SQNBT2IAUmn8PBMEl0k6TnpIG3 ggxkyOlYBrFWrm9B3jvmGrAwtAZsnHw0kqTQti8MxYNS4K1VcmnkwyEIF/+f/LnG k8fEgUkxBGvyEJdcPrFTFukXpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMjK3o3w amaxqT3LwgLtRqcnN2oIMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA5SGFDA1ZKCCAZ7MmI4tCuaNL0PzoFzUIx1Fd3B63goa74HgYie2L4nWOCasf 0eIET5VlXWCrjhOuZo9iFk3G0dl3DTLu/VbzmBmrrfSRdVqMkpw/W5bakzPTjHL0 bPc8OL6ZhbEsOwmaR+TNmORLe+qj7G22+2sotdV97WnVceXb4Bw5nMTeu2K/2EgX BuaoqJ9G9YU9XQCCOqFlfvs9ESQhL7zj2ZCOpZMWyvxiDLKP1ZoKP6he3TcNYOg4 Ssjr+pSZnpa/nzI6PcZwQITIKaTTfLeTHnIKaMftbP194HsF+m/xDqNSSwRFy7bh DYHEQdudNADiZ6Dmi3vdcheYHA== -----END CERTIFICATE-----Generated at Fri Apr 17 20:43:26 2026 by rpki-client