$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: 3bihYh0LggSoBP1I2So9MMWvL6UOOvmj3g5Q7VaQmrc= Subject key identifier: 0E:31:CA:D9:FD:48:27:D2:6C:B4:06:C6:D4:B7:F0:F9:13:0B:60:C8 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 0206 Signing time: Wed 25 Mar 2026 02:04:45 +0000 Manifest this update: Wed 25 Mar 2026 02:04:44 +0000 Manifest next update: Wed 01 Apr 2026 02:04:44 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: +dW+ddU7kO7XRPA7PDiA+jl+qqdEWEQGPVo/YHKCYcY=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: +cbg7WTVhCN77TjlGhzVzZ8b4DdK8TdFQRR1HQcoMJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Mar 25 02:04:44 2026 GMT Not After : Apr 1 02:04:44 2026 GMT Subject: CN=69c342bc-36e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:2a:7c:8a:28:c9:15:81:eb:c3:4c:ad:0d: 41:87:bf:90:96:11:be:48:1e:05:84:44:6e:be:64: e3:1b:40:bf:e3:cb:6b:f3:82:ed:22:09:09:e3:1f: 1a:46:92:02:83:ff:45:9b:47:8e:3e:6e:42:1a:5d: 98:3d:ea:f7:ae:5b:c9:7d:4c:c8:97:83:e9:31:21: 05:ae:57:26:62:0e:f9:4a:05:f5:53:da:37:f6:da: 54:31:86:ad:82:82:f7:9d:dc:56:8e:fd:ef:6a:17: 5f:8d:41:ec:2f:e3:dd:19:34:f9:6d:d1:63:0d:07: 38:52:a2:c0:4b:47:8d:dd:e8:ce:6e:0c:75:1a:46: 76:77:a4:44:94:eb:05:e2:35:9e:52:42:b3:82:11: 76:6e:4a:65:ff:82:c8:30:f8:74:80:36:8b:5d:ab: 08:35:dd:9c:43:fa:5d:80:0f:ee:7f:da:3d:9b:c8: de:58:ab:66:00:04:1e:db:f9:e6:a6:59:5f:c1:ce: 4e:5d:73:39:31:e2:8b:99:dc:f4:e1:fb:a5:76:91: 6c:f3:a0:55:d2:f4:10:c9:a9:b9:70:4e:4f:ee:7a: 91:bd:77:00:22:30:8a:f4:70:86:a5:64:0b:1c:c8: 15:2d:1f:84:c6:67:1a:17:d9:88:37:41:02:25:02: 2e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:31:CA:D9:FD:48:27:D2:6C:B4:06:C6:D4:B7:F0:F9:13:0B:60:C8 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:3b:f3:94:08:8c:ac:ec:9a:62:4a:35:b2:f9:dc:d1:0a:ab: 84:d0:0b:39:7d:40:06:ce:bd:73:4b:cb:c7:82:ad:35:7b:99: 75:83:bd:ef:88:32:21:f0:2e:a6:d2:9b:2f:3e:18:ad:78:77: bc:8c:62:46:35:64:a2:44:d3:b9:5e:27:9e:74:47:ca:29:f8: df:33:76:dd:72:68:18:8c:14:20:b5:b1:74:a5:42:39:73:71: f8:b2:42:f4:66:05:92:c3:8b:bf:09:8b:a8:56:3a:8a:63:c5: 52:39:00:ea:dd:7e:14:e3:44:5f:e3:bf:b3:aa:27:85:28:13: 39:79:60:e3:ee:fc:dd:35:fc:77:17:01:14:70:5b:9b:f8:df: 92:ac:a0:4a:ea:4f:d0:25:03:37:00:7f:78:13:2a:6b:83:9b: a7:9b:4b:63:53:8c:94:35:8b:d7:07:95:c9:8f:64:b2:d8:43: 7b:1c:c9:24:5f:4b:4e:4e:6f:97:24:f9:e8:b9:a7:e2:01:fb: 0b:5a:a6:1a:73:e9:ec:13:1d:52:a0:a0:88:df:59:aa:37:41: 72:0f:98:a4:73:d0:92:c6:13:62:6a:b9:ce:20:3f:1c:10:fc: e9:b5:05:21:d6:38:59:db:00:ef:0b:93:ee:d6:a8:6f:39:cc: 07:d8:f4:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjYwMzI1MDIwNDQ0WhcNMjYwNDAxMDIwNDQ0WjAYMRYwFAYD VQQDEw02OWMzNDJiYy0zNmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCsqfIooyRWB68NMrQ1Bh7+QlhG+SB4FhERuvmTjG0C/48tr84LtIgkJ4x8a RpICg/9Fm0eOPm5CGl2YPer3rlvJfUzIl4PpMSEFrlcmYg75SgX1U9o39tpUMYat goL3ndxWjv3vahdfjUHsL+PdGTT5bdFjDQc4UqLAS0eN3ejObgx1GkZ2d6RElOsF 4jWeUkKzghF2bkpl/4LIMPh0gDaLXasINd2cQ/pdgA/uf9o9m8jeWKtmAAQe2/nm pllfwc5OXXM5MeKLmdz04fuldpFs86BV0vQQyam5cE5P7nqRvXcAIjCK9HCGpWQL HMgVLR+ExmcaF9mIN0ECJQIuYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4xytn9 SCfSbLQGxtS38PkTC2DIMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANzvzlAiMrOyaYko1svnc0QqrhNALOX1ABs69c0vLx4KtNXuZdYO974gyIfAu ptKbLz4YrXh3vIxiRjVkokTTuV4nnnRHyin43zN23XJoGIwUILWxdKVCOXNx+LJC 9GYFksOLvwmLqFY6imPFUjkA6t1+FONEX+O/s6onhSgTOXlg4+783TX8dxcBFHBb m/jfkqygSupP0CUDNwB/eBMqa4Obp5tLY1OMlDWL1weVyY9ksthDexzJJF9LTk5v lyT56Lmn4gH7C1qmGnPp7BMdUqCgiN9ZqjdBcg+YpHPQksYTYmq5ziA/HBD86bUF IdY4WdsA7wuT7taobznMB9j0DQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:25:59 2026 by rpki-client