$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: sXOZzKNLPIwBIaTGx/Bj/jUiU3iGwwfJ1TCYV1CFDAM= Subject key identifier: 7C:3A:03:0F:00:93:9C:6A:47:B7:BD:FB:FE:10:40:8D:DD:37:50:E3 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 021F Signing time: Wed 13 May 2026 02:32:27 +0000 Manifest this update: Wed 13 May 2026 02:32:27 +0000 Manifest next update: Wed 20 May 2026 02:32:27 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: bd+lpg8wI4tFbytAcJaIbzNCwUNhC5+PmMxadzugpPc=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: +cbg7WTVhCN77TjlGhzVzZ8b4DdK8TdFQRR1HQcoMJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:32:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: May 13 02:32:27 2026 GMT Not After : May 20 02:32:27 2026 GMT Subject: CN=6a03e2bb-1f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:89:4e:a4:ab:1d:4a:de:42:29:d1:27:9d:ac: ce:95:84:fb:67:5c:44:01:ab:4a:63:eb:c6:a9:20: 2f:fe:41:c6:16:cc:f2:38:de:8c:fe:ad:9e:ca:cd: d9:ec:f7:f8:05:d3:d5:b4:39:ca:14:30:ae:30:7f: 74:ec:40:da:75:cd:e8:17:8a:9a:58:3a:a8:88:39: bf:78:f0:e9:75:e6:12:88:58:08:43:d7:1e:f6:77: f4:5a:f6:eb:ca:39:4f:08:0f:eb:96:2c:92:61:95: f8:ff:0d:dd:0a:9c:df:f0:a1:c1:14:69:8d:e7:f4: b6:fe:23:62:be:fc:83:38:fe:3b:8b:0e:84:1c:4d: e8:8d:bc:0f:94:c2:51:6e:10:e2:84:62:3e:05:a3: 06:8b:ee:ed:25:a5:71:16:91:d8:97:dd:29:3c:ed: 1e:b1:a0:15:77:c0:a9:7a:82:08:05:62:17:da:bd: 74:8c:57:50:d8:b4:f4:68:e7:bb:39:d1:a9:41:97: ec:d1:f0:f4:33:a9:c0:fb:06:a9:c9:06:65:f3:81: c6:9a:9e:75:48:72:41:ed:47:d7:e8:44:71:10:a1: d2:b5:6e:08:6a:f9:ae:1d:eb:2d:f7:13:7a:c2:cc: 84:a5:cb:76:14:d9:89:1d:1c:54:8a:e4:26:00:02: 0b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3A:03:0F:00:93:9C:6A:47:B7:BD:FB:FE:10:40:8D:DD:37:50:E3 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:60:e8:5d:c2:9d:2f:7e:31:7c:7c:bb:34:f4:53:18:90:03: 59:64:ac:cb:7b:14:36:63:53:a3:b7:7f:38:61:6a:69:12:f0: e2:60:34:e7:c1:0a:96:c8:6f:2b:c2:2e:0f:65:c5:43:60:62: 59:a9:f4:84:5f:c0:97:60:2a:ac:d1:75:3d:54:ed:f5:cb:bd: d9:b0:6b:bc:ea:7e:2d:51:52:27:48:f6:f9:b3:1b:30:8a:79: ca:19:a7:96:35:e0:f0:73:87:ee:eb:05:3f:31:71:0b:a5:de: dd:8d:4b:cb:e7:97:e3:a4:5a:b3:cf:b0:33:4a:c3:2f:d8:95: 16:2d:92:14:7d:49:20:88:27:82:a0:4a:20:d6:fe:a8:8c:a8: 55:fa:d4:4e:b6:ab:0a:82:1c:63:39:4a:d9:5b:eb:60:80:a6: 74:b4:48:8a:85:46:ab:4a:76:ac:8f:45:44:96:a9:71:34:ec: 92:a3:dc:cc:dc:d3:cc:9c:12:51:6e:b7:95:69:5a:65:e5:e9: 66:d7:23:f1:bc:dc:54:54:08:20:f6:2f:5a:26:c0:96:21:a6: b6:d1:3c:54:c4:00:3f:d5:d3:43:4f:6e:5c:7c:25:72:8f:a7: 70:b6:d0:32:69:87:c1:83:2e:ff:97:eb:a9:b7:18:aa:0a:3e: 05:a6:8b:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjYwNTEzMDIzMjI3WhcNMjYwNTIwMDIzMjI3WjAYMRYwFAYD VQQDEw02YTAzZTJiYi0xZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4lOpKsdSt5CKdEnnazOlYT7Z1xEAatKY+vGqSAv/kHGFszyON6M/q2eys3Z 7Pf4BdPVtDnKFDCuMH907EDadc3oF4qaWDqoiDm/ePDpdeYSiFgIQ9ce9nf0Wvbr yjlPCA/rliySYZX4/w3dCpzf8KHBFGmN5/S2/iNivvyDOP47iw6EHE3ojbwPlMJR bhDihGI+BaMGi+7tJaVxFpHYl90pPO0esaAVd8CpeoIIBWIX2r10jFdQ2LT0aOe7 OdGpQZfs0fD0M6nA+wapyQZl84HGmp51SHJB7UfX6ERxEKHStW4IavmuHest9xN6 wsyEpct2FNmJHRxUiuQmAAILawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHw6Aw8A k5xqR7e9+/4QQI3dN1DjMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW2DoXcKdL34xfHy7NPRTGJADWWSsy3sUNmNTo7d/OGFqaRLw4mA058EKlshv K8IuD2XFQ2BiWan0hF/Al2AqrNF1PVTt9cu92bBrvOp+LVFSJ0j2+bMbMIp5yhmn ljXg8HOH7usFPzFxC6Xe3Y1Ly+eX46Ras8+wM0rDL9iVFi2SFH1JIIgngqBKINb+ qIyoVfrUTrarCoIcYzlK2VvrYICmdLRIioVGq0p2rI9FRJapcTTskqPczNzTzJwS UW63lWlaZeXpZtcj8bzcVFQIIPYvWibAliGmttE8VMQAP9XTQ09uXHwlco+ncLbQ MmmHwYMu/5frqbcYqgo+BaaL8Q== -----END CERTIFICATE-----Generated at Wed May 13 07:29:42 2026 by rpki-client