$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: AylP9Jdj0KvyVtie+6W+FJY70UZgPwsMCTskf63ARAI= Subject key identifier: BD:92:39:A4:C4:67:9F:6C:79:16:A2:69:A5:5E:53:EA:DD:EC:C2:F0 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 020C Signing time: Sun 05 Apr 2026 02:12:09 +0000 Manifest this update: Sun 05 Apr 2026 02:12:09 +0000 Manifest next update: Sun 12 Apr 2026 02:12:09 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: Y5THQZRSAtpIo1RKiNd7EW9sFX1Dbp5fRLi/8YRWNiE=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: +cbg7WTVhCN77TjlGhzVzZ8b4DdK8TdFQRR1HQcoMJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Apr 5 02:12:09 2026 GMT Not After : Apr 12 02:12:09 2026 GMT Subject: CN=69d1c4f9-62e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:10:90:66:d2:8d:74:1f:d0:9c:7e:19:63: 60:52:8f:ee:57:fc:51:74:87:03:00:6b:d9:b9:18: 5e:5c:51:78:a8:47:0f:88:f1:3e:e9:94:df:15:82: a9:85:2d:32:75:b6:40:54:7c:32:31:8c:71:81:c3: 0a:16:b8:21:ae:c6:30:52:f3:bf:03:65:d4:7d:2d: dc:e0:b9:db:b8:ee:27:1b:0b:2b:5d:d6:27:84:f2: e9:8e:6d:c1:d5:02:45:9d:a7:3a:69:ac:5f:11:3e: af:d4:c2:0f:89:ab:16:40:f9:57:d0:3b:dc:38:7b: 76:78:cd:7d:a3:ec:88:b0:e8:97:c9:b4:01:9f:62: 20:3d:fd:29:8d:55:3e:58:0d:75:87:57:ec:fa:04: 03:bf:1f:ff:f8:9a:3e:06:e5:af:75:91:e1:32:94: 97:2a:1c:fe:ed:72:67:01:2c:59:55:88:d1:46:20: b4:d7:d0:77:cf:d0:c9:a7:0c:03:7c:76:d2:1e:b1: 33:18:f8:0f:62:86:eb:a8:f0:91:58:22:0b:b1:63: 3f:95:0f:91:a6:d2:18:49:83:74:db:33:41:2c:d1: 06:71:da:95:98:8d:cc:a7:df:59:1c:db:da:26:4f: ce:1c:2e:0f:58:e0:f1:06:25:81:5d:41:5b:70:a8: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:92:39:A4:C4:67:9F:6C:79:16:A2:69:A5:5E:53:EA:DD:EC:C2:F0 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f2:32:48:b4:9f:1f:52:d5:9b:0b:e1:a8:0e:4e:e1:f8:32: b7:f1:3a:19:34:78:a4:5a:51:15:50:56:42:1b:19:68:1e:19: 44:25:73:02:1e:af:e5:f0:1b:84:34:8a:78:35:bd:8f:22:27: d7:67:02:96:b1:15:28:1b:bb:26:f1:d4:0b:f0:55:8d:ca:62: ea:6f:6c:c6:15:a2:e2:39:bc:45:a2:79:4c:e6:31:e3:f4:cc: 7f:89:fd:70:6e:8a:36:f1:57:5f:5c:e0:a8:c6:32:ca:71:3b: 2f:69:df:ad:b3:23:0e:d9:57:1e:5e:25:5b:2c:9b:d3:d7:75: 46:3e:cd:32:06:69:cd:97:8d:d1:59:72:a8:d1:0e:ac:84:f6: e6:40:b2:7c:63:82:1e:bf:f9:1b:37:f3:5f:7f:42:7e:d9:51: d9:87:78:6d:96:1a:49:b5:a7:06:e3:8e:32:5c:ee:ac:53:d9: b3:05:6f:90:55:f9:d1:df:1c:c4:21:fb:04:16:06:2f:4f:14: fe:de:72:2f:99:4a:19:8a:7d:71:12:1a:f5:58:cd:d4:b0:ba: ba:f2:51:b0:f6:f6:0a:85:6a:72:76:c8:21:7a:11:af:b7:91: 0c:2d:aa:0d:98:d0:49:f5:88:56:2e:ac:75:5c:32:95:44:46: 30:ac:7d:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjYwNDA1MDIxMjA5WhcNMjYwNDEyMDIxMjA5WjAYMRYwFAYD VQQDEw02OWQxYzRmOS02MmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvp0QkGbSjXQf0Jx+GWNgUo/uV/xRdIcDAGvZuRheXFF4qEcPiPE+6ZTfFYKp hS0ydbZAVHwyMYxxgcMKFrghrsYwUvO/A2XUfS3c4LnbuO4nGwsrXdYnhPLpjm3B 1QJFnac6aaxfET6v1MIPiasWQPlX0DvcOHt2eM19o+yIsOiXybQBn2IgPf0pjVU+ WA11h1fs+gQDvx//+Jo+BuWvdZHhMpSXKhz+7XJnASxZVYjRRiC019B3z9DJpwwD fHbSHrEzGPgPYobrqPCRWCILsWM/lQ+RptIYSYN02zNBLNEGcdqVmI3Mp99ZHNva Jk/OHC4PWODxBiWBXUFbcKj9hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2SOaTE Z59seRaiaaVeU+rd7MLwMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg/IySLSfH1LVmwvhqA5O4fgyt/E6GTR4pFpRFVBWQhsZaB4ZRCVzAh6v5fAb hDSKeDW9jyIn12cClrEVKBu7JvHUC/BVjcpi6m9sxhWi4jm8RaJ5TOYx4/TMf4n9 cG6KNvFXX1zgqMYyynE7L2nfrbMjDtlXHl4lWyyb09d1Rj7NMgZpzZeN0VlyqNEO rIT25kCyfGOCHr/5GzfzX39CftlR2Yd4bZYaSbWnBuOOMlzurFPZswVvkFX50d8c xCH7BBYGL08U/t5yL5lKGYp9cRIa9VjN1LC6uvJRsPb2CoVqcnbIIXoRr7eRDC2q DZjQSfWIVi6sdVwylURGMKx9KQ== -----END CERTIFICATE-----Generated at Mon Apr 6 15:28:05 2026 by rpki-client