$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: gjjTQHqURB6kXBttrq0IfDD5GVMhc5lo10mPkCrfQ7M= Subject key identifier: 0E:18:52:FC:01:B5:F6:28:D4:B1:65:61:75:08:51:B8:10:51:DE:AD Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 0229 Signing time: Mon 01 Jun 2026 03:07:13 +0000 Manifest this update: Mon 01 Jun 2026 03:07:12 +0000 Manifest next update: Mon 08 Jun 2026 03:07:12 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: 4jAuKYYgNhy3eSBzPzZAYBA6plAchfFtT4+4Nan7H7A=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: +cbg7WTVhCN77TjlGhzVzZ8b4DdK8TdFQRR1HQcoMJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Jun 1 03:07:12 2026 GMT Not After : Jun 8 03:07:12 2026 GMT Subject: CN=6a1cf761-bc64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5f:b6:39:3c:44:bf:cc:28:d9:91:0d:48:78: e6:9c:d6:bc:69:e6:9e:0a:92:67:b0:cd:67:55:da: 37:d3:92:61:17:79:41:80:93:f1:78:fd:05:f8:7a: 2f:93:90:4a:be:de:a1:15:cf:d3:3b:c1:17:cc:d7: 9e:b2:bd:ee:b1:5c:4f:49:22:b3:48:74:e5:b7:96: c1:ed:01:61:7d:3f:df:65:fe:ba:ed:e0:0c:c2:0e: a4:41:59:bc:e6:f6:d7:70:e1:2c:78:08:16:bb:73: b4:42:10:bb:e5:3a:2e:37:38:93:16:a2:0a:90:79: 22:49:79:57:b9:aa:c2:cd:a0:51:ac:00:02:d6:b7: 9c:1b:65:ca:6f:40:cf:3c:60:76:17:27:98:50:aa: db:10:1e:3a:f9:78:54:3b:68:9d:53:7d:1a:f6:80: 64:5e:ff:30:59:5b:bb:04:66:1e:6f:73:d9:5d:ea: c0:6e:cd:c3:69:35:30:7d:0d:44:f2:f2:2c:9b:d2: f3:46:b9:a6:e5:f5:c9:aa:af:a4:56:fe:70:c9:a9: 8e:ef:b4:d9:0a:f0:d2:4c:15:9d:82:bd:45:a0:41: 3e:26:49:c2:ee:73:bf:9f:59:f5:cd:82:f1:3a:61: 6f:5b:e8:5a:50:cc:6b:9a:f8:34:b3:9c:8d:23:af: fc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:18:52:FC:01:B5:F6:28:D4:B1:65:61:75:08:51:B8:10:51:DE:AD X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:1f:ef:c1:1a:3a:ce:b6:0c:73:32:0d:bb:4c:3f:68:cb:21: b2:64:90:ed:3d:df:2e:3e:74:9b:ee:f4:ad:ba:5e:2e:4d:91: ab:50:34:54:14:e1:5a:30:62:96:fc:46:15:66:0b:7d:e4:56: 26:d8:7b:50:bf:53:91:04:92:12:0e:3a:d9:f3:2c:b6:aa:93: 8e:05:6f:0d:da:79:c7:58:4d:24:d8:98:2f:da:ab:f9:d7:81: e1:19:74:c2:26:ba:aa:d0:a1:73:3d:e1:5b:67:97:f5:0b:d6: 1d:06:53:bc:d8:42:ff:05:36:17:75:6e:19:cf:c8:f1:25:51: 63:a8:ec:bf:77:a9:02:82:f2:53:8c:15:a8:23:4a:93:d7:8d: eb:9b:d3:d5:ea:dd:7b:ea:e5:48:b4:e6:62:64:c2:f7:ab:06: f5:09:ce:3c:44:31:d8:b5:f8:e4:20:70:ea:99:18:f5:d8:e0: 63:24:c2:5f:16:50:2e:f9:ff:c4:72:70:d8:3c:dd:55:43:d9: 47:95:a0:5a:b3:14:91:c4:50:64:e7:98:37:d1:37:3a:8c:41: 4c:b1:bc:72:47:ed:67:ba:c5:32:43:89:58:a7:18:ed:d5:23: 72:c3:4f:b8:be:1d:a0:f9:7b:fc:4b:be:9a:08:1a:aa:46:ab: d3:42:bc:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjYwNjAxMDMwNzEyWhcNMjYwNjA4MDMwNzEyWjAYMRYwFAYD VQQDEw02YTFjZjc2MS1iYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnV+2OTxEv8wo2ZENSHjmnNa8aeaeCpJnsM1nVdo305JhF3lBgJPxeP0F+Hov k5BKvt6hFc/TO8EXzNeesr3usVxPSSKzSHTlt5bB7QFhfT/fZf667eAMwg6kQVm8 5vbXcOEseAgWu3O0QhC75TouNziTFqIKkHkiSXlXuarCzaBRrAAC1recG2XKb0DP PGB2FyeYUKrbEB46+XhUO2idU30a9oBkXv8wWVu7BGYeb3PZXerAbs3DaTUwfQ1E 8vIsm9LzRrmm5fXJqq+kVv5wyamO77TZCvDSTBWdgr1FoEE+JknC7nO/n1n1zYLx OmFvW+haUMxrmvg0s5yNI6/8LwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4YUvwB tfYo1LFlYXUIUbgQUd6tMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvh/vwRo6zrYMczINu0w/aMshsmSQ7T3fLj50m+70rbpeLk2Rq1A0VBThWjBi lvxGFWYLfeRWJth7UL9TkQSSEg462fMstqqTjgVvDdp5x1hNJNiYL9qr+deB4Rl0 wia6qtChcz3hW2eX9QvWHQZTvNhC/wU2F3VuGc/I8SVRY6jsv3epAoLyU4wVqCNK k9eN65vT1erde+rlSLTmYmTC96sG9QnOPEQx2LX45CBw6pkY9djgYyTCXxZQLvn/ xHJw2DzdVUPZR5WgWrMUkcRQZOeYN9E3OoxBTLG8ckftZ7rFMkOJWKcY7dUjcsNP uL4doPl7/Eu+mggaqkar00K8Sg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:40:52 2026 by rpki-client