$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: 9jVhc8E0kKH34YnaB/YSNIIT14fzSaaW3HenKqGWXOA= Subject key identifier: 3B:9E:D2:D3:94:2F:EE:01:4D:6C:68:27:D6:12:11:E7:C2:9B:04:62 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 022E Signing time: Sat 13 Jun 2026 02:20:10 +0000 Manifest this update: Sat 13 Jun 2026 02:20:09 +0000 Manifest next update: Sat 20 Jun 2026 02:20:09 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: MZjgl+cZwgZcgxTEjOYh4WEVIjJVYYCB3aQA4NX5Ezc=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: +cbg7WTVhCN77TjlGhzVzZ8b4DdK8TdFQRR1HQcoMJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Jun 13 02:20:09 2026 GMT Not After : Jun 20 02:20:09 2026 GMT Subject: CN=6a2cbe5a-0cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:2f:45:e6:fc:e4:92:cb:b1:d1:32:5b:ab: ba:1e:75:67:f8:4e:18:e6:14:f9:dd:de:4a:ad:19: a8:bd:72:97:37:8c:e8:ae:2d:ab:3b:31:fd:f7:0b: 0f:fd:95:dd:8b:dd:e9:73:b7:f0:38:d9:58:eb:f2: 43:33:8b:e8:40:d4:53:de:f1:30:1a:09:66:30:1a: 52:09:36:17:55:f0:d1:9a:56:bb:c0:7e:6c:d5:a5: b3:c2:8a:bb:28:ee:f0:86:f2:18:2b:02:4d:36:8c: 5f:fe:a2:fc:a6:49:3d:d4:be:13:38:e0:69:a4:a2: c5:da:bb:c5:7d:3b:d9:1b:a4:14:d2:48:26:38:65: bf:1f:42:11:b9:69:4c:ea:5f:00:29:ee:f2:bd:f5: b7:a5:d9:03:e4:76:d2:fd:f0:56:a0:43:38:a6:c9: f3:1d:45:9b:5c:78:1f:b5:23:f8:c3:5e:60:45:3e: 27:33:f0:95:76:61:42:14:93:6d:4f:0c:a8:72:bf: 07:f2:d6:8e:02:a3:9a:f2:28:07:21:d5:54:13:06: 2c:ad:f7:a1:15:23:7c:3b:dd:7c:09:03:3f:89:0c: ac:4f:84:b1:29:71:96:0a:55:83:4b:a8:f3:46:e5: 3f:06:5e:cb:f3:37:57:d5:c2:ed:70:6b:25:82:4e: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9E:D2:D3:94:2F:EE:01:4D:6C:68:27:D6:12:11:E7:C2:9B:04:62 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:60:c4:ef:a2:06:2f:32:2b:d9:a3:cf:67:3f:68:bd:f5:cf: bf:e5:c1:6b:18:1c:c7:f0:a0:c8:9c:43:b9:a8:df:9f:d8:c4: 68:d5:24:43:88:7b:18:57:83:f4:3e:db:56:ee:00:8e:71:fd: 54:80:06:f7:6c:82:9f:15:5b:d4:ab:b7:34:52:38:d1:35:cf: d0:95:b2:17:3d:a3:9c:b5:cc:10:ea:18:d4:84:33:92:2f:6b: 1d:96:15:43:13:ed:23:ae:c3:a3:7a:4d:89:10:6f:51:da:83: f4:c6:e4:1a:18:39:a8:de:c7:d1:93:7b:a1:ab:e2:90:37:3a: dd:3b:93:9a:71:b3:6c:0f:c3:ac:5c:2d:f9:57:55:26:70:36: bd:f7:a7:8e:2e:c3:a9:b0:63:8f:97:79:d2:bd:77:e3:39:50: f2:7f:19:79:dc:ad:e1:c9:80:f9:1a:11:35:d9:d3:57:44:d0: f7:3d:a2:52:99:ac:bc:2e:e8:e3:fa:87:5a:0b:66:4b:60:e0: 6b:24:b3:5f:89:cc:eb:59:3a:89:31:cb:f4:82:de:6a:58:67: 20:18:c5:0e:2f:dd:cf:32:dd:4c:d4:c4:d3:2d:32:24:a6:6a: 6b:b9:aa:c0:e9:a4:60:0e:af:68:e0:28:87:8f:f0:7f:96:9a: b2:04:90:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjYwNjEzMDIyMDA5WhcNMjYwNjIwMDIyMDA5WjAYMRYwFAYD VQQDEw02YTJjYmU1YS0wY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+YvReb85JLLsdEyW6u6HnVn+E4Y5hT53d5KrRmovXKXN4zori2rOzH99wsP /ZXdi93pc7fwONlY6/JDM4voQNRT3vEwGglmMBpSCTYXVfDRmla7wH5s1aWzwoq7 KO7whvIYKwJNNoxf/qL8pkk91L4TOOBppKLF2rvFfTvZG6QU0kgmOGW/H0IRuWlM 6l8AKe7yvfW3pdkD5HbS/fBWoEM4psnzHUWbXHgftSP4w15gRT4nM/CVdmFCFJNt Twyocr8H8taOAqOa8igHIdVUEwYsrfehFSN8O918CQM/iQysT4SxKXGWClWDS6jz RuU/Bl7L8zdX1cLtcGslgk7TcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDue0tOU L+4BTWxoJ9YSEefCmwRiMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsmDE76IGLzIr2aPPZz9ovfXPv+XBaxgcx/CgyJxDuajfn9jEaNUkQ4h7GFeD 9D7bVu4AjnH9VIAG92yCnxVb1Ku3NFI40TXP0JWyFz2jnLXMEOoY1IQzki9rHZYV QxPtI67Do3pNiRBvUdqD9MbkGhg5qN7H0ZN7oavikDc63TuTmnGzbA/DrFwt+VdV JnA2vfenji7DqbBjj5d50r134zlQ8n8Zedyt4cmA+RoRNdnTV0TQ9z2iUpmsvC7o 4/qHWgtmS2DgaySzX4nM61k6iTHL9ILealhnIBjFDi/dzzLdTNTE0y0yJKZqa7mq wOmkYA6vaOAoh4/wf5aasgSQqw== -----END CERTIFICATE-----Generated at Sat Jun 13 18:43:43 2026 by rpki-client