$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: 3QvwuYRMMYyVGYPgNTWqz0qj0mT67T0HY5vCS6wK8ak= Subject key identifier: 3C:19:B6:EC:DD:48:48:73:6F:1D:B4:E1:8B:00:97:14:C6:B3:E3:F8 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01F8 Signing time: Mon 02 Mar 2026 03:10:54 +0000 Manifest this update: Mon 02 Mar 2026 03:10:53 +0000 Manifest next update: Mon 09 Mar 2026 03:10:53 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: rOHfIUAGYgl9IDcFPwiQiEtp6CBJr+tBvDNGdkTk6GA=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: bSJAumrmvSViT3/Uy4pn21BwfUV4ya5RD0S3gd/4R3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Mar 2 03:10:53 2026 GMT Not After : Mar 9 03:10:53 2026 GMT Subject: CN=69a4ffbe-0ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:96:dc:8b:57:bd:e6:e6:af:d2:b9:86:55:aa: 05:39:73:d8:f5:1b:51:d9:09:c9:4b:53:b9:15:15: d1:f1:f9:6b:9b:07:98:9c:9d:90:56:f9:7e:61:f6: ac:0a:74:16:25:ca:5f:70:36:3f:2d:2b:73:c0:aa: 7c:64:a2:b6:bc:26:0d:54:a8:39:33:50:de:32:6f: ea:9b:f5:91:90:20:58:f3:f9:ec:11:80:f5:b1:76: f0:69:8a:8a:f5:25:96:be:f3:ba:a3:ac:31:bc:cb: 82:a0:e9:2b:6b:40:17:47:fc:fe:3b:02:0d:de:7b: 00:2d:95:5f:70:cb:c8:f1:50:91:90:2e:54:89:5f: 54:88:87:6e:7d:96:50:44:fe:11:81:31:af:be:22: 94:af:ae:ec:fa:73:b0:67:1a:10:c8:7f:bb:e3:97: ee:ef:6b:11:3e:be:d3:3e:e2:e5:da:92:e7:c1:45: 3b:44:0a:c2:81:fa:f5:9d:0e:4d:de:23:de:fa:30: 87:48:bd:01:cd:c7:4c:a3:d7:ef:ca:f3:b0:8d:ff: 07:9a:df:5c:95:44:e6:a1:90:ae:d7:4f:03:59:16: e4:07:01:40:b5:bb:7d:88:da:c8:47:96:5d:af:e1: 63:9e:74:0d:22:af:09:5b:2a:da:9b:fd:4a:05:88: 70:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:19:B6:EC:DD:48:48:73:6F:1D:B4:E1:8B:00:97:14:C6:B3:E3:F8 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:35:e5:6b:72:38:3c:93:00:82:0e:5a:b8:ca:fe:cd:85:e2: 98:c4:7e:78:04:49:6d:0b:d6:1e:35:12:fd:59:dd:f4:34:12: 18:65:ca:0d:b4:52:69:5d:a0:0c:45:1c:8b:60:d3:e5:60:5d: c0:8f:ba:5d:e3:82:38:f4:e9:5f:bd:65:48:2a:0a:15:74:01: ea:fe:2c:fe:5c:6c:2f:45:a8:b9:ee:7c:f6:d9:aa:52:f0:37: 85:52:f2:f0:fc:b7:5f:a0:05:f8:4b:61:ee:86:af:d2:79:f3: b9:9e:ca:de:fe:3d:8a:be:fe:4a:06:a6:65:7f:62:63:02:4e: cf:d4:88:dc:06:0b:57:7f:6c:f7:37:6d:c9:24:be:2d:cf:67: de:58:61:48:45:23:2a:08:45:55:bc:10:0c:a1:29:8c:75:38: 43:64:73:50:86:ce:46:6c:7a:65:14:62:9c:36:66:c8:50:79: 75:60:50:5e:e0:2a:b9:65:61:11:cf:63:1e:4e:4c:ae:80:af: f0:c8:79:af:b8:1a:67:1f:9d:8e:47:ce:c9:05:2e:a2:30:17: 3b:60:1e:e3:16:1b:26:e0:ee:10:86:d3:ad:64:8b:2c:5e:7f: 3e:5d:29:28:bc:c1:9f:9a:f6:9f:1d:ea:94:c6:ad:c4:53:47: b1:6e:92:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjYwMzAyMDMxMDUzWhcNMjYwMzA5MDMxMDUzWjAYMRYwFAYD VQQDEw02OWE0ZmZiZS0wYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZbci1e95uav0rmGVaoFOXPY9RtR2QnJS1O5FRXR8flrmweYnJ2QVvl+Yfas CnQWJcpfcDY/LStzwKp8ZKK2vCYNVKg5M1DeMm/qm/WRkCBY8/nsEYD1sXbwaYqK 9SWWvvO6o6wxvMuCoOkra0AXR/z+OwIN3nsALZVfcMvI8VCRkC5UiV9UiIdufZZQ RP4RgTGvviKUr67s+nOwZxoQyH+745fu72sRPr7TPuLl2pLnwUU7RArCgfr1nQ5N 3iPe+jCHSL0BzcdMo9fvyvOwjf8Hmt9clUTmoZCu108DWRbkBwFAtbt9iNrIR5Zd r+FjnnQNIq8JWyram/1KBYhwiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDwZtuzd SEhzbx204YsAlxTGs+P4MB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaDXla3I4PJMAgg5auMr+zYXimMR+eARJbQvWHjUS/Vnd9DQSGGXKDbRSaV2g DEUci2DT5WBdwI+6XeOCOPTpX71lSCoKFXQB6v4s/lxsL0Woue589tmqUvA3hVLy 8Py3X6AF+Eth7oav0nnzuZ7K3v49ir7+SgamZX9iYwJOz9SI3AYLV39s9zdtySS+ Lc9n3lhhSEUjKghFVbwQDKEpjHU4Q2RzUIbORmx6ZRRinDZmyFB5dWBQXuAquWVh Ec9jHk5MroCv8Mh5r7gaZx+djkfOyQUuojAXO2Ae4xYbJuDuEIbTrWSLLF5/Pl0p KLzBn5r2nx3qlMatxFNHsW6Svw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:46:03 2026 by rpki-client