$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: zt9EEDa9rSMl30aa1bpGrRjnJYkiHXnSRFgS9hp0MWE= Subject key identifier: 05:A6:4B:85:AF:D2:B0:4F:B7:AD:48:C7:8D:72:80:15:AC:79:A7:1F Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 02EC Signing time: Sat 13 Jun 2026 01:18:26 +0000 Manifest this update: Sat 13 Jun 2026 01:18:26 +0000 Manifest next update: Sat 20 Jun 2026 01:18:26 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: Pxe+c/EDuZl9n7sDinePNYIQo/1LHKXeC7ykRdTGDj4=) 2: C3A9035CC8FF11F0BE76E779C4F9AE02.roa (hash: Qq87SJXaEP4qrP/T3bWQOCeWogcPQnVi06inH60FBfo=) 3: 3A281348C8FF11F0A8BC2876C4F9AE02.roa (hash: qmW4boAu4mPyTeZ/1TM4f4A59PHbYduM7lK03RYvMz8=) 4: C4149072C8FF11F0AC8AE779C4F9AE02.roa (hash: e26HjI6IThHSTcyiS5wewUgNVLH1ZtA87nwKAQOfEN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Jun 13 01:18:26 2026 GMT Not After : Jun 20 01:18:26 2026 GMT Subject: CN=6a2cafe2-e410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3d:cf:21:ef:03:ec:6b:22:df:ae:27:25:5d: 70:1a:50:fb:1e:3c:87:55:70:24:4b:4a:d8:53:76: 41:57:b6:d2:ef:ab:c4:40:66:84:70:41:e1:eb:8b: b2:90:4c:0d:51:d2:0f:08:e3:90:8a:d6:9e:fc:80: 92:65:e9:35:57:42:09:39:e7:91:31:82:71:1d:85: a0:52:a6:47:51:5c:32:b0:1a:c6:ee:09:0e:2b:02: 37:84:dd:23:0c:04:53:8d:0c:90:eb:d2:ba:ed:ff: f7:19:02:99:53:95:6b:48:68:a8:ff:22:f1:9b:58: e8:d4:35:46:7a:39:26:fd:89:78:e3:54:04:9c:57: f0:b8:08:b2:dd:02:f7:f4:b6:4c:b8:20:bd:e1:0b: 24:11:0b:d4:9f:8b:19:09:ba:f2:eb:e9:b9:c8:28: 8a:b8:53:4e:33:ac:97:51:78:a5:7e:d0:8e:5c:68: 21:7e:7a:ee:ba:ec:7a:4c:0e:56:b0:49:a1:94:ef: 1b:c5:d0:27:65:cb:46:b2:ab:79:03:70:62:8d:22: 83:38:2d:95:3b:23:e3:3a:90:ef:e4:0c:45:f1:0d: 8d:6f:02:e4:25:d0:39:f7:01:98:6b:14:5d:43:59: f6:9c:24:25:4c:16:a5:ae:a1:34:d4:dc:8c:dc:63: 8c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A6:4B:85:AF:D2:B0:4F:B7:AD:48:C7:8D:72:80:15:AC:79:A7:1F X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:dc:eb:72:c8:e3:89:95:42:df:dd:89:c2:bb:53:04:eb:d8: 15:e0:d0:32:10:75:87:d4:73:48:5b:57:df:e2:6d:08:93:81: 39:0a:cd:0e:7d:40:b8:64:be:4e:1e:32:a8:de:a6:96:ce:e5: 22:14:c5:82:09:c1:97:68:8c:8c:e7:ff:56:b1:c4:3e:34:d7: 7b:8f:a5:7d:76:83:71:43:45:f1:40:51:14:35:da:e1:fa:a7: 33:dd:0a:25:21:70:b9:97:fc:c1:7f:c8:f5:f7:2d:2f:cc:07: 26:61:8e:05:e4:96:d6:8b:12:6e:8c:a0:b9:17:19:dd:65:30: 70:d3:71:1e:e1:f1:e4:bb:65:00:a5:c2:50:4d:1b:78:2b:c6: f6:05:06:73:94:ef:92:2d:00:cb:0c:f6:e8:37:4c:50:d2:76: 37:00:b9:4c:78:61:9a:00:20:00:45:89:7e:bb:c0:04:e8:3b: 48:3f:a1:40:23:09:81:6c:8d:30:3e:ec:63:8f:4d:ac:b5:20: ee:7a:71:7d:ff:2d:6a:67:38:f7:f9:f7:2c:cd:83:89:f4:d7: 96:69:64:46:e6:9b:fe:7d:37:d8:22:f4:1b:48:6e:e8:3a:65: 0f:9a:af:d1:02:06:04:9e:3e:09:cf:e6:f1:96:d5:78:f9:af: d9:68:5e:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjYwNjEzMDExODI2WhcNMjYwNjIwMDExODI2WjAYMRYwFAYD VQQDEw02YTJjYWZlMi1lNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5D3PIe8D7Gsi364nJV1wGlD7HjyHVXAkS0rYU3ZBV7bS76vEQGaEcEHh64uy kEwNUdIPCOOQitae/ICSZek1V0IJOeeRMYJxHYWgUqZHUVwysBrG7gkOKwI3hN0j DARTjQyQ69K67f/3GQKZU5VrSGio/yLxm1jo1DVGejkm/Yl441QEnFfwuAiy3QL3 9LZMuCC94QskEQvUn4sZCbry6+m5yCiKuFNOM6yXUXilftCOXGghfnruuux6TA5W sEmhlO8bxdAnZctGsqt5A3BijSKDOC2VOyPjOpDv5AxF8Q2NbwLkJdA59wGYaxRd Q1n2nCQlTBalrqE01NyM3GOM2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAWmS4Wv 0rBPt61Ix41ygBWseacfMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ9zrcsjjiZVC392JwrtTBOvYFeDQMhB1h9RzSFtX3+JtCJOBOQrNDn1AuGS+ Th4yqN6mls7lIhTFggnBl2iMjOf/VrHEPjTXe4+lfXaDcUNF8UBRFDXa4fqnM90K JSFwuZf8wX/I9fctL8wHJmGOBeSW1osSboyguRcZ3WUwcNNxHuHx5LtlAKXCUE0b eCvG9gUGc5Tvki0Aywz26DdMUNJ2NwC5THhhmgAgAEWJfrvABOg7SD+hQCMJgWyN MD7sY49NrLUg7npxff8tamc49/n3LM2DifTXlmlkRuab/n032CL0G0hu6DplD5qv 0QIGBJ4+Cc/m8ZbVePmv2Whe4A== -----END CERTIFICATE-----Generated at Sat Jun 13 09:54:14 2026 by rpki-client