$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: SwF+pmyovAZ1pAqY3ni0yIxy2MDQw2CZblUKhdgWYDQ= Subject key identifier: E3:54:45:93:AD:75:FA:8D:A7:60:4B:8C:AA:29:F1:6C:31:16:93:98 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 02BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 02B5 Signing time: Sun 01 Mar 2026 02:19:11 +0000 Manifest this update: Sun 01 Mar 2026 02:19:10 +0000 Manifest next update: Sun 08 Mar 2026 02:19:10 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: 690ktwJ9sFw07O2Ri2G7pZSiOw7riiJ65OwnhAf9yfA=) 2: C3A9035CC8FF11F0BE76E779C4F9AE02.roa (hash: jU5Md8Gh4CBr/ZHApHJnxAlGLX6cvpq9zc86CFRKi+8=) 3: C4149072C8FF11F0AC8AE779C4F9AE02.roa (hash: 60cLUiwIo3OFkat+dtGQ2GzMMVBuPgmzgGRtVgQi3Xo=) 4: 3A281348C8FF11F0A8BC2876C4F9AE02.roa (hash: pYe0+bHqCYcW1iVEEt6tk6dblnlCH5OApr9vBfmnQiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Mar 1 02:19:10 2026 GMT Not After : Mar 8 02:19:10 2026 GMT Subject: CN=69a3a21f-fb8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:84:12:6a:43:a6:21:2f:f2:26:4a:fd:27: e9:c4:31:81:d9:33:a9:a4:c8:69:f5:11:d9:d9:71: 15:58:66:a9:86:84:58:e3:84:4c:17:06:fc:a5:70: fc:38:72:6d:0e:66:4d:6d:fb:52:f8:8a:e9:a1:b6: 3c:0d:b0:c9:98:b9:3b:e6:0e:de:8b:50:d7:13:27: 94:27:75:53:ee:87:15:3b:c2:8b:a8:40:68:ef:68: a9:26:a3:58:c7:e3:44:b9:28:e6:21:a1:e7:43:39: d4:6c:bf:38:6f:94:e0:cd:84:7c:a8:0a:e0:3e:a9: 74:1d:e7:7f:75:f4:e7:59:6e:38:56:a8:75:63:38: 7f:64:19:9b:40:43:57:b9:61:53:44:ef:e6:79:a2: 36:cf:e0:1a:ee:12:e0:a8:9e:06:3a:76:42:03:b1: bc:ea:f2:6f:f0:0a:7a:d8:95:1a:07:cc:15:35:51: 41:ec:3a:8a:2b:3f:ed:1d:e6:a0:40:dd:70:67:6b: 81:85:65:9d:e1:65:7a:ac:07:d0:34:dc:28:75:26: c5:df:4e:45:73:c2:65:08:89:8e:4f:84:c1:d8:9c: e2:c1:d3:6c:9f:d9:31:0c:06:da:b4:18:f2:e9:aa: e4:10:ea:f5:52:9c:8c:ad:e8:7e:d8:58:c7:17:b9: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:54:45:93:AD:75:FA:8D:A7:60:4B:8C:AA:29:F1:6C:31:16:93:98 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d3:16:29:f8:25:6f:43:a7:8d:c1:db:fd:3a:de:c9:f4:86: 22:27:85:53:5a:6d:4d:de:10:a8:ce:ae:24:c0:a7:eb:60:ff: d3:e3:01:35:af:07:f3:cc:e4:cc:8d:a3:9b:4d:b2:86:9c:68: b9:07:3c:57:38:ff:ed:79:e1:6b:78:27:7b:d3:71:4d:8c:57: 73:a2:28:b4:b8:2c:d0:8b:4b:0a:d7:a6:6b:94:85:ba:72:91: 2b:74:cf:53:75:4c:df:8b:31:0e:48:6a:cb:e8:a1:47:68:5a: 82:d5:db:92:d4:94:db:d4:05:54:94:b4:75:67:76:9e:89:9a: 91:96:03:d8:63:9f:f6:34:b4:08:aa:92:42:47:7d:15:5d:4d: cb:7a:9e:a1:3b:cf:de:6a:be:10:f9:7d:59:fe:af:21:14:08: a6:85:6f:9f:28:5b:43:63:b4:db:22:e1:c5:3e:03:b4:48:17: 2a:24:07:92:d9:57:63:11:29:8c:43:f6:e7:5b:9f:a5:16:71: db:5c:da:0e:09:26:a9:e2:ad:9a:fb:54:94:bf:c9:09:76:be: 6e:2a:84:ab:d5:08:10:93:e3:a4:46:b0:cb:b5:83:a8:53:65: db:6f:49:e1:4e:d5:53:06:76:cd:48:32:79:a8:77:8a:0c:42: d4:9a:1d:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjYwMzAxMDIxOTEwWhcNMjYwMzA4MDIxOTEwWjAYMRYwFAYD VQQDDA02OWEzYTIxZi1mYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xGEEmpDpiEv8iZK/SfpxDGB2TOppMhp9RHZ2XEVWGaphoRY44RMFwb8pXD8 OHJtDmZNbftS+IrpobY8DbDJmLk75g7ei1DXEyeUJ3VT7ocVO8KLqEBo72ipJqNY x+NEuSjmIaHnQznUbL84b5TgzYR8qArgPql0Hed/dfTnWW44Vqh1Yzh/ZBmbQENX uWFTRO/meaI2z+Aa7hLgqJ4GOnZCA7G86vJv8Ap62JUaB8wVNVFB7DqKKz/tHeag QN1wZ2uBhWWd4WV6rAfQNNwodSbF305Fc8JlCImOT4TB2JziwdNsn9kxDAbatBjy 6arkEOr1UpyMreh+2FjHF7m7EwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONURZOt dfqNp2BLjKop8WwxFpOYMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKNMWKfglb0OnjcHb/TreyfSGIieFU1ptTd4QqM6uJMCn62D/0+MBNa8H88zk zI2jm02yhpxouQc8Vzj/7Xnha3gne9NxTYxXc6IotLgs0ItLCtema5SFunKRK3TP U3VM34sxDkhqy+ihR2hagtXbktSU29QFVJS0dWd2nomakZYD2GOf9jS0CKqSQkd9 FV1Ny3qeoTvP3mq+EPl9Wf6vIRQIpoVvnyhbQ2O02yLhxT4DtEgXKiQHktlXYxEp jEP251ufpRZx21zaDgkmqeKtmvtUlL/JCXa+biqEq9UIEJPjpEawy7WDqFNl229J 4U7VUwZ2zUgyeah3igxC1JodNA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:26:22 2026 by rpki-client