$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: rRg09pyyzvoa67KS5sRIa+fOIffRiDNw4yrKnfamjTc= Subject key identifier: EA:EF:4E:32:10:70:5F:71:CC:AA:67:6E:D5:EB:A3:74:58:0B:EE:C6 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 024A Signing time: Sat 09 Aug 2025 02:23:26 +0000 Manifest this update: Sat 09 Aug 2025 02:23:26 +0000 Manifest next update: Sat 16 Aug 2025 02:23:26 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: 0ToSG7eJvjrSleckeNJlUuFZZaJkzDYHnr9xNWFUr/o=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Aug 9 02:23:26 2025 GMT Not After : Aug 16 02:23:26 2025 GMT Subject: CN=6896b11e-8109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:af:1a:da:43:35:91:3a:37:d9:5c:00:50: 62:e4:3e:7a:b6:77:d3:95:92:11:50:e7:27:f6:53: 6c:6e:93:1f:43:6d:f0:82:8d:1e:e6:70:02:9e:b4: 5d:69:1c:42:33:95:e9:d2:17:25:c9:91:4c:5b:a8: 02:65:77:6b:c7:6a:8c:e1:97:93:10:65:8c:cd:57: b9:03:ce:9e:5f:45:9b:69:b3:3c:e8:39:c5:92:2b: d6:3b:d2:34:1f:06:28:8d:73:4e:46:1c:c6:0e:ac: 6e:2f:0c:c7:39:fc:dc:fc:92:82:bd:e8:2a:00:10: 6f:1a:31:44:85:1c:d7:b8:49:93:39:ff:61:19:60: 0e:50:1e:69:6a:54:ec:61:94:f5:62:c4:3a:cf:1e: cb:b1:60:8a:da:bd:06:9c:68:93:b8:fb:be:7e:e1: 50:c4:4c:8a:32:1a:49:73:0f:2d:99:ff:79:93:83: bd:12:d5:7a:96:69:b0:be:e3:c4:7c:4f:ab:b5:ca: 7c:cf:5a:e8:3a:99:fc:88:22:1a:34:29:e1:88:9b: c5:64:35:c7:0b:3e:e8:ff:a2:63:79:87:a9:9a:c3: 49:d9:4a:e7:d9:cf:88:61:25:76:cd:a3:f7:b9:b8: 1a:51:6b:20:11:90:76:d1:56:3a:79:4d:1c:20:91: 5b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:EF:4E:32:10:70:5F:71:CC:AA:67:6E:D5:EB:A3:74:58:0B:EE:C6 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ed:db:0e:b9:01:97:51:81:29:be:e7:31:49:3c:c8:35:c2: a5:25:45:fd:f9:41:a6:31:9b:6b:76:87:f1:84:5e:b8:77:43: 88:7e:73:84:1e:c7:64:06:9d:09:42:31:fe:59:1f:dc:52:05: df:36:98:76:49:91:4c:92:63:08:ad:22:e6:5a:ce:58:c6:0f: 7f:2e:e3:53:5f:a5:98:62:e0:24:7e:1c:33:28:73:83:2a:b1: 6c:3e:6c:f0:82:d8:83:48:d2:3c:cb:63:84:33:4d:f9:b9:5b: 1c:67:24:07:c1:4d:e7:f5:b4:a3:ff:fe:b7:4f:9b:6b:d4:54: f2:25:36:49:bf:15:bb:13:47:d8:8c:cb:16:5b:6e:d0:ee:aa: ab:85:e8:c3:cc:7b:81:1a:10:37:75:ec:25:80:e7:90:21:93: da:f0:6f:72:19:44:81:eb:5e:61:97:3e:19:01:a1:87:26:12: ba:d3:21:ad:2b:5a:20:ae:bd:53:d3:b8:d2:16:69:aa:89:b0: 97:92:22:bf:5b:e4:09:f0:2d:02:74:35:b5:39:5a:7a:2d:ce: 36:c1:01:1d:06:66:c2:e0:49:84:24:d6:5c:de:60:26:05:10: ed:10:75:7f:75:e2:b1:8f:fd:7b:2c:10:b2:40:7c:a5:0d:4c: f6:a9:2f:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwODA5MDIyMzI2WhcNMjUwODE2MDIyMzI2WjAYMRYwFAYD VQQDEw02ODk2YjExZS04MTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsmvGtpDNZE6N9lcAFBi5D56tnfTlZIRUOcn9lNsbpMfQ23wgo0e5nACnrRd aRxCM5Xp0hclyZFMW6gCZXdrx2qM4ZeTEGWMzVe5A86eX0WbabM86DnFkivWO9I0 HwYojXNORhzGDqxuLwzHOfzc/JKCvegqABBvGjFEhRzXuEmTOf9hGWAOUB5palTs YZT1YsQ6zx7LsWCK2r0GnGiTuPu+fuFQxEyKMhpJcw8tmf95k4O9EtV6lmmwvuPE fE+rtcp8z1roOpn8iCIaNCnhiJvFZDXHCz7o/6JjeYepmsNJ2Urn2c+IYSV2zaP3 ubgaUWsgEZB20VY6eU0cIJFbRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrvTjIQ cF9xzKpnbtXro3RYC+7GMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq7dsOuQGXUYEpvucxSTzINcKlJUX9+UGmMZtrdofxhF64d0OIfnOE HsdkBp0JQjH+WR/cUgXfNph2SZFMkmMIrSLmWs5Yxg9/LuNTX6WYYuAkfhwzKHOD KrFsPmzwgtiDSNI8y2OEM035uVscZyQHwU3n9bSj//63T5tr1FTyJTZJvxW7E0fY jMsWW27Q7qqrhejDzHuBGhA3dewlgOeQIZPa8G9yGUSB615hlz4ZAaGHJhK60yGt K1ogrr1T07jSFmmqibCXkiK/W+QJ8C0CdDW1OVp6Lc42wQEdBmbC4EmEJNZc3mAm BRDtEHV/deKxj/17LBCyQHylDUz2qS9j -----END CERTIFICATE-----Generated at Sat Aug 9 22:49:06 2025 by rpki-client