$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: y1Ga9TMn0ss15HVkKAe5x35Y/+4tZKayo6FbBGAyvlI= Subject key identifier: 3E:21:B0:A4:E3:E7:21:02:72:5E:E6:C9:C3:22:1F:4F:F9:9D:E1:5F Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 027F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0278 Signing time: Wed 05 Nov 2025 01:45:16 +0000 Manifest this update: Wed 05 Nov 2025 01:45:15 +0000 Manifest next update: Wed 12 Nov 2025 01:45:15 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: XNYPA4QMQTo4zqH9u6MO5LxO5ddDF8ZFLemIoFB48to=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: p+jEIIVZhiAs2rparlrnkAkhw6aAuDsTWw7U7icR8vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Nov 5 01:45:15 2025 GMT Not After : Nov 12 01:45:15 2025 GMT Subject: CN=690aac2c-ebb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:44:c8:fb:2f:a1:43:2c:20:d6:15:5f:59:9b: 27:83:4a:e8:75:95:2f:92:c8:ab:e9:68:83:b1:b6: d3:6e:46:33:4d:b3:d2:88:0b:c1:a9:6a:1b:16:0c: fb:10:2b:9d:02:3f:86:01:51:10:b7:93:5b:72:09: ec:fd:87:f5:60:74:89:19:19:0e:01:b1:4e:61:52: c1:e0:7c:46:e9:02:66:3c:62:1e:97:f0:56:6e:fb: 07:f9:3d:1b:52:ca:7b:b3:b2:28:47:f2:02:2b:ee: fe:0f:db:d9:c0:cd:f2:f3:fe:16:11:b2:a2:53:43: a9:a5:ee:b9:b9:8d:47:26:36:03:b7:9f:6b:06:55: 39:9e:96:8b:15:07:8b:a1:2d:8d:28:ba:4f:52:55: 38:a0:32:e3:fb:c4:68:89:ce:4c:a2:33:cd:a9:54: 7c:45:a9:b3:27:ab:7d:32:ad:19:0b:30:8e:12:16: 9c:d2:36:1b:43:6b:7c:9d:ff:98:00:93:a7:ea:5b: bd:da:2e:7f:08:28:94:47:0f:0a:6b:44:ce:b1:b2: 39:4e:89:2a:27:a2:27:04:86:be:83:8d:f0:4b:de: 2c:43:13:ae:36:e1:ec:d7:7a:d9:82:7d:24:50:7d: ad:5b:3e:21:73:6b:fe:e9:27:9f:9a:e6:f5:f6:4d: f7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:21:B0:A4:E3:E7:21:02:72:5E:E6:C9:C3:22:1F:4F:F9:9D:E1:5F X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:66:60:8c:d2:74:2f:64:03:fa:f8:0d:5a:81:45:3a:7e:b7: ce:98:0e:07:ef:44:63:b6:3f:a7:6d:14:f9:29:1b:1c:db:7a: a0:35:e3:81:50:bd:25:f5:e8:f8:49:16:29:8c:c7:40:b9:79: 03:93:48:b2:c8:ec:fd:ce:e1:e5:e7:f4:77:7a:b6:9c:d1:4a: 7d:9b:8a:d3:45:cb:ba:ea:d8:fd:bb:75:06:f4:b0:35:72:be: dc:3f:a3:11:55:60:f7:05:bd:08:68:f4:da:cb:5a:fe:aa:33: 0b:6b:9a:d0:a1:57:42:e1:26:82:3d:0b:86:2e:7b:b7:7d:f6: a9:de:c6:3a:56:49:95:87:62:ff:78:be:e0:56:dc:1c:33:f5: 39:a8:8b:0c:b4:6b:21:0e:80:40:9a:4f:e1:30:36:71:ff:0b: 05:af:ce:f5:cd:1b:6b:af:69:b9:85:78:d5:24:dc:e7:14:7c: 65:e9:1a:ca:d6:19:14:e9:90:9d:76:47:78:ee:8d:30:1b:c6: e7:25:9b:36:d3:44:e9:ea:30:44:72:5b:25:ff:d2:de:f4:23: 4f:fe:13:1e:fc:a0:8d:6f:9b:60:2d:60:f3:ee:02:0d:d5:91: aa:18:e5:b5:fc:23:f2:91:e4:6d:91:ad:a8:66:c5:61:c6:de: 67:fc:0b:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUxMTA1MDE0NTE1WhcNMjUxMTEyMDE0NTE1WjAYMRYwFAYD VQQDEw02OTBhYWMyYy1lYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUTI+y+hQywg1hVfWZsng0rodZUvksir6WiDsbbTbkYzTbPSiAvBqWobFgz7 ECudAj+GAVEQt5Nbcgns/Yf1YHSJGRkOAbFOYVLB4HxG6QJmPGIel/BWbvsH+T0b Usp7s7IoR/ICK+7+D9vZwM3y8/4WEbKiU0Oppe65uY1HJjYDt59rBlU5npaLFQeL oS2NKLpPUlU4oDLj+8Roic5MojPNqVR8RamzJ6t9Mq0ZCzCOEhac0jYbQ2t8nf+Y AJOn6lu92i5/CCiURw8Ka0TOsbI5TokqJ6InBIa+g43wS94sQxOuNuHs13rZgn0k UH2tWz4hc2v+6Sefmub19k33RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4hsKTj 5yECcl7mycMiH0/5neFfMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDZmCM0nQvZAP6+A1agUU6frfOmA4H70Rjtj+nbRT5KRsc23qgNeOB UL0l9ej4SRYpjMdAuXkDk0iyyOz9zuHl5/R3erac0Up9m4rTRcu66tj9u3UG9LA1 cr7cP6MRVWD3Bb0IaPTay1r+qjMLa5rQoVdC4SaCPQuGLnu3ffap3sY6VkmVh2L/ eL7gVtwcM/U5qIsMtGshDoBAmk/hMDZx/wsFr871zRtrr2m5hXjVJNznFHxl6RrK 1hkU6ZCddkd47o0wG8bnJZs200Tp6jBEclsl/9Le9CNP/hMe/KCNb5tgLWDz7gIN 1ZGqGOW1/CPykeRtka2oZsVhxt5n/Aus -----END CERTIFICATE-----Generated at Wed Nov 5 16:29:58 2025 by rpki-client