$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: GkbvXc3X12woDH0EKWerHrZsxOrUeDui9ROoAS2hr34= Subject key identifier: 1E:F8:4D:F8:E5:05:76:2B:3C:DA:29:CD:05:EE:D4:F9:C1:44:E0:1A Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 022E Signing time: Sun 15 Jun 2025 01:36:47 +0000 Manifest this update: Sun 15 Jun 2025 01:36:46 +0000 Manifest next update: Sun 22 Jun 2025 01:36:46 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: 0IjHyrs6YNfueSfDEsRhIpS3QxdG98di/UNICoi1gH8=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Jun 15 01:36:46 2025 GMT Not After : Jun 22 01:36:46 2025 GMT Subject: CN=684e23af-a746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2f:fe:92:b5:4b:7a:fc:2d:0f:83:35:20:50: da:0a:15:50:f6:0d:1f:ac:10:c9:42:df:31:05:60: 63:18:bd:c2:95:ba:5a:01:54:81:0b:e3:54:cf:c4: f2:96:49:e6:ae:87:45:4d:61:21:39:c2:b5:9b:48: 13:99:59:b4:3e:50:10:26:58:2f:e9:56:57:8b:61: 1d:97:b3:de:e4:a2:4b:85:62:26:91:c3:f3:3b:40: 5a:6e:3a:a7:bf:4b:8a:04:67:59:a7:2d:de:20:a7: 9e:f7:4f:8d:b3:e5:80:f5:44:3e:49:7c:5f:0f:23: d8:a1:e1:6c:50:e6:01:dc:23:c2:82:f0:ae:93:7b: 83:88:45:83:ab:8e:90:03:0f:98:33:f0:33:c4:56: 70:61:2d:f4:63:53:4b:bb:e0:3b:7d:21:b4:b2:77: d4:5e:4c:e3:c9:55:88:1b:2e:19:f1:52:84:c4:d7: 65:48:77:ec:b0:38:d8:6d:9c:e2:f7:b5:ce:2c:39: 1b:db:4c:04:b0:ec:1a:73:1d:08:18:24:72:6d:91: dd:4b:49:7c:53:2b:b5:67:ef:60:c8:ba:ee:3c:3c: 73:44:08:5c:b0:06:6c:a6:b9:28:3d:68:aa:76:cd: b7:6b:1c:d4:a3:11:37:7a:87:fb:cc:95:f2:81:1c: 02:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F8:4D:F8:E5:05:76:2B:3C:DA:29:CD:05:EE:D4:F9:C1:44:E0:1A X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:b5:e8:2a:ec:ae:c2:82:03:16:c0:82:75:ac:94:1d:76:e5: 1d:5a:27:ac:3d:45:c8:c6:d5:c4:d2:6d:96:51:5a:60:22:4d: 60:8c:c5:bb:a8:cc:79:b2:65:63:a2:40:8a:5d:53:18:3a:21: 47:de:86:d1:6e:b5:5c:b5:22:1d:53:cc:22:7f:d5:ae:b6:b5: 90:b3:9f:25:6f:4d:42:89:32:5c:17:59:bd:cd:83:cb:85:71: 06:d7:ea:f6:7e:71:4f:90:a5:db:f0:26:ab:fd:15:ce:e2:30: 0c:5a:a2:6d:e0:9e:fe:1a:fd:8f:03:49:d3:65:55:5b:93:6c: dd:d3:ee:82:57:f1:d6:2f:4b:01:d1:21:32:d8:24:bc:f4:25: 17:77:27:a9:eb:ee:41:bd:da:df:f8:a7:a1:34:1a:55:bc:e7: b8:9e:e0:df:15:a2:e0:1e:d2:de:ad:4f:6b:85:e9:03:55:59: 01:0c:9f:9f:9b:ae:b1:df:7a:65:79:83:e4:dd:06:b8:43:97: 8f:ad:ef:be:8d:c1:39:31:8d:41:60:a6:f8:ac:de:ef:b6:ea: 2b:01:a7:7c:8e:54:95:a9:c8:e1:52:dc:f4:cb:93:cd:e0:65: a0:27:c6:c6:8b:21:d8:7b:29:da:6c:b0:45:ba:c0:7c:c1:c8: ce:9e:3c:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwNjE1MDEzNjQ2WhcNMjUwNjIyMDEzNjQ2WjAYMRYwFAYD VQQDEw02ODRlMjNhZi1hNzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6C/+krVLevwtD4M1IFDaChVQ9g0frBDJQt8xBWBjGL3ClbpaAVSBC+NUz8Ty lknmrodFTWEhOcK1m0gTmVm0PlAQJlgv6VZXi2Edl7Pe5KJLhWImkcPzO0Babjqn v0uKBGdZpy3eIKee90+Ns+WA9UQ+SXxfDyPYoeFsUOYB3CPCgvCuk3uDiEWDq46Q Aw+YM/AzxFZwYS30Y1NLu+A7fSG0snfUXkzjyVWIGy4Z8VKExNdlSHfssDjYbZzi 97XOLDkb20wEsOwacx0IGCRybZHdS0l8Uyu1Z+9gyLruPDxzRAhcsAZsprkoPWiq ds23axzUoxE3eof7zJXygRwCRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB74Tfjl BXYrPNopzQXu1PnBROAaMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5tegq7K7CggMWwIJ1rJQdduUdWiesPUXIxtXE0m2WUVpgIk1gjMW7 qMx5smVjokCKXVMYOiFH3obRbrVctSIdU8wif9WutrWQs58lb01CiTJcF1m9zYPL hXEG1+r2fnFPkKXb8Car/RXO4jAMWqJt4J7+Gv2PA0nTZVVbk2zd0+6CV/HWL0sB 0SEy2CS89CUXdyep6+5Bvdrf+KehNBpVvOe4nuDfFaLgHtLerU9rhekDVVkBDJ+f m66x33pleYPk3Qa4Q5ePre++jcE5MY1BYKb4rN7vtuorAad8jlSVqcjhUtz0y5PN 4GWgJ8bGiyHYeynabLBFusB8wcjOnjyH -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:45 2025 by rpki-client