$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: ITaO7Tuyz3fQ4nnMExBc976rPtT1HebhLNt+19ECjLc= Subject key identifier: 7B:49:77:46:76:96:46:14:57:F8:D5:66:B0:D4:80:1A:C8:1D:1C:8F Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 02EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 02DC Signing time: Wed 13 May 2026 01:28:26 +0000 Manifest this update: Wed 13 May 2026 01:28:25 +0000 Manifest next update: Wed 20 May 2026 01:28:25 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: 2i7u7V242PR/zJRQk5OJacNBYLBBeJt7wSzxnXaC2zs=) 2: C3A9035CC8FF11F0BE76E779C4F9AE02.roa (hash: Qq87SJXaEP4qrP/T3bWQOCeWogcPQnVi06inH60FBfo=) 3: C4149072C8FF11F0AC8AE779C4F9AE02.roa (hash: e26HjI6IThHSTcyiS5wewUgNVLH1ZtA87nwKAQOfEN8=) 4: 3A281348C8FF11F0A8BC2876C4F9AE02.roa (hash: qmW4boAu4mPyTeZ/1TM4f4A59PHbYduM7lK03RYvMz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 746 (0x2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: May 13 01:28:25 2026 GMT Not After : May 20 01:28:25 2026 GMT Subject: CN=6a03d3ba-11eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:81:12:15:e1:2e:6c:33:bf:81:9d:19:2d:27: 4c:17:56:d7:2b:4a:0a:b3:2b:1f:de:b8:59:90:96: f0:47:a1:fa:e5:f8:12:56:a8:6d:a9:78:3a:9a:dd: f4:55:99:ca:1e:fc:28:9b:5c:62:45:b3:c6:fb:9a: 58:9a:47:3e:c5:8e:b2:b4:52:11:bd:aa:9e:61:12: fe:c5:6e:2d:7f:78:de:4d:55:bf:f9:d4:e3:1f:ad: fb:f4:2a:84:f5:e3:b4:0b:dc:e0:1c:5b:75:98:f6: ae:c8:5c:f3:7c:62:3b:68:1f:77:20:a4:2b:77:2a: 75:29:49:29:58:49:7a:a9:22:9a:55:0a:9e:9c:46: 12:f2:e6:b1:4b:58:43:8d:f0:78:4f:e2:03:48:a9: e1:4f:17:fd:e7:24:de:e4:d3:a6:92:f9:73:c1:64: 4c:08:37:9c:3e:3f:51:1b:f5:d6:f0:dc:a5:72:0b: ad:f8:5f:89:4f:ee:5d:28:7e:1b:25:49:d0:33:8b: c3:c5:98:3e:b9:9c:32:2b:33:43:ca:13:e1:a5:c5: ae:a4:c9:4e:3d:45:0b:26:57:38:c8:e5:53:c5:37: 1a:6c:1b:84:e2:91:95:60:33:aa:cc:ae:60:fd:c3: 61:af:81:50:c5:af:cb:5a:0b:1d:43:94:45:51:d0: 30:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:49:77:46:76:96:46:14:57:F8:D5:66:B0:D4:80:1A:C8:1D:1C:8F X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:7c:b3:e6:27:f5:7d:a7:6c:ab:6e:92:4f:ce:78:1c:87:a6: 6f:62:47:fe:79:49:50:6a:e0:8f:8b:32:67:84:ec:ed:26:3b: 69:0f:0a:0c:e0:54:77:d0:5d:86:8f:8f:dc:8e:9b:35:b3:51: 5d:cb:fc:29:d9:ed:f5:69:fb:33:2e:e5:c6:4d:d5:56:ad:06: 52:de:3b:34:64:a7:6c:11:02:e8:58:79:2c:6a:81:23:ee:37: c7:bf:c5:a3:65:65:36:25:da:71:24:4d:38:34:f9:c6:7c:7b: 10:28:4a:bf:81:99:6b:ab:14:9a:6d:37:06:14:9d:a0:41:fe: b7:26:5e:56:af:fc:be:bc:54:e5:7c:70:af:5f:05:87:c3:35: 2a:a2:0a:9e:ce:08:b2:ee:58:8e:25:99:42:5d:d1:a0:f3:1e: 3c:dd:ea:ee:4b:6f:ff:80:ae:d7:86:d8:4c:4c:60:59:2e:24: ca:d0:6f:86:ab:46:79:c8:5d:7b:a5:9d:31:dd:ca:56:55:6e: 2b:6e:1e:c0:95:b9:d9:50:f0:23:32:46:80:52:68:62:b8:ba: ca:33:ba:ac:24:31:44:4d:49:1f:11:76:c2:52:48:37:6c:6d: b1:17:65:eb:69:5c:61:f3:67:1f:d6:31:5c:fc:35:ac:a2:0b: 34:8a:7a:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjYwNTEzMDEyODI1WhcNMjYwNTIwMDEyODI1WjAYMRYwFAYD VQQDEw02YTAzZDNiYS0xMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4ESFeEubDO/gZ0ZLSdMF1bXK0oKsysf3rhZkJbwR6H65fgSVqhtqXg6mt30 VZnKHvwom1xiRbPG+5pYmkc+xY6ytFIRvaqeYRL+xW4tf3jeTVW/+dTjH6379CqE 9eO0C9zgHFt1mPauyFzzfGI7aB93IKQrdyp1KUkpWEl6qSKaVQqenEYS8uaxS1hD jfB4T+IDSKnhTxf95yTe5NOmkvlzwWRMCDecPj9RG/XW8Nylcgut+F+JT+5dKH4b JUnQM4vDxZg+uZwyKzNDyhPhpcWupMlOPUULJlc4yOVTxTcabBuE4pGVYDOqzK5g /cNhr4FQxa/LWgsdQ5RFUdAwIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHtJd0Z2 lkYUV/jVZrDUgBrIHRyPMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg3yz5if1fadsq26ST854HIemb2JH/nlJUGrgj4syZ4Ts7SY7aQ8KDOBUd9Bd ho+P3I6bNbNRXcv8Kdnt9Wn7My7lxk3VVq0GUt47NGSnbBEC6Fh5LGqBI+43x7/F o2VlNiXacSRNODT5xnx7EChKv4GZa6sUmm03BhSdoEH+tyZeVq/8vrxU5Xxwr18F h8M1KqIKns4Isu5YjiWZQl3RoPMePN3q7ktv/4Cu14bYTExgWS4kytBvhqtGechd e6WdMd3KVlVuK24ewJW52VDwIzJGgFJoYri6yjO6rCQxRE1JHxF2wlJIN2xtsRdl 62lcYfNnH9YxXPw1rKILNIp6Bg== -----END CERTIFICATE-----Generated at Wed May 13 03:44:05 2026 by rpki-client