$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: zqjrc7vgQH1G40Ej22UBk5d7PcbTm8kWTQu6sTkLnb8= Subject key identifier: 03:79:BD:A2:75:32:33:E6:22:AA:17:9E:59:F1:58:96:9D:78:89:26 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 02C4 Signing time: Fri 27 Mar 2026 01:10:25 +0000 Manifest this update: Fri 27 Mar 2026 01:10:24 +0000 Manifest next update: Fri 03 Apr 2026 01:10:24 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: P/OhsqPa2/s2PObNe+Ag0mVXgbA0nBAR5fQJ95ahYxY=) 2: C3A9035CC8FF11F0BE76E779C4F9AE02.roa (hash: Qq87SJXaEP4qrP/T3bWQOCeWogcPQnVi06inH60FBfo=) 3: 3A281348C8FF11F0A8BC2876C4F9AE02.roa (hash: qmW4boAu4mPyTeZ/1TM4f4A59PHbYduM7lK03RYvMz8=) 4: C4149072C8FF11F0AC8AE779C4F9AE02.roa (hash: e26HjI6IThHSTcyiS5wewUgNVLH1ZtA87nwKAQOfEN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Mar 27 01:10:24 2026 GMT Not After : Apr 3 01:10:24 2026 GMT Subject: CN=69c5d901-b68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:e2:ec:18:e7:7b:7d:c9:bc:7c:f2:e8:fa: 51:53:54:e3:df:56:87:bd:a7:15:c9:ee:fe:c7:e9: 39:1a:8a:7c:d4:3b:c4:41:b5:28:1f:b3:89:16:98: 17:f7:58:78:09:33:36:40:0f:09:b5:a9:78:4c:e2: b3:47:9b:ea:3a:a6:cb:00:a5:75:8f:b0:86:55:80: 2c:ed:40:9a:78:5e:bd:21:09:21:79:29:41:e2:52: f0:77:ed:ac:fb:d2:41:4b:a1:2f:7d:75:bc:d2:c2: 17:05:9a:13:7e:57:40:15:b0:88:46:0b:a1:05:48: 97:a8:a1:f4:00:12:b2:67:85:86:7c:42:2a:2e:38: 82:bf:e0:e4:b4:cd:44:f2:cf:89:1b:b7:af:da:91: 85:f8:02:79:94:fd:0d:fb:4e:02:a1:84:f1:f2:1a: 05:65:71:0d:fb:db:69:3a:7c:bc:90:0f:20:73:a8: b9:d4:52:2e:3e:c2:14:a5:1e:5d:95:83:cb:ab:fc: 96:e6:04:31:1a:d0:92:a3:a3:ab:ff:3e:c7:85:d1: 80:e9:d9:5b:7b:8b:4b:f8:fb:9a:76:07:a7:2f:a7: ba:58:45:2e:70:26:6f:8d:98:6f:57:b7:b6:12:8f: 9d:53:9c:59:eb:87:59:53:9f:ab:12:aa:23:5e:1a: 49:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:79:BD:A2:75:32:33:E6:22:AA:17:9E:59:F1:58:96:9D:78:89:26 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:77:d0:38:54:43:75:ce:0a:88:91:b3:21:b0:4f:15:21:6a: 4e:04:9f:95:88:ac:1a:68:24:b2:21:64:e7:14:a9:8c:53:e8: db:3d:aa:56:0f:49:7a:a4:35:1b:97:9d:bf:da:71:c3:44:ee: 03:48:b0:d9:4d:80:ac:16:96:f2:67:54:af:c5:18:5a:cf:e6: fc:9b:9c:14:54:49:28:49:e8:ed:b8:d4:d0:89:dc:04:13:51: 5b:5c:c4:94:93:70:1f:ff:7d:29:dc:dd:e7:e7:40:e8:6a:81: b0:4c:78:b8:37:c7:98:6a:ca:5f:bd:07:8b:f2:14:80:b2:b0: c9:fc:e8:e3:67:7f:14:3f:ee:78:d9:d3:ee:ae:db:de:96:8d: 99:20:6f:a3:29:ed:35:1e:08:2f:72:07:f1:de:82:8d:2f:42: 17:8f:b2:44:db:35:8c:ac:f2:ce:1d:ab:b2:1f:f8:be:4e:93: 43:f6:16:39:2d:f6:99:f2:b5:d9:70:cb:b0:a3:f4:cc:3f:34: 37:1f:b1:7d:06:d1:ae:fc:71:0c:fa:0d:77:cd:a1:33:e8:74: 71:66:e8:86:67:b2:4e:d4:d8:cb:82:5e:54:25:23:81:13:ea: c6:f9:58:5b:59:c4:c4:fd:c0:2b:c1:da:62:81:fc:9a:dc:cf: cb:7d:ca:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjYwMzI3MDExMDI0WhcNMjYwNDAzMDExMDI0WjAYMRYwFAYD VQQDEw02OWM1ZDkwMS1iNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xTi7Bjne33JvHzy6PpRU1Tj31aHvacVye7+x+k5Gop81DvEQbUoH7OJFpgX 91h4CTM2QA8Jtal4TOKzR5vqOqbLAKV1j7CGVYAs7UCaeF69IQkheSlB4lLwd+2s +9JBS6EvfXW80sIXBZoTfldAFbCIRguhBUiXqKH0ABKyZ4WGfEIqLjiCv+DktM1E 8s+JG7ev2pGF+AJ5lP0N+04CoYTx8hoFZXEN+9tpOny8kA8gc6i51FIuPsIUpR5d lYPLq/yW5gQxGtCSo6Or/z7HhdGA6dlbe4tL+PuadgenL6e6WEUucCZvjZhvV7e2 Eo+dU5xZ64dZU5+rEqojXhpJawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAN5vaJ1 MjPmIqoXnlnxWJadeIkmMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACHfQOFRDdc4KiJGzIbBPFSFqTgSflYisGmgksiFk5xSpjFPo2z2qVg9JeqQ1 G5edv9pxw0TuA0iw2U2ArBaW8mdUr8UYWs/m/JucFFRJKEno7bjU0IncBBNRW1zE lJNwH/99Kdzd5+dA6GqBsEx4uDfHmGrKX70Hi/IUgLKwyfzo42d/FD/ueNnT7q7b 3paNmSBvoyntNR4IL3IH8d6CjS9CF4+yRNs1jKzyzh2rsh/4vk6TQ/YWOS32mfK1 2XDLsKP0zD80Nx+xfQbRrvxxDPoNd82hM+h0cWbohmeyTtTYy4JeVCUjgRPqxvlY W1nExP3AK8HaYoH8mtzPy33KAg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:13:10 2026 by rpki-client