$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: JocJzoR8VttHsOaeVu7cKamb6MV2AWsZ96CZ317xKu8= Subject key identifier: 93:63:7C:F1:25:51:C1:B0:23:6F:15:A7:78:B9:DC:B5:42:C4:D0:0B Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0236 Signing time: Tue 01 Jul 2025 02:36:16 +0000 Manifest this update: Tue 01 Jul 2025 02:36:15 +0000 Manifest next update: Tue 08 Jul 2025 02:36:15 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: FS0PL+8LOrrcQ8igSqRx6upcKLth5oR0uEyCqahwMNU=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Jul 1 02:36:15 2025 GMT Not After : Jul 8 02:36:15 2025 GMT Subject: CN=686349a0-92f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8d:ce:7d:a4:55:89:54:f8:43:c3:7a:c2:e1: 4f:a3:be:78:8e:c1:bb:ba:a4:6f:e5:71:d1:6b:d5: f6:26:3e:4d:af:68:69:4d:c5:b1:83:46:88:5e:2b: aa:bf:4f:9c:bc:d4:0c:52:d6:e0:c8:ff:da:77:f9: 33:00:ab:00:1d:68:f1:7b:8e:dd:6d:c3:fc:f0:b8: 90:af:3f:a3:42:67:90:d3:d3:5b:63:0a:8e:96:21: d0:aa:12:af:e8:2f:69:d9:75:32:b2:5e:f0:ce:44: fc:27:73:f2:6a:1b:bb:0c:8a:6b:16:f5:6e:2c:91: 20:96:6e:5c:49:53:e7:f3:a6:c9:9f:bc:6e:84:66: 26:96:bc:cd:ed:15:e3:1a:95:1e:bf:4b:2b:ea:63: e5:c3:70:82:f2:4a:a8:41:31:ca:7b:e3:92:22:7d: ad:fc:d0:c2:b6:d2:bf:dc:1c:ba:eb:35:33:b3:31: b3:18:a9:f5:8f:54:be:57:7b:4e:af:48:32:0e:9a: 47:c6:92:96:a1:6a:b4:0c:00:e5:03:8b:1b:b1:01: f0:2c:11:58:59:72:a9:23:68:b6:1d:6e:72:07:85: 32:4a:bd:81:6b:f8:f3:b3:37:54:2e:21:c7:ed:35: 4b:9b:98:1c:4f:1e:8d:58:2a:eb:ba:66:2c:9f:82: 00:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:63:7C:F1:25:51:C1:B0:23:6F:15:A7:78:B9:DC:B5:42:C4:D0:0B X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:a0:62:a1:ef:96:cb:e5:de:78:38:18:2f:3f:e1:51:40:f1: f5:1c:5a:f5:b8:f5:02:77:73:00:e4:42:b1:b4:b8:9c:a8:5f: eb:34:cb:bd:3c:5c:cd:86:68:90:05:db:43:f8:8b:4d:f3:ba: 84:85:35:5d:e1:19:72:fd:0e:d7:57:46:82:2f:f7:e6:5a:7c: 90:7b:9e:bb:ae:c7:6d:0b:01:7f:11:77:a2:f7:18:4c:56:c8: 00:84:67:6c:23:6b:de:89:b0:34:39:e2:a0:51:57:5d:82:5e: 9f:46:cb:dd:de:6d:d9:30:35:1d:88:32:da:aa:39:d4:51:3e: f9:a6:86:31:06:1b:22:6c:34:a7:3c:82:0c:d5:5f:59:fa:91: 40:63:16:8a:c8:ee:86:15:4c:39:1c:20:44:af:11:d1:28:cb: 2d:5a:40:7c:43:eb:15:cf:ac:f2:0a:6e:7b:4d:b3:4e:1e:09: ff:86:5f:d8:45:15:62:bc:c6:52:08:42:6e:72:8a:be:03:fb: f6:9c:93:d4:68:4e:b3:9b:98:52:64:fa:47:8e:a1:05:81:8a: 21:d4:cd:a0:08:8e:fb:df:2f:77:70:7a:6c:96:d3:39:da:a3: 6b:30:b8:87:43:ae:1c:1d:2a:59:a7:ca:42:cd:20:65:a3:92: 33:30:62:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwNzAxMDIzNjE1WhcNMjUwNzA4MDIzNjE1WjAYMRYwFAYD VQQDEw02ODYzNDlhMC05MmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI3OfaRViVT4Q8N6wuFPo754jsG7uqRv5XHRa9X2Jj5Nr2hpTcWxg0aIXiuq v0+cvNQMUtbgyP/ad/kzAKsAHWjxe47dbcP88LiQrz+jQmeQ09NbYwqOliHQqhKv 6C9p2XUysl7wzkT8J3Pyahu7DIprFvVuLJEglm5cSVPn86bJn7xuhGYmlrzN7RXj GpUev0sr6mPlw3CC8kqoQTHKe+OSIn2t/NDCttK/3By66zUzszGzGKn1j1S+V3tO r0gyDppHxpKWoWq0DADlA4sbsQHwLBFYWXKpI2i2HW5yB4UySr2Ba/jzszdULiHH 7TVLm5gcTx6NWCrrumYsn4IA9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNjfPEl UcGwI28Vp3i53LVCxNALMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAoGKh75bL5d54OBgvP+FRQPH1HFr1uPUCd3MA5EKxtLicqF/rNMu9 PFzNhmiQBdtD+ItN87qEhTVd4Rly/Q7XV0aCL/fmWnyQe567rsdtCwF/EXei9xhM VsgAhGdsI2veibA0OeKgUVddgl6fRsvd3m3ZMDUdiDLaqjnUUT75poYxBhsibDSn PIIM1V9Z+pFAYxaKyO6GFUw5HCBErxHRKMstWkB8Q+sVz6zyCm57TbNOHgn/hl/Y RRVivMZSCEJucoq+A/v2nJPUaE6zm5hSZPpHjqEFgYoh1M2gCI773y93cHpsltM5 2qNrMLiHQ64cHSpZp8pCzSBlo5IzMGLP -----END CERTIFICATE-----Generated at Thu Jul 3 01:03:39 2025 by rpki-client