$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: pg5wdf6V7HcBfljpsp1CmMf8FK7llpCgIxGCKGTfAnE= Subject key identifier: 8D:A3:49:48:79:3A:18:DC:E9:4E:BA:14:E0:6D:12:D8:E7:86:68:72 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0251 Signing time: Sat 23 Aug 2025 02:03:29 +0000 Manifest this update: Sat 23 Aug 2025 02:03:29 +0000 Manifest next update: Sat 30 Aug 2025 02:03:29 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: BaGueTMji0D0FPZLWFsqnCie8+3knpBmgsEBGn99ykY=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Aug 23 02:03:29 2025 GMT Not After : Aug 30 02:03:29 2025 GMT Subject: CN=68a92171-2db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cc:88:92:03:8d:bf:fe:bb:06:24:f9:77:a8: 89:95:47:09:00:8d:73:69:87:f3:40:d7:82:30:81: 75:f0:18:7a:14:a8:f8:4b:59:cf:27:af:b2:74:74: 09:24:0f:0d:31:c5:aa:28:b6:79:be:47:f9:68:8f: 6e:e7:69:33:21:ea:79:65:8b:6d:6e:3b:1f:ec:64: 04:a8:4e:d9:60:2b:b2:dc:41:6f:8f:a8:0f:38:0f: 3b:65:2a:56:a4:b0:6b:b3:de:a9:58:bf:75:e3:44: dd:a7:65:3e:01:3f:66:28:88:3f:e1:f8:8b:d0:80: 09:24:54:67:f8:d9:88:7d:12:e1:4c:6c:40:f9:ec: 53:f7:0b:03:e7:aa:d6:c3:bc:6b:7d:82:4a:ea:4e: 6a:25:06:87:6c:8f:ff:51:2c:de:98:0c:46:2a:39: 5d:00:80:e5:0f:fb:95:21:77:8a:c7:2e:7b:41:ee: fa:f6:8e:ad:2f:0b:9b:1b:77:e2:54:cd:a5:c6:bf: 96:c4:c9:76:64:88:79:20:bc:94:28:17:50:d9:99: 76:f8:f8:48:9d:04:f8:fb:a5:f2:08:ff:b1:22:6c: 56:8c:4b:01:a0:41:8a:e8:e8:03:fd:e7:8a:eb:bb: 43:74:e8:58:df:02:e5:2c:62:4c:83:a2:2e:15:06: 9c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A3:49:48:79:3A:18:DC:E9:4E:BA:14:E0:6D:12:D8:E7:86:68:72 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:11:ba:cc:26:77:1c:34:1b:c1:ec:83:82:9a:6c:f3:a0:c6: ef:c7:32:86:9c:df:05:a3:77:73:64:f9:c8:eb:8c:57:c8:81: a0:78:be:97:ac:73:c2:8d:85:fb:21:5e:74:af:17:24:64:06: 8f:6b:7e:09:65:e4:f5:aa:4b:bf:2b:27:5f:b9:e2:5a:ff:cb: 95:3e:b1:b1:b1:fa:61:8d:67:04:73:37:35:47:db:cf:2e:4c: 31:b5:c6:47:65:28:92:ea:b8:c0:71:6d:63:9f:00:91:ad:e4: ef:9b:91:36:d4:03:c7:5e:64:fa:81:05:ce:7d:ab:51:0e:9f: 31:ec:ea:61:56:ea:70:31:bc:e7:e3:d4:b3:00:74:45:96:05: 15:81:4d:31:f5:d5:91:16:95:50:bc:3f:fd:dd:66:2a:b3:d2: 95:24:40:b3:35:9d:6f:3b:a6:5a:ab:62:94:c5:60:25:ec:82: a3:03:4f:ec:fc:4e:77:fc:2a:52:de:c3:46:c8:26:08:9e:b1: 84:64:d6:89:56:52:b8:e4:8b:34:20:1d:50:39:bc:ec:dd:ad: 20:ef:08:be:3f:b3:9f:9d:e5:c2:13:81:be:9d:18:54:a9:b3: ad:83:8f:d5:13:37:eb:eb:7c:97:22:8b:f1:0a:89:35:1c:77: 07:57:b0:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwODIzMDIwMzI5WhcNMjUwODMwMDIwMzI5WjAYMRYwFAYD VQQDEw02OGE5MjE3MS0yZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1syIkgONv/67BiT5d6iJlUcJAI1zaYfzQNeCMIF18Bh6FKj4S1nPJ6+ydHQJ JA8NMcWqKLZ5vkf5aI9u52kzIep5ZYttbjsf7GQEqE7ZYCuy3EFvj6gPOA87ZSpW pLBrs96pWL9140Tdp2U+AT9mKIg/4fiL0IAJJFRn+NmIfRLhTGxA+exT9wsD56rW w7xrfYJK6k5qJQaHbI//USzemAxGKjldAIDlD/uVIXeKxy57Qe769o6tLwubG3fi VM2lxr+WxMl2ZIh5ILyUKBdQ2Zl2+PhInQT4+6XyCP+xImxWjEsBoEGK6OgD/eeK 67tDdOhY3wLlLGJMg6IuFQacOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2jSUh5 Ohjc6U66FOBtEtjnhmhyMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoEbrMJnccNBvB7IOCmmzzoMbvxzKGnN8Fo3dzZPnI64xXyIGgeL6X rHPCjYX7IV50rxckZAaPa34JZeT1qku/KydfueJa/8uVPrGxsfphjWcEczc1R9vP LkwxtcZHZSiS6rjAcW1jnwCRreTvm5E21APHXmT6gQXOfatRDp8x7OphVupwMbzn 49SzAHRFlgUVgU0x9dWRFpVQvD/93WYqs9KVJECzNZ1vO6Zaq2KUxWAl7IKjA0/s /E53/CpS3sNGyCYInrGEZNaJVlK45Is0IB1QObzs3a0g7wi+P7OfneXCE4G+nRhU qbOtg4/VEzfr63yXIovxCok1HHcHV7Cb -----END CERTIFICATE-----Generated at Sun Aug 24 03:05:18 2025 by rpki-client