$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: WjI9ia1NoQng73qalYv7I7O/m841I1MLcqd6qKYeb8A= Subject key identifier: 0F:C9:ED:E5:EA:7B:72:D2:A0:C6:01:44:4A:CA:54:C6:0E:B1:5D:BB Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0270 Signing time: Sun 19 Oct 2025 03:54:21 +0000 Manifest this update: Sun 19 Oct 2025 03:54:20 +0000 Manifest next update: Sun 26 Oct 2025 03:54:20 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: F7U+xnJ2oy6iJqBLQHB1G8niimBct7QmONlosljRx6I=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: p+jEIIVZhiAs2rparlrnkAkhw6aAuDsTWw7U7icR8vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Oct 19 03:54:20 2025 GMT Not After : Oct 26 03:54:20 2025 GMT Subject: CN=68f460ec-defc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:77:e2:b0:63:bf:e5:24:e7:e9:17:c9:a2:7f: 2d:1d:6e:2f:a1:f5:d2:24:64:ee:46:6d:8a:d4:41: ff:2c:ff:98:a6:bf:26:c8:bb:c0:08:a7:e7:ea:21: 7e:37:13:6e:19:6b:34:ad:4d:90:82:07:48:5a:3c: 60:1b:bb:18:02:5f:ec:23:52:b1:bd:72:39:3c:46: 09:8a:e6:e9:27:6f:cd:f2:ed:b6:7d:c1:f2:47:d5: 0a:26:a1:7d:ae:84:a5:ff:3f:99:bf:9a:1b:34:b0: b8:04:24:cc:c3:26:11:ce:e1:17:6a:96:a0:0d:9e: 76:5c:1e:0d:ec:54:6c:25:55:80:83:93:bf:ff:f9: 8a:6d:4d:69:d8:e7:74:85:73:72:6f:b9:04:43:a4: 2a:9d:63:b0:19:f8:9c:2f:8d:3e:04:a4:fe:79:69: c7:28:18:8a:df:94:d1:d1:d2:82:e6:2c:c9:a0:13: a9:66:5e:69:b5:4b:33:e2:5c:95:c5:95:3b:60:a2: d3:cb:a6:cb:f8:41:16:43:70:e9:ae:ce:3d:60:ea: 44:61:ab:99:8b:87:d5:02:4a:53:f8:9e:2c:1f:62: 67:e4:82:2a:3d:5b:1a:3d:95:87:2f:9e:3a:e6:aa: c6:37:cb:d1:0e:11:50:5c:f2:23:f7:aa:d5:67:7b: 27:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C9:ED:E5:EA:7B:72:D2:A0:C6:01:44:4A:CA:54:C6:0E:B1:5D:BB X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:5b:f8:05:a5:e1:7e:33:74:22:b5:2b:54:5d:42:55:9b:26: 16:eb:c3:45:e0:0b:21:af:c9:d1:98:45:b1:a5:76:1c:c2:1e: 7b:28:b9:0d:55:e4:ca:60:53:0d:9f:81:42:bb:88:fc:f0:ba: 91:c3:5b:3f:46:3b:b9:9f:a3:81:a4:a2:a2:a4:63:b0:49:96: 0f:c7:8a:8e:4c:47:49:70:e1:fd:c7:d8:a3:2f:f6:b6:52:72: 65:17:c4:97:d4:0c:2e:e9:19:7a:65:3f:6e:7c:69:92:ec:9a: 1d:48:06:09:78:29:20:80:80:e7:39:35:29:42:fe:98:d9:fe: 49:1e:0b:3e:e5:4c:96:5a:14:cc:12:f2:0e:16:e6:e8:1c:21: bd:db:4e:7c:c1:ad:27:93:3f:b5:3e:4e:35:f1:95:9c:de:bd: 0e:9d:80:09:ba:80:31:f0:83:4f:1b:86:44:87:22:1a:e4:c1: 05:c8:f7:33:f4:ee:4d:af:8f:fc:6b:df:5a:f0:d8:9f:42:0f: 9f:a8:b4:fb:c9:7e:30:cc:91:9a:8a:e2:07:3f:f3:63:8a:6c: dc:e3:83:91:05:18:8b:21:1f:a6:4b:44:bd:e0:dc:06:ad:88: f6:e3:e1:a2:a6:b7:d7:69:13:26:b1:be:95:3b:8e:5e:1e:be: 23:d0:58:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUxMDE5MDM1NDIwWhcNMjUxMDI2MDM1NDIwWjAYMRYwFAYD VQQDEw02OGY0NjBlYy1kZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXfisGO/5STn6RfJon8tHW4vofXSJGTuRm2K1EH/LP+Ypr8myLvACKfn6iF+ NxNuGWs0rU2QggdIWjxgG7sYAl/sI1KxvXI5PEYJiubpJ2/N8u22fcHyR9UKJqF9 roSl/z+Zv5obNLC4BCTMwyYRzuEXapagDZ52XB4N7FRsJVWAg5O///mKbU1p2Od0 hXNyb7kEQ6QqnWOwGficL40+BKT+eWnHKBiK35TR0dKC5izJoBOpZl5ptUsz4lyV xZU7YKLTy6bL+EEWQ3Dprs49YOpEYauZi4fVAkpT+J4sH2Jn5IIqPVsaPZWHL546 5qrGN8vRDhFQXPIj96rVZ3sn4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/J7eXq e3LSoMYBRErKVMYOsV27MB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeW/gFpeF+M3QitStUXUJVmyYW68NF4Ashr8nRmEWxpXYcwh57KLkN VeTKYFMNn4FCu4j88LqRw1s/Rju5n6OBpKKipGOwSZYPx4qOTEdJcOH9x9ijL/a2 UnJlF8SX1Awu6Rl6ZT9ufGmS7JodSAYJeCkggIDnOTUpQv6Y2f5JHgs+5UyWWhTM EvIOFuboHCG92058wa0nkz+1Pk418ZWc3r0OnYAJuoAx8INPG4ZEhyIa5MEFyPcz 9O5Nr4/8a99a8NifQg+fqLT7yX4wzJGaiuIHP/Njimzc44ORBRiLIR+mS0S94NwG rYj24+GiprfXaRMmsb6VO45eHr4j0Fg3 -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:41 2025 by rpki-client