$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: X5kKZ0b/79tSmNbCIrgX25GZuKnKfhGT18ZEPqLPMZI= Subject key identifier: B7:D9:71:EB:6E:B0:76:27:5C:E4:F0:38:42:CA:8F:26:FD:C6:B9:26 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 021E Signing time: Tue 13 May 2025 01:46:15 +0000 Manifest this update: Tue 13 May 2025 01:46:15 +0000 Manifest next update: Tue 20 May 2025 01:46:15 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: N3Cgq9+NCyi//rR4S2TXExCDue+APPGJkvjy2hky9I0=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: May 13 01:46:15 2025 GMT Not After : May 20 01:46:15 2025 GMT Subject: CN=6822a467-77a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:3d:f7:38:c2:59:35:8f:c1:9e:1b:66:40: b0:a7:ab:63:3c:cc:b4:e3:cf:c9:68:29:b7:8c:77: cc:d6:71:58:14:f9:70:2f:7c:62:a0:5a:a1:94:ee: a0:06:ec:17:cf:a4:56:c9:1a:9a:54:b7:e6:77:f3: 7d:89:1f:bd:e8:fd:7b:fc:52:30:52:6e:25:99:ec: 47:de:a3:1e:3c:5e:a6:6c:01:64:43:69:02:a0:fa: c3:a3:e1:81:29:7b:c4:31:f3:fb:8e:fe:98:99:3a: 34:30:03:15:96:35:52:10:c7:5c:3a:96:25:2b:b3: 6d:6d:86:8e:59:67:bb:d3:78:cf:25:ef:0d:fd:b4: b4:59:f7:c3:fb:9f:2c:3e:62:44:50:41:c2:1d:5a: f4:01:8b:29:a0:79:d3:32:22:af:37:52:7f:7a:53: e6:79:e7:a8:30:09:33:ab:2c:2b:3b:be:ca:59:ed: 59:9f:68:1b:45:1b:f7:ce:6c:cf:65:f4:e9:1e:dc: 78:2d:3c:3a:c6:9c:5f:62:0f:d6:69:a8:e4:a7:9a: 1a:bd:5f:1b:e0:c9:b8:85:ee:25:a0:97:44:bd:0d: 68:af:fd:3f:6a:08:46:53:dc:4d:2c:65:56:ed:0d: ff:16:9f:7b:52:04:fe:58:c3:68:b2:e5:79:12:3d: 55:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D9:71:EB:6E:B0:76:27:5C:E4:F0:38:42:CA:8F:26:FD:C6:B9:26 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:16:8c:d5:44:3d:7b:c5:9d:ec:2b:fd:06:2b:5c:8e:61:c5: 72:88:df:23:7c:73:d7:19:a6:38:de:a9:f5:0c:83:8d:b5:28: 8c:d4:b3:5f:d8:65:f6:e0:b5:c9:06:38:b9:84:81:79:bb:9a: 99:ad:16:c4:38:9d:b3:a0:bd:c9:0f:7f:5c:0b:d7:e6:8a:bc: 35:7e:88:a0:79:25:6b:12:f0:e9:73:5e:80:39:17:fc:7f:07: ab:89:59:d0:ee:ba:f2:f2:a0:2f:b5:c5:a5:f0:26:57:b1:ac: 02:30:0b:29:d0:58:dd:80:d0:51:8d:b9:a1:40:e1:76:fa:70: 24:09:c3:6a:2c:84:03:11:eb:98:28:87:82:0b:60:1c:f8:e0: ab:67:b4:e3:8d:d5:2d:1e:db:36:5e:11:11:bc:ee:6d:19:4b: 83:df:e2:b6:65:f2:9d:4c:d5:86:0a:7d:78:d8:2e:9f:3a:85: 08:70:ec:b3:58:0c:86:95:6d:fd:c7:75:92:9f:03:6a:28:d4: d7:1e:7e:ce:2b:d7:2f:14:62:6e:b2:14:8a:d5:9f:07:0e:e4: 24:25:69:7e:df:06:45:2f:41:98:e6:1a:1e:1d:ed:be:87:e3: 10:e7:23:46:ac:1b:fc:a2:30:16:fe:97:d5:79:23:94:49:5f: bd:b4:81:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwNTEzMDE0NjE1WhcNMjUwNTIwMDE0NjE1WjAYMRYwFAYD VQQDEw02ODIyYTQ2Ny03N2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww499zjCWTWPwZ4bZkCwp6tjPMy048/JaCm3jHfM1nFYFPlwL3xioFqhlO6g BuwXz6RWyRqaVLfmd/N9iR+96P17/FIwUm4lmexH3qMePF6mbAFkQ2kCoPrDo+GB KXvEMfP7jv6YmTo0MAMVljVSEMdcOpYlK7NtbYaOWWe703jPJe8N/bS0WffD+58s PmJEUEHCHVr0AYspoHnTMiKvN1J/elPmeeeoMAkzqywrO77KWe1Zn2gbRRv3zmzP ZfTpHtx4LTw6xpxfYg/Waajkp5oavV8b4Mm4he4loJdEvQ1or/0/aghGU9xNLGVW 7Q3/Fp97UgT+WMNosuV5Ej1VfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfZcetu sHYnXOTwOELKjyb9xrkmMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLFozVRD17xZ3sK/0GK1yOYcVyiN8jfHPXGaY43qn1DIONtSiM1LNf 2GX24LXJBji5hIF5u5qZrRbEOJ2zoL3JD39cC9fmirw1foigeSVrEvDpc16AORf8 fweriVnQ7rry8qAvtcWl8CZXsawCMAsp0FjdgNBRjbmhQOF2+nAkCcNqLIQDEeuY KIeCC2Ac+OCrZ7TjjdUtHts2XhERvO5tGUuD3+K2ZfKdTNWGCn142C6fOoUIcOyz WAyGlW39x3WSnwNqKNTXHn7OK9cvFGJushSK1Z8HDuQkJWl+3wZFL0GY5hoeHe2+ h+MQ5yNGrBv8ojAW/pfVeSOUSV+9tIG1 -----END CERTIFICATE-----Generated at Tue May 13 04:34:10 2025 by rpki-client