$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: L5ReGXBC0YYHCdv4+eyQW2p7WGtvsItR4rcYP8HyERw= Subject key identifier: E9:40:6E:50:0B:9F:34:31:CD:DA:A0:14:45:D7:BE:51:15:71:9A:C2 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0248 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0242 Signing time: Fri 25 Jul 2025 02:16:27 +0000 Manifest this update: Fri 25 Jul 2025 02:16:27 +0000 Manifest next update: Fri 01 Aug 2025 02:16:27 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: enQKTiUQSQHgkMmj8tWm5pnW+yyYXklPqyBj6Epywtg=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 02:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 584 (0x248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Jul 25 02:16:27 2025 GMT Not After : Aug 1 02:16:27 2025 GMT Subject: CN=6882e8fb-ba75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:af:25:5b:78:57:ed:ef:73:98:db:e5:ce:d2: 9a:f2:54:31:32:30:91:d7:d3:81:4e:81:fa:d7:68: 5d:32:3a:54:39:af:6b:45:a0:7e:0f:47:e7:82:e1: ab:6c:fa:a1:92:b0:1c:ce:2a:d8:0a:3c:bb:d6:0c: 6d:92:67:c6:7f:08:cb:29:a7:50:0a:17:41:bf:55: 0b:09:9c:0b:88:92:50:ab:54:50:6a:57:28:fe:ab: 7d:ce:30:ae:5e:b8:3f:de:0d:d0:56:14:1f:19:b4: 36:ca:8e:4d:86:84:86:01:51:b6:46:dc:92:14:f2: 4f:d5:f8:11:2e:db:35:b6:71:f6:5a:2d:8f:dd:65: 80:b3:b7:4e:f9:b5:c8:ec:82:5d:1b:98:8a:0c:a5: a1:b0:81:77:fe:f2:d5:7b:fb:48:21:da:6e:39:b1: 55:a5:97:11:c9:61:13:42:ea:2f:45:a7:47:0f:8b: fb:34:0c:d5:2b:a3:12:74:45:56:33:b0:ab:4a:59: 10:cf:9e:a3:64:f0:51:85:29:f4:f2:34:79:74:b2: c3:50:c6:36:d7:f5:7f:f3:a1:7b:af:7a:8b:d8:d2: 20:de:19:dc:40:31:90:01:49:43:20:25:b5:e1:9a: b1:fc:14:76:71:8c:65:30:c3:ac:4b:d8:ad:7c:c1: c3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:40:6E:50:0B:9F:34:31:CD:DA:A0:14:45:D7:BE:51:15:71:9A:C2 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:1c:44:05:51:68:00:e3:e7:71:f4:d6:a2:0f:f6:9a:86:8f: a3:69:75:e8:54:57:10:6d:7b:60:cc:72:07:6d:dd:a7:3d:25: 2b:28:69:13:2e:6a:20:c1:61:e1:54:8e:df:df:92:cf:36:f9: dd:e9:35:e9:50:34:53:3e:b4:f6:fa:b2:ac:27:3c:30:5a:e3: dc:29:24:5c:28:78:63:b4:9a:e9:22:3d:72:f2:21:56:4e:5a: a7:86:4e:bc:2f:67:e2:4f:06:52:3a:0e:0f:ca:1a:ae:a1:c5: 31:f9:1a:cf:7d:45:88:de:21:03:d1:d6:52:2f:b0:38:ff:06: 42:c9:8b:35:78:3b:af:96:46:d6:35:bc:2f:6d:0f:a7:a7:f8: 66:8c:15:a8:d7:84:5c:36:5b:90:37:6d:ac:d2:4f:80:74:52: d3:7f:fc:30:31:f7:ee:33:28:53:87:cc:3d:e1:dd:29:0c:ac: 65:e4:55:d6:ce:16:be:ee:7a:bc:7b:8f:bf:4b:aa:1a:11:d2: 33:94:e3:d5:89:16:88:53:5b:d9:15:ec:ce:75:71:60:81:27: 9c:8b:cb:ef:74:2d:a5:44:a2:5a:0b:c5:37:e1:b1:10:3d:c1: 5d:d8:16:58:65:cf:d2:81:7f:d8:92:46:25:b9:b5:bb:97:67: c9:ce:b6:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwNzI1MDIxNjI3WhcNMjUwODAxMDIxNjI3WjAYMRYwFAYD VQQDEw02ODgyZThmYi1iYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK8lW3hX7e9zmNvlztKa8lQxMjCR19OBToH612hdMjpUOa9rRaB+D0fnguGr bPqhkrAczirYCjy71gxtkmfGfwjLKadQChdBv1ULCZwLiJJQq1RQalco/qt9zjCu Xrg/3g3QVhQfGbQ2yo5NhoSGAVG2RtySFPJP1fgRLts1tnH2Wi2P3WWAs7dO+bXI 7IJdG5iKDKWhsIF3/vLVe/tIIdpuObFVpZcRyWETQuovRadHD4v7NAzVK6MSdEVW M7CrSlkQz56jZPBRhSn08jR5dLLDUMY21/V/86F7r3qL2NIg3hncQDGQAUlDICW1 4Zqx/BR2cYxlMMOsS9itfMHDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlAblAL nzQxzdqgFEXXvlEVcZrCMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSHEQFUWgA4+dx9NaiD/aaho+jaXXoVFcQbXtgzHIHbd2nPSUrKGkT LmogwWHhVI7f35LPNvnd6TXpUDRTPrT2+rKsJzwwWuPcKSRcKHhjtJrpIj1y8iFW Tlqnhk68L2fiTwZSOg4PyhquocUx+RrPfUWI3iED0dZSL7A4/wZCyYs1eDuvlkbW NbwvbQ+np/hmjBWo14RcNluQN22s0k+AdFLTf/wwMffuMyhTh8w94d0pDKxl5FXW zha+7nq8e4+/S6oaEdIzlOPViRaIU1vZFezOdXFggSeci8vvdC2lRKJaC8U34bEQ PcFd2BZYZc/SgX/YkkYlubW7l2fJzrZq -----END CERTIFICATE-----Generated at Fri Jul 25 05:23:58 2025 by rpki-client