$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: BVx+ZzS/hEKp5kfZqXhqlmt1J77VF4+r3xNu8/toyLU= Subject key identifier: 35:7D:E7:27:98:75:02:5E:42:14:4E:D7:55:9E:AF:82:0C:2E:3B:52 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0213 Signing time: Mon 21 Apr 2025 01:36:47 +0000 Manifest this update: Mon 21 Apr 2025 01:36:47 +0000 Manifest next update: Mon 28 Apr 2025 01:36:47 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: 1+wAaDiZPev65/swzas3EPKb2kl8/YP+044xbYHePhA=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 01:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Apr 21 01:36:47 2025 GMT Not After : Apr 28 01:36:47 2025 GMT Subject: CN=6805a12f-1f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6f:f5:d1:f9:42:42:f6:02:39:5f:12:6f:31: 9f:e9:81:86:d0:7f:0b:b9:21:86:8d:6c:29:d1:d3: 7a:1c:66:36:f3:c8:cb:66:03:96:82:89:23:60:29: 36:62:e8:8e:20:4b:14:99:36:29:39:68:4a:88:10: b7:7e:5d:e5:7b:84:a9:40:1b:4a:ef:76:0a:31:1c: 4c:fe:2d:f3:70:26:b6:87:c5:dc:8d:80:cf:a9:10: 9a:73:08:31:ed:56:f6:89:2b:25:7e:04:49:1f:7e: bd:6b:71:1d:a8:73:e0:c5:a0:98:f5:76:17:d6:2d: eb:9f:82:05:17:ec:5c:97:4b:fd:39:5b:15:20:f9: a8:f9:50:eb:ff:dc:59:f6:33:b3:06:f8:b5:ad:4d: 92:32:45:c0:8d:20:df:2c:5f:55:a0:33:fa:2f:8a: bb:e5:1b:a2:54:d0:12:c8:9c:03:f5:21:ac:c2:2c: 59:b9:f0:8d:ff:f7:27:30:de:a3:e3:a6:b9:3a:9b: c9:a3:01:6f:f3:cd:60:71:61:fb:04:8c:5a:41:9e: f1:b2:10:a0:d5:51:9b:8b:89:ae:6b:3b:af:58:77: 7c:f6:8f:e6:60:34:17:c5:fd:87:d4:cb:a5:75:78: c8:1a:2f:04:fa:d4:fc:bd:65:1b:ed:f6:e6:89:62: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7D:E7:27:98:75:02:5E:42:14:4E:D7:55:9E:AF:82:0C:2E:3B:52 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d6:20:76:84:ce:68:16:8f:28:07:49:8c:6c:75:be:f4:3e: 8e:5c:86:69:8c:94:87:2f:ab:12:03:fa:ed:c1:03:02:93:d9: 72:22:35:6f:38:07:0a:91:d4:09:f8:e8:3b:f1:29:95:dc:5d: 1b:27:b1:72:ed:a1:3c:a5:b4:e4:dd:91:a8:59:dd:eb:0f:72: 6f:88:42:11:a0:a6:0c:c7:8f:a8:7b:72:46:2d:34:eb:1e:3d: f8:6e:da:91:97:d5:31:be:3a:38:07:c0:22:fb:8a:84:32:5b: 2b:f1:a0:2b:26:d6:d7:1d:45:8d:a8:ba:d2:00:ec:3e:0f:de: dd:c5:bc:c1:18:c1:9b:d8:d4:51:8d:36:3d:b3:fa:a6:62:83: f6:f8:c0:9f:31:dc:54:38:25:13:51:ff:04:8d:64:70:a7:e4: 17:e4:33:7a:de:d7:fb:a7:b9:62:04:ae:c9:cf:b8:a7:60:13: b5:db:a6:5f:51:27:d8:76:6d:53:61:95:9a:07:07:bd:e8:b2: 22:7f:83:1a:99:45:4a:41:65:7f:7a:8c:b5:c6:c6:f6:c4:f2: 16:7b:9a:72:82:a3:71:99:d8:e3:e6:1d:8a:bc:69:64:78:e3: 09:2e:10:2a:25:aa:e8:08:80:bd:0b:28:ad:d3:08:d9:79:fb: ad:b6:21:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUwNDIxMDEzNjQ3WhcNMjUwNDI4MDEzNjQ3WjAYMRYwFAYD VQQDEw02ODA1YTEyZi0xZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2/10flCQvYCOV8SbzGf6YGG0H8LuSGGjWwp0dN6HGY288jLZgOWgokjYCk2 YuiOIEsUmTYpOWhKiBC3fl3le4SpQBtK73YKMRxM/i3zcCa2h8XcjYDPqRCacwgx 7Vb2iSslfgRJH369a3EdqHPgxaCY9XYX1i3rn4IFF+xcl0v9OVsVIPmo+VDr/9xZ 9jOzBvi1rU2SMkXAjSDfLF9VoDP6L4q75RuiVNASyJwD9SGswixZufCN//cnMN6j 46a5OpvJowFv881gcWH7BIxaQZ7xshCg1VGbi4muazuvWHd89o/mYDQXxf2H1Mul dXjIGi8E+tT8vWUb7fbmiWKMzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV95yeY dQJeQhRO11Wer4IMLjtSMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD1iB2hM5oFo8oB0mMbHW+9D6OXIZpjJSHL6sSA/rtwQMCk9lyIjVv OAcKkdQJ+Og78SmV3F0bJ7Fy7aE8pbTk3ZGoWd3rD3JviEIRoKYMx4+oe3JGLTTr Hj34btqRl9Uxvjo4B8Ai+4qEMlsr8aArJtbXHUWNqLrSAOw+D97dxbzBGMGb2NRR jTY9s/qmYoP2+MCfMdxUOCUTUf8EjWRwp+QX5DN63tf7p7liBK7Jz7inYBO126Zf USfYdm1TYZWaBwe96LIif4MamUVKQWV/eoy1xsb2xPIWe5pygqNxmdjj5h2KvGlk eOMJLhAqJaroCIC9Cyit0wjZefuttiGG -----END CERTIFICATE-----Generated at Mon Apr 21 07:53:55 2025 by rpki-client