$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: gFPFY7efL5Uc7OKDE7oNBiKJLU1SrRhibph+Uutwn90= Subject key identifier: 1E:C3:98:1A:3E:14:D7:27:4C:3C:F7:4F:96:44:95:4D:B2:83:5F:DF Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 353D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 353D Signing time: Wed 20 May 2026 14:50:27 +0000 Manifest this update: Wed 20 May 2026 14:50:26 +0000 Manifest next update: Wed 27 May 2026 14:50:26 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: 5P4PJMEChosw4KPr7tLOwSR2b5HOcvOiy1j2voHU4d0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13629 (0x353d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: May 20 14:50:26 2026 GMT Not After : May 27 14:50:26 2026 GMT Subject: CN=6a0dca33-7059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:02:f3:d1:18:67:8c:bb:2b:b3:b1:7f:21:f2: 27:96:ee:1c:ad:93:18:1b:2a:df:8f:84:9b:8c:2c: 83:8a:56:f9:65:41:d4:53:cc:cd:83:bb:27:b9:eb: 5a:93:e3:93:44:33:c7:83:31:6e:5c:3e:bd:47:80: ac:dc:ce:e9:69:73:cd:9b:19:4d:e2:ee:a1:15:04: 15:8b:85:18:92:10:a2:0c:6b:bb:55:73:c3:50:6e: 5a:cb:4e:da:9e:e5:b0:a5:39:a6:56:00:ef:4b:4c: 53:d0:1d:f7:44:e6:24:6a:df:cf:90:e9:90:c3:54: e6:56:ea:be:17:8d:0b:cf:7d:6e:0b:3b:9d:6d:f6: c7:03:e3:85:c8:87:b3:35:fa:be:15:67:8a:66:46: 80:c9:e7:64:59:7e:d5:c9:17:3d:3c:ee:c4:26:e7: 4c:dc:d8:c5:d2:01:45:84:b5:2c:8c:eb:f2:05:5b: fa:ee:a1:93:4a:ec:43:9a:54:12:af:83:83:6e:23: 62:0f:df:69:88:aa:11:96:07:4d:59:df:e0:e9:80: 19:ad:fe:8b:69:74:df:39:5a:c5:6b:68:a0:b8:4c: 5d:11:2a:fc:48:71:96:b2:7d:69:d8:28:dc:6b:90: bd:70:4b:69:c9:6a:56:5a:e4:53:c6:eb:91:e2:6d: b2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C3:98:1A:3E:14:D7:27:4C:3C:F7:4F:96:44:95:4D:B2:83:5F:DF X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:91:85:d1:9c:44:c9:a5:d6:43:40:57:79:1d:a3:ac:53:23: 0a:da:6b:bd:fa:a4:4d:bc:a0:94:f7:83:b1:27:93:dc:a0:5c: f0:26:f9:57:28:71:31:8c:a7:cf:84:0f:17:71:65:b4:b3:55: 86:e9:d3:56:a1:8b:f2:66:0d:43:b5:18:4b:1e:08:07:6a:ca: 7c:51:b6:89:53:6c:1d:5c:5c:3c:42:30:c9:15:3d:46:b9:66: 9f:b5:fd:d3:50:8d:67:b8:65:e5:07:7d:39:02:68:62:7e:af: f5:8f:4c:2f:9e:49:5c:52:57:a5:9e:0f:da:9e:e4:8c:83:0a: e8:36:16:7a:99:20:40:7a:94:64:50:a3:6b:59:66:75:44:ae: 50:ee:d6:3d:06:6b:22:cf:37:cf:79:42:9d:f1:e5:bc:97:e0: c1:0b:92:c0:46:09:d4:b8:25:73:ef:13:a9:45:8a:b9:9d:7a: ca:ea:55:19:b4:55:5c:f8:d2:8a:42:4f:6a:57:86:7f:75:06: 42:1c:2c:68:3f:16:b7:53:ff:8a:b0:5a:ec:5e:a7:6f:cd:f3: 4b:a2:b4:e9:74:62:e5:d3:94:5a:5b:9a:23:62:19:89:39:04: 01:23:2b:8d:1c:81:c5:f9:45:ab:8e:53:ce:d8:a1:b3:51:dc: 5e:4c:e5:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjYwNTIwMTQ1MDI2WhcNMjYwNTI3MTQ1MDI2WjAYMRYwFAYD VQQDEw02YTBkY2EzMy03MDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQLz0RhnjLsrs7F/IfInlu4crZMYGyrfj4SbjCyDilb5ZUHUU8zNg7snueta k+OTRDPHgzFuXD69R4Cs3M7paXPNmxlN4u6hFQQVi4UYkhCiDGu7VXPDUG5ay07a nuWwpTmmVgDvS0xT0B33ROYkat/PkOmQw1TmVuq+F40Lz31uCzudbfbHA+OFyIez Nfq+FWeKZkaAyedkWX7VyRc9PO7EJudM3NjF0gFFhLUsjOvyBVv67qGTSuxDmlQS r4ODbiNiD99piKoRlgdNWd/g6YAZrf6LaXTfOVrFa2iguExdESr8SHGWsn1p2Cjc a5C9cEtpyWpWWuRTxuuR4m2ygwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB7DmBo+ FNcnTDz3T5ZElU2yg1/fMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXpGF0ZxEyaXWQ0BXeR2jrFMjCtprvfqkTbyglPeDsSeT3KBc8Cb5VyhxMYyn z4QPF3FltLNVhunTVqGL8mYNQ7UYSx4IB2rKfFG2iVNsHVxcPEIwyRU9Rrlmn7X9 01CNZ7hl5Qd9OQJoYn6v9Y9ML55JXFJXpZ4P2p7kjIMK6DYWepkgQHqUZFCja1lm dUSuUO7WPQZrIs83z3lCnfHlvJfgwQuSwEYJ1Lglc+8TqUWKuZ16yupVGbRVXPjS ikJPaleGf3UGQhwsaD8Wt1P/irBa7F6nb83zS6K06XRi5dOUWluaI2IZiTkEASMr jRyBxflFq45Tztihs1HcXkzlNw== -----END CERTIFICATE-----Generated at Thu May 21 10:29:05 2026 by rpki-client