$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: pycNeFuicdZjraa8C5j2AxJSgXBR6JqIWKcJHnd+G/E= Subject key identifier: 0B:F5:B6:C0:35:AA:4B:7D:8F:15:E7:79:BA:2A:D0:0F:37:6A:72:99 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 3526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 3526 Signing time: Sat 04 Apr 2026 14:48:50 +0000 Manifest this update: Sat 04 Apr 2026 14:48:49 +0000 Manifest next update: Sat 11 Apr 2026 14:48:49 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: wOYhBriqApnXlzbP3PcLwn4nDCejbhJehkqUrDUmEzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Apr 4 14:48:49 2026 GMT Not After : Apr 11 14:48:49 2026 GMT Subject: CN=69d124d2-2238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0e:74:28:ba:99:29:5a:7f:c0:1d:09:4e:0f: 4e:69:f6:0e:39:4f:e7:b9:c5:91:f8:8a:d2:ee:28: d3:c7:30:7f:4a:17:a4:9f:fa:a1:16:7f:f7:c1:8a: 76:e7:c8:6e:bf:27:8d:f8:13:9f:3a:2c:0a:78:14: f0:b6:c2:8a:fa:e7:be:89:49:60:35:a4:33:c4:87: 7c:62:1c:2e:60:57:df:89:73:ac:eb:59:7e:31:ed: a5:3c:cf:41:b2:86:18:85:4a:eb:c9:25:c5:d5:da: 0a:7b:37:ad:f9:1d:b2:93:91:37:ed:e3:e9:79:da: 07:73:40:24:66:93:7c:c5:17:08:5c:31:ef:0c:56: bf:f4:e6:d2:3e:65:5f:82:c1:a9:c9:8d:db:ab:50: 20:31:8d:a0:2d:8d:19:f4:b6:90:8f:3e:41:89:c6: d8:a5:5d:3a:01:c7:d8:63:a0:29:9f:47:e0:8b:b3: eb:ce:c6:52:3d:c7:79:55:44:d6:ee:13:a8:ff:4b: b0:07:bd:d6:ee:04:b6:51:c0:cb:51:33:77:60:2c: 00:5a:c9:a0:29:37:3c:6b:52:4c:a3:3f:c3:d8:60: a2:79:10:d4:4d:58:d2:6f:c2:48:3e:41:d0:db:81: 38:16:fa:d8:15:0f:8d:8d:15:e3:32:5f:86:aa:3f: e1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F5:B6:C0:35:AA:4B:7D:8F:15:E7:79:BA:2A:D0:0F:37:6A:72:99 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:1c:5c:f4:ef:43:00:48:b2:3c:35:54:fa:04:48:d9:9b:ce: dc:6b:29:bc:62:c4:8a:9e:57:3f:8c:fc:96:f8:a8:90:49:27: 20:82:6a:75:c2:f3:d9:13:30:01:e3:bc:e2:7d:7d:b2:c6:88: a4:8c:e0:20:d7:19:0d:fd:3b:9e:45:74:8b:f4:42:4b:be:99: 3c:6f:d4:dc:81:72:4f:8c:76:95:26:40:a0:de:6e:7d:97:21: 2a:ee:ab:cf:e1:78:ce:3b:7d:07:78:61:79:42:bb:3a:99:cd: fc:04:e5:d9:22:6c:c2:65:47:e9:c6:d5:20:fd:5d:6b:d9:0f: af:89:86:df:37:9a:c9:6c:c5:63:a3:ab:50:dd:55:25:81:0a: e6:dd:7f:bd:5d:82:30:d8:9a:31:eb:b1:a9:b4:10:5c:17:2f: 2f:12:93:b9:42:17:d5:ab:82:87:41:a2:0a:47:b3:63:91:67: 48:66:01:2e:ad:74:da:f8:81:88:01:60:5f:8f:83:e7:91:ac: ae:14:c7:5f:07:84:f4:bf:3f:5f:80:0d:34:28:04:55:a3:fa: e9:ba:7b:cd:91:5b:a1:da:ab:32:73:9d:5f:74:34:1e:16:dc: 76:df:7e:6c:0b:b0:8a:5f:46:d2:20:16:69:88:4f:1f:35:5b: 56:3a:e2:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjYwNDA0MTQ0ODQ5WhcNMjYwNDExMTQ0ODQ5WjAYMRYwFAYD VQQDEw02OWQxMjRkMi0yMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow50KLqZKVp/wB0JTg9OafYOOU/nucWR+IrS7ijTxzB/Shekn/qhFn/3wYp2 58huvyeN+BOfOiwKeBTwtsKK+ue+iUlgNaQzxId8YhwuYFffiXOs61l+Me2lPM9B soYYhUrrySXF1doKezet+R2yk5E37ePpedoHc0AkZpN8xRcIXDHvDFa/9ObSPmVf gsGpyY3bq1AgMY2gLY0Z9LaQjz5BicbYpV06AcfYY6Apn0fgi7PrzsZSPcd5VUTW 7hOo/0uwB73W7gS2UcDLUTN3YCwAWsmgKTc8a1JMoz/D2GCieRDUTVjSb8JIPkHQ 24E4FvrYFQ+NjRXjMl+Gqj/hFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAv1tsA1 qkt9jxXneboq0A83anKZMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAABxc9O9DAEiyPDVU+gRI2ZvO3GspvGLEip5XP4z8lviokEknIIJqdcLz2RMw AeO84n19ssaIpIzgINcZDf07nkV0i/RCS76ZPG/U3IFyT4x2lSZAoN5ufZchKu6r z+F4zjt9B3hheUK7OpnN/ATl2SJswmVH6cbVIP1da9kPr4mG3zeayWzFY6OrUN1V JYEK5t1/vV2CMNiaMeuxqbQQXBcvLxKTuUIX1auCh0GiCkezY5FnSGYBLq102viB iAFgX4+D55GsrhTHXweE9L8/X4ANNCgEVaP66bp7zZFbodqrMnOdX3Q0Hhbcdt9+ bAuwil9G0iAWaYhPHzVbVjribA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:46 2026 by rpki-client