$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: YYUAKpO5+S+FX8qOhyiqq77H29ZLDYlUU3FQqCiQXDM= Subject key identifier: 3E:7D:F3:D7:9A:BC:F8:A5:73:27:D1:E8:31:A2:81:C2:41:DC:09:39 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 3483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 3483 Signing time: Fri 30 May 2025 14:53:07 +0000 Manifest this update: Fri 30 May 2025 14:53:06 +0000 Manifest next update: Fri 06 Jun 2025 14:53:06 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: XEzIvwuT9v1StreWuGMt78s0zC49xg0mqikS4tA3NqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: May 30 14:53:06 2025 GMT Not After : Jun 6 14:53:06 2025 GMT Subject: CN=6839c653-3fa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:fc:b3:2e:13:91:9d:a2:98:21:ac:ea:0d: cb:12:5c:e4:23:b8:7b:01:09:f2:8c:3b:4a:43:08: 12:85:42:d8:10:9b:10:85:05:ed:7e:84:56:2f:67: 6f:8c:5f:b0:9c:d2:72:b3:30:50:79:fa:e5:13:15: 73:f3:e4:29:ab:1f:5a:45:95:60:cd:0a:0a:a1:f0: e9:7c:01:59:48:29:05:d5:29:fd:14:6e:e5:3d:71: 20:16:c8:7e:fc:0d:9d:6a:76:17:44:4e:58:88:4d: 41:b4:13:e4:2d:29:ad:db:94:67:8e:71:ea:32:2e: dd:40:44:4f:14:a0:29:4e:59:29:33:8a:80:ff:4d: 99:43:9c:a9:02:5a:51:19:78:59:fe:42:c9:0f:c7: 2a:4e:a5:20:68:ed:17:9f:43:73:00:af:2d:01:ff: 90:ca:85:57:46:14:83:c7:de:9c:7d:5e:fc:16:a4: 65:75:79:86:e6:a6:44:ca:22:32:da:14:a5:4e:b2: 44:3f:a7:0c:42:72:6e:7e:a7:dd:63:05:e2:d1:d3: a5:5e:a0:63:46:d1:25:8d:ef:21:21:17:91:62:53: b4:5f:9a:07:b5:47:36:68:16:5b:a0:00:2a:7e:72: bc:e1:2b:e9:a9:d1:88:33:46:c7:d6:5a:be:85:93: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7D:F3:D7:9A:BC:F8:A5:73:27:D1:E8:31:A2:81:C2:41:DC:09:39 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:c7:54:65:c4:b4:f0:44:15:b5:43:2e:11:9b:e6:c3:cc:2a: 32:bf:95:36:a3:0b:9f:f1:9c:81:51:33:21:79:52:54:89:ca: 93:de:63:38:88:78:19:df:a5:b2:e1:af:58:35:0a:b7:5a:0e: 8a:c8:8b:7c:44:e9:bd:93:1a:cf:25:2b:02:21:79:a2:a0:eb: a5:01:03:9c:88:d2:a3:78:6f:bf:14:f4:a0:13:04:00:64:f4: 35:7b:d5:08:39:da:9b:c1:55:ab:8f:4b:8c:b2:a2:f2:65:fb: 4c:cc:b7:cb:c3:dc:f8:ef:9e:d2:ea:ad:42:5d:49:28:45:51: 47:cb:a3:3d:e5:14:f2:b8:74:b1:06:3d:83:bf:d0:88:b3:9c: 25:78:b2:af:ee:fb:c9:2b:b2:ca:fc:5e:ed:40:29:97:45:bf: 83:a6:35:61:6f:de:90:bd:16:45:aa:f7:31:b7:8b:4b:e6:90: 49:7a:af:db:0d:4d:36:1b:c8:59:6d:5f:98:51:48:01:52:c4: 9a:94:4c:ef:cd:27:f9:a6:87:2f:1a:ae:6a:38:39:44:3d:46: e9:a5:f5:29:ea:90:f2:b1:95:02:04:b5:97:ce:fe:9c:ac:8e: 41:9a:e6:89:ac:95:a6:9f:65:ad:dd:bd:c9:ab:ee:0f:c4:cf: 11:52:83:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUwNTMwMTQ1MzA2WhcNMjUwNjA2MTQ1MzA2WjAYMRYwFAYD VQQDEw02ODM5YzY1My0zZmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvb8sy4TkZ2imCGs6g3LElzkI7h7AQnyjDtKQwgShULYEJsQhQXtfoRWL2dv jF+wnNJyszBQefrlExVz8+Qpqx9aRZVgzQoKofDpfAFZSCkF1Sn9FG7lPXEgFsh+ /A2danYXRE5YiE1BtBPkLSmt25RnjnHqMi7dQERPFKApTlkpM4qA/02ZQ5ypAlpR GXhZ/kLJD8cqTqUgaO0Xn0NzAK8tAf+QyoVXRhSDx96cfV78FqRldXmG5qZEyiIy 2hSlTrJEP6cMQnJufqfdYwXi0dOlXqBjRtElje8hIReRYlO0X5oHtUc2aBZboAAq fnK84SvpqdGIM0bH1lq+hZMo/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5989ea vPilcyfR6DGigcJB3Ak5MB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzx1RlxLTwRBW1Qy4Rm+bDzCoyv5U2owuf8ZyBUTMheVJUicqT3mM4 iHgZ36Wy4a9YNQq3Wg6KyIt8ROm9kxrPJSsCIXmioOulAQOciNKjeG+/FPSgEwQA ZPQ1e9UIOdqbwVWrj0uMsqLyZftMzLfLw9z4757S6q1CXUkoRVFHy6M95RTyuHSx Bj2Dv9CIs5wleLKv7vvJK7LK/F7tQCmXRb+DpjVhb96QvRZFqvcxt4tL5pBJeq/b DU02G8hZbV+YUUgBUsSalEzvzSf5pocvGq5qODlEPUbppfUp6pDysZUCBLWXzv6c rI5BmuaJrJWmn2Wt3b3Jq+4PxM8RUoPR -----END CERTIFICATE-----Generated at Sat May 31 17:12:58 2025 by rpki-client