$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: UyzVLsN/oKQgjkO7UB/IdgfcFyQQ7H/eFJrsouculR8= Subject key identifier: 51:9A:89:03:0B:C5:46:9B:79:FA:97:81:C9:0E:8C:4B:95:EE:F0:B9 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 34D3 Signing time: Sun 02 Nov 2025 14:50:05 +0000 Manifest this update: Sun 02 Nov 2025 14:50:04 +0000 Manifest next update: Sun 09 Nov 2025 14:50:04 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: k1RocKvHfxarBYTvUh3GNcekSz4CrX3Y11PLKOO9Ljk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Nov 2 14:50:04 2025 GMT Not After : Nov 9 14:50:04 2025 GMT Subject: CN=69076f9c-d50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:50:e7:e5:94:f0:c1:3c:97:e0:01:20:b6:67: 17:84:1d:ba:84:24:93:ec:92:0e:cf:87:24:10:80: 4f:79:0c:c3:71:9d:43:de:e4:47:b4:48:60:0b:da: 4b:ff:12:fa:69:04:b5:6d:cc:c1:c1:59:ca:08:7a: 74:d7:ff:cc:64:6a:08:62:8f:7a:0b:18:53:dc:72: e3:81:09:6a:b6:97:d5:44:3b:db:11:57:bb:d0:9d: 1f:35:41:be:bb:c2:66:73:6b:a8:1d:76:59:ce:bb: 53:c2:08:c4:18:87:a4:9e:0a:b6:1c:cf:d1:37:a9: 1a:a9:7b:05:c9:0d:42:12:08:28:06:2a:8b:57:b0: 03:1e:bb:63:fc:46:55:8b:b0:6b:87:ba:99:80:7c: 8d:35:70:64:5e:c8:6a:35:de:35:17:41:d3:ba:8d: 83:c1:00:4e:07:56:dd:0e:ea:bf:7b:93:fb:5d:58: 06:28:8f:e6:2b:db:5d:f2:23:0a:ff:09:5e:8e:92: 65:04:2a:17:03:c8:a3:a0:4a:54:d5:ad:0f:53:33: 2f:a1:3f:aa:23:76:d2:75:03:09:a4:6e:38:38:ef: e4:f1:4b:af:1d:7d:cb:18:44:66:69:59:ea:1c:b9: 9f:ef:bc:2a:37:ff:d4:6e:86:c1:6a:58:4d:89:a2: ee:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9A:89:03:0B:C5:46:9B:79:FA:97:81:C9:0E:8C:4B:95:EE:F0:B9 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:3b:13:ed:ba:fa:3a:47:ce:9e:6e:9f:6a:71:52:bc:34:1c: a2:9d:15:ec:7b:51:d3:ac:d9:bf:ce:5d:d1:c0:74:be:ef:ca: 89:b9:70:77:28:b4:0c:1c:8c:ee:9a:da:12:7b:fa:fb:63:5c: 53:a9:92:ed:bb:e4:9c:94:99:cd:98:fb:0e:13:60:7d:d5:9e: fc:a9:57:34:1c:52:c0:3b:b3:e5:c1:b2:75:4d:30:ca:97:cf: ee:86:55:a1:4d:96:df:2a:f6:8a:12:2a:6e:d3:2d:3d:0a:60: f7:e5:7f:31:ea:a3:06:73:5f:ce:2d:b0:6d:d3:f8:a6:af:ca: 99:ab:af:d4:b9:d7:b4:08:79:0f:96:3a:5b:06:04:11:96:ee: 2b:2c:a3:d7:ca:41:63:33:d8:4b:40:18:ea:18:16:e3:50:c9: 69:99:8b:6b:0d:f7:19:2a:67:b7:67:2c:5a:24:6a:0e:c1:87: f3:a0:70:0a:82:6a:b1:71:3b:e6:34:fa:dc:f6:40:f5:6e:cb: c8:30:40:78:67:2b:11:8a:c4:a4:6b:61:7c:06:00:e3:cf:f6: 81:78:a1:c5:07:95:4e:15:73:e3:20:8d:5e:ae:98:bd:bd:a7: 96:25:82:18:ef:53:39:6b:90:c9:35:b6:84:aa:53:93:c4:c3: 3e:67:44:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUxMTAyMTQ1MDA0WhcNMjUxMTA5MTQ1MDA0WjAYMRYwFAYD VQQDEw02OTA3NmY5Yy1kNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlDn5ZTwwTyX4AEgtmcXhB26hCST7JIOz4ckEIBPeQzDcZ1D3uRHtEhgC9pL /xL6aQS1bczBwVnKCHp01//MZGoIYo96CxhT3HLjgQlqtpfVRDvbEVe70J0fNUG+ u8Jmc2uoHXZZzrtTwgjEGIekngq2HM/RN6kaqXsFyQ1CEggoBiqLV7ADHrtj/EZV i7Brh7qZgHyNNXBkXshqNd41F0HTuo2DwQBOB1bdDuq/e5P7XVgGKI/mK9td8iMK /wlejpJlBCoXA8ijoEpU1a0PUzMvoT+qI3bSdQMJpG44OO/k8UuvHX3LGERmaVnq HLmf77wqN//UbobBalhNiaLuHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGaiQML xUabefqXgckOjEuV7vC5MB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQOxPtuvo6R86ebp9qcVK8NByinRXse1HTrNm/zl3RwHS+78qJuXB3 KLQMHIzumtoSe/r7Y1xTqZLtu+SclJnNmPsOE2B91Z78qVc0HFLAO7PlwbJ1TTDK l8/uhlWhTZbfKvaKEipu0y09CmD35X8x6qMGc1/OLbBt0/imr8qZq6/Uude0CHkP ljpbBgQRlu4rLKPXykFjM9hLQBjqGBbjUMlpmYtrDfcZKme3ZyxaJGoOwYfzoHAK gmqxcTvmNPrc9kD1bsvIMEB4ZysRisSka2F8BgDjz/aBeKHFB5VOFXPjII1erpi9 vaeWJYIY71M5a5DJNbaEqlOTxMM+Z0Q0 -----END CERTIFICATE-----Generated at Tue Nov 4 01:04:05 2025 by rpki-client