$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: r8ii6pQGRgPP1DcOW4c9NoxMYFsyRQ++9rVxt0c766Y= Subject key identifier: 1D:4F:2C:A9:F0:C8:7E:F0:CA:D0:83:5C:00:E8:84:D5:CA:43:09:97 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 34AD Signing time: Wed 20 Aug 2025 14:50:16 +0000 Manifest this update: Wed 20 Aug 2025 14:50:15 +0000 Manifest next update: Wed 27 Aug 2025 14:50:15 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: s3sB+4C1yctiCMdKbqnnajKgwqPSFlVg1YfRc4Xn7bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Aug 20 14:50:15 2025 GMT Not After : Aug 27 14:50:15 2025 GMT Subject: CN=68a5e0a8-6079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:26:28:df:bf:70:c1:7e:27:c4:dd:34:31:56: 77:70:db:76:45:b0:98:4e:26:a4:3b:98:ba:0b:3a: d9:0b:af:e1:54:2a:28:d2:79:e9:1c:ba:fe:df:1f: 6f:6e:07:6b:d5:28:44:25:cf:c6:1b:b5:ef:98:a7: 30:ca:ca:6c:18:68:a4:83:02:80:84:dc:51:52:32: d5:05:94:0c:68:55:d8:85:96:8b:bb:f0:50:8b:3b: 9e:e0:e3:d8:bb:92:eb:21:9e:cd:9f:ba:09:d5:b0: 85:2d:fa:26:f5:dd:cd:2c:55:45:dd:05:58:9c:1c: 70:03:6b:8d:3a:7d:77:0f:fd:5f:89:83:b9:8f:ed: 84:cc:04:c6:50:38:46:ed:2c:5f:36:6a:8f:5d:0a: b6:08:42:dd:2e:39:7f:05:ec:b1:9c:85:90:7a:28: a5:54:82:fa:7f:ec:77:5a:11:22:9b:36:65:43:45: be:de:df:5e:2e:69:fe:eb:82:56:eb:35:ff:03:4d: 8e:1f:1a:bd:62:1a:c1:e0:bc:f1:bb:a9:cc:35:96: db:25:d1:f7:d6:26:2b:57:f6:27:49:5d:7d:b5:74: 7b:e5:f2:56:39:63:97:5c:96:a1:cd:f3:9b:87:1b: a3:e6:43:c0:cd:fa:88:9e:8f:36:dc:02:f3:11:ad: f6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4F:2C:A9:F0:C8:7E:F0:CA:D0:83:5C:00:E8:84:D5:CA:43:09:97 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:41:f9:28:53:5b:9a:22:c4:c4:72:31:65:b1:62:13:2b:9c: 68:33:b4:a4:64:eb:cf:2d:6b:26:89:55:db:aa:09:96:d5:85: 06:2d:93:a2:e8:28:03:83:c8:72:ef:8f:dd:66:45:54:8a:1d: 74:a3:8d:83:60:ad:59:a7:85:90:93:19:db:dc:b5:e6:25:26: 97:c8:6f:08:fe:07:9f:10:9b:c8:0b:d1:44:0d:a3:d3:24:51: 15:ba:85:1f:47:0b:8f:d5:fd:b3:a2:4d:8d:66:aa:9e:ce:ec: 2c:18:58:b7:e2:80:61:0b:73:21:61:bf:1b:9d:c9:d5:ae:fb: 99:ed:9b:b7:10:77:c7:8c:2c:2e:29:94:2c:d0:a6:47:7d:18: 5a:c3:3c:ef:dd:eb:47:8d:5b:0f:ff:4a:9d:e1:8b:25:48:44: 97:9f:7e:a7:f7:9a:ea:fb:b8:49:79:4f:97:4a:b6:64:fb:36: 19:c3:a8:5c:b1:55:d7:3d:10:c8:eb:7a:3c:f1:b1:2d:37:1a: 85:53:1b:1d:63:bb:5a:75:ac:ef:3b:01:fc:cc:cc:e7:35:eb: 59:08:a4:2a:d5:a4:11:34:12:fc:5b:7b:e2:40:f8:64:17:76: df:bc:1c:3c:5c:0b:0a:cf:b5:d7:53:5d:26:a5:9f:b5:a8:48: e3:e4:bc:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUwODIwMTQ1MDE1WhcNMjUwODI3MTQ1MDE1WjAYMRYwFAYD VQQDEw02OGE1ZTBhOC02MDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCYo379wwX4nxN00MVZ3cNt2RbCYTiakO5i6CzrZC6/hVCoo0nnpHLr+3x9v bgdr1ShEJc/GG7XvmKcwyspsGGikgwKAhNxRUjLVBZQMaFXYhZaLu/BQizue4OPY u5LrIZ7Nn7oJ1bCFLfom9d3NLFVF3QVYnBxwA2uNOn13D/1fiYO5j+2EzATGUDhG 7SxfNmqPXQq2CELdLjl/BeyxnIWQeiilVIL6f+x3WhEimzZlQ0W+3t9eLmn+64JW 6zX/A02OHxq9YhrB4Lzxu6nMNZbbJdH31iYrV/YnSV19tXR75fJWOWOXXJahzfOb hxuj5kPAzfqIno823ALzEa321QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1PLKnw yH7wytCDXADohNXKQwmXMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcQfkoU1uaIsTEcjFlsWITK5xoM7SkZOvPLWsmiVXbqgmW1YUGLZOi 6CgDg8hy74/dZkVUih10o42DYK1Zp4WQkxnb3LXmJSaXyG8I/gefEJvIC9FEDaPT JFEVuoUfRwuP1f2zok2NZqqezuwsGFi34oBhC3MhYb8bncnVrvuZ7Zu3EHfHjCwu KZQs0KZHfRhawzzv3etHjVsP/0qd4YslSESXn36n95rq+7hJeU+XSrZk+zYZw6hc sVXXPRDI63o88bEtNxqFUxsdY7tadazvOwH8zMznNetZCKQq1aQRNBL8W3viQPhk F3bfvBw8XAsKz7XXU10mpZ+1qEjj5Lxm -----END CERTIFICATE-----Generated at Fri Aug 22 16:30:41 2025 by rpki-client