$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: tBoAqlmLoraboEPqbhxWq7SAj06Th2OIusQfJzHOpC4= Subject key identifier: 74:46:0A:38:DE:5E:27:53:21:7D:11:89:B4:AB:3A:87:78:ED:C2:84 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 34A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 34A7 Signing time: Fri 08 Aug 2025 14:51:32 +0000 Manifest this update: Fri 08 Aug 2025 14:51:32 +0000 Manifest next update: Fri 15 Aug 2025 14:51:32 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: ocFmJc5rlgUBzTh6m7mTW/xz/JP2DC4wbLd159ryqCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13479 (0x34a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Aug 8 14:51:32 2025 GMT Not After : Aug 15 14:51:32 2025 GMT Subject: CN=68960ef4-8d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:3a:c9:8f:ac:60:ea:2d:a6:40:f1:a6:ed:9e: 1c:14:4e:76:85:58:f6:5f:c2:a2:8b:3f:77:44:41: 71:e2:2c:32:03:04:dc:57:30:8a:6e:95:55:11:25: 97:19:e0:19:20:22:3e:4e:f8:5e:8d:48:d8:36:d1: ae:f0:2e:61:30:b4:3c:28:ce:be:4d:2d:17:a8:74: 10:98:b4:4a:bc:68:ca:4e:e1:58:a2:2e:0e:11:98: d2:97:4b:dc:d5:f5:67:8f:d3:1c:df:0e:1d:24:e7: 8d:51:c2:59:4a:6d:08:45:fb:46:0c:6e:07:9e:c8: 42:85:f9:11:cd:81:67:03:c4:3c:f6:87:28:8f:2d: 8e:96:8a:a6:13:63:d4:1e:76:f9:31:60:67:da:51: 23:b1:e1:b8:07:fb:3b:a6:2e:1b:d2:85:6d:70:a6: d7:3e:e3:f2:ae:45:3a:57:33:c5:66:d5:c4:a4:d1: a0:18:1a:0d:ef:db:ce:7b:48:62:98:e6:9f:cc:5a: 99:f1:ad:ad:b1:f6:31:8b:bb:c8:d6:83:53:0d:c5: 40:fb:93:2a:33:14:59:93:95:3f:34:5e:7f:bd:3d: f4:6f:b7:77:15:63:2f:33:53:79:61:50:f5:25:ed: 2d:f5:a0:f2:30:74:07:08:c5:b7:72:37:eb:5c:56: 76:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:46:0A:38:DE:5E:27:53:21:7D:11:89:B4:AB:3A:87:78:ED:C2:84 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:5e:aa:c5:c4:01:38:05:f8:49:5f:87:94:d5:50:ac:41:e0: 25:09:c5:43:45:37:76:dc:4b:86:10:9d:9c:27:35:a6:c0:93: b4:66:b1:b8:3d:b7:ad:1d:94:82:9c:c2:07:e6:c1:cc:c9:32: a0:81:26:50:d9:0e:bd:d2:ba:a8:1b:69:e0:34:40:c5:69:34: d7:a7:b4:8b:eb:b9:10:42:b6:ca:14:3c:83:74:67:d2:be:b6: 6a:2b:18:48:e3:30:a0:6d:7e:a8:f2:03:65:d9:a3:52:b1:73: 4c:0c:f4:60:83:ae:15:b8:15:52:91:87:76:e9:1d:99:74:1a: 9b:08:1e:7c:b6:d1:6b:d4:8f:98:9d:31:95:a7:58:79:d2:d0: a9:a3:33:f3:0b:6b:14:17:bb:29:1a:4e:ab:09:27:20:a4:43: 5b:41:ff:f2:9e:c1:61:7a:94:41:c0:8a:d4:00:d3:19:a1:41: ae:e3:29:a0:93:c5:6f:2e:69:67:b2:a6:dd:09:52:2b:10:39: 3e:eb:dd:14:ac:6a:9b:b7:05:6a:82:5f:16:1b:69:16:d0:fb: e3:a8:20:a4:76:77:a7:f2:95:df:a6:95:ec:a3:ce:b8:2e:8d: a6:c8:cf:9a:16:52:77:c0:a6:8f:d9:d3:0b:f0:03:2a:bb:33: 0a:f5:96:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUwODA4MTQ1MTMyWhcNMjUwODE1MTQ1MTMyWjAYMRYwFAYD VQQDEw02ODk2MGVmNC04ZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/zrJj6xg6i2mQPGm7Z4cFE52hVj2X8Kiiz93REFx4iwyAwTcVzCKbpVVESWX GeAZICI+TvhejUjYNtGu8C5hMLQ8KM6+TS0XqHQQmLRKvGjKTuFYoi4OEZjSl0vc 1fVnj9Mc3w4dJOeNUcJZSm0IRftGDG4HnshChfkRzYFnA8Q89ocojy2OloqmE2PU Hnb5MWBn2lEjseG4B/s7pi4b0oVtcKbXPuPyrkU6VzPFZtXEpNGgGBoN79vOe0hi mOafzFqZ8a2tsfYxi7vI1oNTDcVA+5MqMxRZk5U/NF5/vT30b7d3FWMvM1N5YVD1 Je0t9aDyMHQHCMW3cjfrXFZ2JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRGCjje XidTIX0RibSrOod47cKEMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRXqrFxAE4BfhJX4eU1VCsQeAlCcVDRTd23EuGEJ2cJzWmwJO0ZrG4 PbetHZSCnMIH5sHMyTKggSZQ2Q690rqoG2ngNEDFaTTXp7SL67kQQrbKFDyDdGfS vrZqKxhI4zCgbX6o8gNl2aNSsXNMDPRgg64VuBVSkYd26R2ZdBqbCB58ttFr1I+Y nTGVp1h50tCpozPzC2sUF7spGk6rCScgpENbQf/ynsFhepRBwIrUANMZoUGu4ymg k8VvLmlnsqbdCVIrEDk+690UrGqbtwVqgl8WG2kW0PvjqCCkdnen8pXfppXso864 Lo2myM+aFlJ3wKaP2dML8AMquzMK9ZYz -----END CERTIFICATE-----Generated at Sun Aug 10 03:56:55 2025 by rpki-client