$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: xNHng60t9YNeG+ZwiPvJyGMLzelXShqg6WT/0FwXj3k= Subject key identifier: CC:E7:B8:86:3A:1A:DE:DE:61:B4:C0:40:58:51:9F:61:7E:E4:DA:8B Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 3515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 3515 Signing time: Mon 02 Mar 2026 14:52:58 +0000 Manifest this update: Mon 02 Mar 2026 14:52:57 +0000 Manifest next update: Mon 09 Mar 2026 14:52:57 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: 2oitLI9kzOwV2T3v6nupgxyz1YtVdS8kWFavqjubgtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13589 (0x3515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Mar 2 14:52:57 2026 GMT Not After : Mar 9 14:52:57 2026 GMT Subject: CN=69a5a449-7fca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:84:3f:9e:64:82:e4:25:e7:a9:d9:b3:7f:1b: 13:ba:60:48:8b:2f:07:d1:fb:ca:14:93:46:16:68: 4d:e4:a5:e9:91:cd:61:02:2e:80:de:dc:43:cf:fb: f3:cc:5e:63:be:09:2b:85:cc:15:55:17:d5:6f:bf: 49:48:45:16:a2:b7:ca:d3:15:8f:66:d9:9f:0b:55: 12:aa:70:ab:8d:85:c3:32:01:3a:6d:6e:50:61:af: 52:3f:0e:fe:bc:5e:8e:f5:a3:e6:70:70:7b:f2:34: 3d:72:b0:8f:26:ef:8e:9e:9d:37:e1:44:7a:b0:01: 7e:09:7c:ac:cc:a1:d0:0b:11:a2:7a:44:4e:f5:96: 86:49:bb:35:8d:a4:ea:99:05:b5:27:7f:28:64:4a: dc:a8:14:31:f6:da:f1:27:cf:ca:25:32:4b:35:b8: 6a:3e:33:8b:a8:6c:bb:74:40:5b:61:09:69:1d:f4: a5:a2:bb:9b:ca:35:bb:4c:dd:c3:07:04:c1:a4:89: 1d:e9:0c:d6:03:f6:6e:ce:be:03:03:97:00:75:33: 82:56:69:e9:8a:78:0e:c0:a6:ed:12:88:d2:55:0f: c7:36:c5:49:93:b4:aa:bd:55:10:46:f4:99:51:46: f1:80:a0:d5:f8:03:56:00:2b:97:af:9a:a0:94:2e: 82:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E7:B8:86:3A:1A:DE:DE:61:B4:C0:40:58:51:9F:61:7E:E4:DA:8B X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:df:46:ae:1d:30:67:35:18:c2:37:59:35:11:31:fc:eb:e7: 54:9b:e0:06:10:fb:0f:e2:7c:88:be:83:7e:94:fc:01:25:d2: fe:9e:9b:c5:af:46:d1:7b:87:7c:77:89:19:86:64:c4:23:03: 7b:1f:80:c2:26:2a:06:8c:af:9e:a6:10:4e:39:b3:57:8e:df: 56:58:9e:68:58:95:1e:03:44:48:54:eb:fe:94:ed:26:d3:69: a0:dc:54:43:18:1b:3c:75:1d:dd:67:96:4a:1d:7d:03:7b:30: d4:93:af:69:2d:70:86:f7:da:70:2d:25:f9:dd:fe:38:c4:2c: be:ca:8f:4b:04:17:ce:7d:0b:bb:41:9e:62:aa:38:96:ab:b0: d5:c0:e4:24:49:bd:18:20:33:0b:04:28:18:40:db:8f:15:90: fb:a5:57:23:33:14:49:bd:b9:af:e6:80:99:2e:44:6a:b1:25: 62:4e:f0:43:70:9d:ba:89:cd:6c:2b:51:fe:9b:ee:e0:08:be: c8:9b:1f:c4:d1:1d:25:d9:b0:bc:ec:f8:ee:09:9d:76:3f:ff: 16:40:05:fc:44:ac:28:99:0c:95:eb:ed:8d:be:b6:96:0f:33: b1:fc:da:47:e8:99:92:a3:2c:85:50:96:63:40:26:25:13:95: ef:70:cf:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjYwMzAyMTQ1MjU3WhcNMjYwMzA5MTQ1MjU3WjAYMRYwFAYD VQQDEw02OWE1YTQ0OS03ZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4oQ/nmSC5CXnqdmzfxsTumBIiy8H0fvKFJNGFmhN5KXpkc1hAi6A3txDz/vz zF5jvgkrhcwVVRfVb79JSEUWorfK0xWPZtmfC1USqnCrjYXDMgE6bW5QYa9SPw7+ vF6O9aPmcHB78jQ9crCPJu+Onp034UR6sAF+CXyszKHQCxGiekRO9ZaGSbs1jaTq mQW1J38oZErcqBQx9trxJ8/KJTJLNbhqPjOLqGy7dEBbYQlpHfSlorubyjW7TN3D BwTBpIkd6QzWA/Zuzr4DA5cAdTOCVmnpingOwKbtEojSVQ/HNsVJk7SqvVUQRvSZ UUbxgKDV+ANWACuXr5qglC6CwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMznuIY6 Gt7eYbTAQFhRn2F+5NqLMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGd9Grh0wZzUYwjdZNREx/OvnVJvgBhD7D+J8iL6DfpT8ASXS/p6bxa9G0XuH fHeJGYZkxCMDex+AwiYqBoyvnqYQTjmzV47fVlieaFiVHgNESFTr/pTtJtNpoNxU QxgbPHUd3WeWSh19A3sw1JOvaS1whvfacC0l+d3+OMQsvsqPSwQXzn0Lu0GeYqo4 lquw1cDkJEm9GCAzCwQoGEDbjxWQ+6VXIzMUSb25r+aAmS5EarElYk7wQ3CduonN bCtR/pvu4Ai+yJsfxNEdJdmwvOz47gmddj//FkAF/ESsKJkMlevtjb62lg8zsfza R+iZkqMshVCWY0AmJROV73DPRw== -----END CERTIFICATE-----Generated at Mon Mar 2 21:12:10 2026 by rpki-client