$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: o5JENt78eQM7kZ3//AkqDn9iPZE8V/VdPTv4sJJ+ptk= Subject key identifier: 55:E4:85:07:72:3F:E9:D5:10:BF:85:11:B9:26:33:9D:8D:70:14:6D Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 348B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 348B Signing time: Sat 14 Jun 2025 14:48:57 +0000 Manifest this update: Sat 14 Jun 2025 14:48:57 +0000 Manifest next update: Sat 21 Jun 2025 14:48:57 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: 1om1rr1YjuzDCdl8qe++HqGh8HIoc36ZUiHBeIn/WyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13451 (0x348b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Jun 14 14:48:57 2025 GMT Not After : Jun 21 14:48:57 2025 GMT Subject: CN=684d8bd9-8aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:86:6b:96:3a:47:10:45:7d:e9:81:16:97:7a: aa:f5:5a:28:17:d4:26:57:30:57:cd:b8:44:3a:6c: 8b:1d:b3:87:28:3c:66:e5:f4:4b:68:74:4b:f9:f9: cb:d9:f8:54:7c:e8:77:8e:12:a7:63:94:df:78:0e: af:de:ae:79:d9:41:80:f7:92:ce:92:dc:42:8b:94: 7a:f9:6b:f6:7f:c6:ab:c9:4b:6d:a2:1b:30:77:8b: c2:c1:9c:ff:c3:e9:b7:c0:b9:21:27:dd:eb:7e:7d: ae:22:85:89:56:1b:39:66:83:9f:47:c2:1e:84:71: c1:79:4c:98:8c:ae:c1:f7:b6:03:2f:a9:da:dc:af: d0:1b:95:65:25:2d:fc:cf:17:b6:54:87:57:a8:2b: 7d:80:41:ff:79:cc:d8:f4:bd:20:8a:ce:b4:89:0c: d3:35:0d:0c:c0:ce:8b:74:b4:70:1c:6e:be:8c:fe: 2f:e6:d7:ac:27:5e:a7:76:e9:19:61:a6:61:49:8c: 56:01:24:04:9b:44:52:71:c5:7d:f9:a1:e2:44:dc: f1:61:1e:23:a6:e7:3f:a1:3f:a6:95:8b:2b:ad:f5: 00:e4:2d:4d:25:b0:83:b0:84:3f:e1:cf:ba:5f:27: 40:9b:1f:50:ff:b3:41:ed:9c:2a:f7:c7:dc:fb:50: 53:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E4:85:07:72:3F:E9:D5:10:BF:85:11:B9:26:33:9D:8D:70:14:6D X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:7c:02:d5:ae:de:e7:14:9d:e8:70:10:2a:4e:09:e9:5d:1c: 9c:e7:46:58:57:f3:d9:f8:4a:8e:b5:0b:25:3c:8e:b9:e2:c1: 4c:7f:d5:16:d8:fa:f6:c6:95:6e:e3:60:b7:06:94:6d:43:63: f7:a7:01:2c:65:6b:99:14:21:08:9b:a4:18:d4:4e:71:34:23: 6c:58:8c:f0:41:85:d8:6d:af:92:29:31:07:c6:9e:9e:67:a6: 9f:5a:b5:67:88:b2:d4:05:bf:f4:ac:68:89:e5:e5:c5:47:7a: b8:c8:22:7f:c9:65:9f:a9:0f:ea:35:af:eb:34:13:d0:b1:25: 19:8b:f3:ae:81:56:c1:98:33:1e:72:ae:8a:f6:88:0e:78:15: d4:ab:34:f9:ff:e7:92:61:cd:4e:f5:d7:12:7f:98:36:e5:1b: df:a6:27:f1:ee:32:5f:78:73:5a:5b:c9:d9:06:d0:e0:fe:dc: 9b:b6:7c:c4:55:cf:5e:b8:e2:ec:ee:e4:31:c2:d7:4c:2d:ed: 59:aa:6f:3a:ba:1f:83:b1:68:69:8e:94:e4:6f:52:20:14:23: b4:ab:e0:8a:87:a3:d4:09:82:77:f3:e2:c1:e4:0e:ca:e6:b3: 9e:fd:9e:05:f4:0e:61:38:15:50:32:8f:e3:a3:2c:42:40:54: cd:52:19:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUwNjE0MTQ0ODU3WhcNMjUwNjIxMTQ0ODU3WjAYMRYwFAYD VQQDEw02ODRkOGJkOS04YWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA94ZrljpHEEV96YEWl3qq9VooF9QmVzBXzbhEOmyLHbOHKDxm5fRLaHRL+fnL 2fhUfOh3jhKnY5TfeA6v3q552UGA95LOktxCi5R6+Wv2f8aryUttohswd4vCwZz/ w+m3wLkhJ93rfn2uIoWJVhs5ZoOfR8IehHHBeUyYjK7B97YDL6na3K/QG5VlJS38 zxe2VIdXqCt9gEH/eczY9L0gis60iQzTNQ0MwM6LdLRwHG6+jP4v5tesJ16ndukZ YaZhSYxWASQEm0RSccV9+aHiRNzxYR4jpuc/oT+mlYsrrfUA5C1NJbCDsIQ/4c+6 XydAmx9Q/7NB7Zwq98fc+1BTxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXkhQdy P+nVEL+FEbkmM52NcBRtMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAfALVrt7nFJ3ocBAqTgnpXRyc50ZYV/PZ+EqOtQslPI654sFMf9UW 2Pr2xpVu42C3BpRtQ2P3pwEsZWuZFCEIm6QY1E5xNCNsWIzwQYXYba+SKTEHxp6e Z6afWrVniLLUBb/0rGiJ5eXFR3q4yCJ/yWWfqQ/qNa/rNBPQsSUZi/OugVbBmDMe cq6K9ogOeBXUqzT5/+eSYc1O9dcSf5g25Rvfpifx7jJfeHNaW8nZBtDg/tybtnzE Vc9euOLs7uQxwtdMLe1Zqm86uh+DsWhpjpTkb1IgFCO0q+CKh6PUCYJ38+LB5A7K 5rOe/Z4F9A5hOBVQMo/joyxCQFTNUhlz -----END CERTIFICATE-----Generated at Sun Jun 15 08:52:13 2025 by rpki-client