$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: 8mx6PUAeQuNNxHFBVhmr/nZrBcJVh/eVA160FLmnddo= Subject key identifier: CE:89:9B:75:CF:F6:9B:4B:19:E2:C2:D4:61:6C:D7:1F:29:9E:07:C9 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 34D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 34D4 Signing time: Tue 04 Nov 2025 14:53:12 +0000 Manifest this update: Tue 04 Nov 2025 14:53:11 +0000 Manifest next update: Tue 11 Nov 2025 14:53:11 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: wcU/iKD2emyE/qG7qgv5ARWkoHPbiQh+F6G5LPUGy6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Nov 4 14:53:11 2025 GMT Not After : Nov 11 14:53:11 2025 GMT Subject: CN=690a1357-9259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c8:79:7e:74:47:64:b2:d6:cd:f7:48:21:80: 63:99:be:1c:23:29:fa:ab:e7:f3:10:d3:30:40:96: 4b:bf:30:18:55:44:4f:49:5c:3d:fb:ea:37:cf:8c: 12:67:84:c9:b7:8f:5c:88:9f:65:e5:10:a6:da:31: ac:a9:2a:28:b8:c8:1d:aa:89:4b:a2:6c:6e:cc:09: 7c:5b:d0:df:54:c3:19:6b:fb:0b:56:1f:cb:71:a6: 8b:43:f1:f9:08:06:19:62:ac:86:41:d1:d1:76:1e: 01:80:15:c4:76:7e:9f:76:be:7d:d7:c2:a4:26:06: 95:f3:80:8d:d1:c9:40:14:e0:a7:36:4c:44:c8:e4: 1a:54:4f:11:c6:e0:65:e0:3b:09:7c:15:9b:d1:ac: ac:8a:57:28:da:00:6b:aa:bd:14:a7:2e:d9:e1:e6: 94:79:3d:a2:a2:33:53:44:bf:c3:3a:03:dc:78:60: 72:f7:37:bf:a3:86:30:37:37:f4:a3:17:c8:49:0b: 40:fa:e6:df:fe:04:aa:4f:29:de:e0:a4:d0:e7:c6: 37:3a:0d:38:ab:02:dc:b5:4f:2f:b3:b8:1e:c8:99: 07:53:f5:3e:5e:e6:ca:f2:80:bd:b5:15:7e:ad:19: b8:e3:a2:ca:3d:4a:c0:3e:be:0f:5f:27:d0:8b:cb: 83:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:89:9B:75:CF:F6:9B:4B:19:E2:C2:D4:61:6C:D7:1F:29:9E:07:C9 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:bf:d1:00:ba:de:8a:62:92:99:c0:89:0f:74:9c:9e:8f:41: ce:a6:d1:00:a8:92:db:1d:e1:21:fc:c1:f5:58:53:00:0c:fd: e0:90:c2:f7:9d:f7:40:e9:53:c0:c1:de:b9:11:d0:52:f9:39: 7a:aa:e2:1a:f6:55:8d:23:87:6e:56:9b:c9:91:35:39:23:a8: 39:4c:fd:0d:00:9f:b7:d2:48:64:b5:f9:9e:69:85:6c:c1:41: 51:62:99:e0:6c:f1:c0:18:af:08:6b:34:23:d6:92:ef:ed:f2: 88:a0:8b:a5:89:11:03:3d:12:1e:d9:7e:d6:85:88:50:3f:10: eb:fc:19:e6:24:90:76:15:8b:cc:62:4b:99:61:0c:25:33:0d: c3:5a:5e:64:b0:9e:4b:f4:79:8d:69:93:99:cb:6e:52:c3:79: 07:94:22:67:84:c0:8f:b9:66:53:33:c9:e5:98:45:6e:3f:5b: 6a:0e:d1:81:91:a9:33:8d:9e:d9:da:d2:9c:5c:e6:d6:d8:7a: ca:59:85:8b:34:20:b4:74:89:fc:86:db:30:81:0c:b4:39:7b: 63:3b:7e:82:41:c8:5a:71:b8:63:fb:fb:b2:23:41:01:90:d4: eb:8c:85:14:1e:54:22:a0:f1:fa:32:54:14:9d:02:88:d3:4d: 2f:62:ce:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUxMTA0MTQ1MzExWhcNMjUxMTExMTQ1MzExWjAYMRYwFAYD VQQDEw02OTBhMTM1Ny05MjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8h5fnRHZLLWzfdIIYBjmb4cIyn6q+fzENMwQJZLvzAYVURPSVw9++o3z4wS Z4TJt49ciJ9l5RCm2jGsqSoouMgdqolLomxuzAl8W9DfVMMZa/sLVh/LcaaLQ/H5 CAYZYqyGQdHRdh4BgBXEdn6fdr5918KkJgaV84CN0clAFOCnNkxEyOQaVE8RxuBl 4DsJfBWb0aysilco2gBrqr0Upy7Z4eaUeT2iojNTRL/DOgPceGBy9ze/o4YwNzf0 oxfISQtA+ubf/gSqTyne4KTQ58Y3Og04qwLctU8vs7geyJkHU/U+XubK8oC9tRV+ rRm446LKPUrAPr4PXyfQi8uDswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6Jm3XP 9ptLGeLC1GFs1x8pngfJMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMv9EAut6KYpKZwIkPdJyej0HOptEAqJLbHeEh/MH1WFMADP3gkML3 nfdA6VPAwd65EdBS+Tl6quIa9lWNI4duVpvJkTU5I6g5TP0NAJ+30khktfmeaYVs wUFRYpngbPHAGK8IazQj1pLv7fKIoIuliREDPRIe2X7WhYhQPxDr/BnmJJB2FYvM YkuZYQwlMw3DWl5ksJ5L9HmNaZOZy25Sw3kHlCJnhMCPuWZTM8nlmEVuP1tqDtGB kakzjZ7Z2tKcXObW2HrKWYWLNCC0dIn8htswgQy0OXtjO36CQchacbhj+/uyI0EB kNTrjIUUHlQioPH6MlQUnQKI000vYs67 -----END CERTIFICATE-----Generated at Wed Nov 5 07:51:46 2025 by rpki-client