$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: Hy4HzLw2293NOKkq9AluVi+i16ApJaGAikiIVMzRqcA= Subject key identifier: EB:E9:E9:64:2D:08:D1:D7:4F:3F:CD:93:BF:F9:23:D6:1C:BE:51:5A Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 352C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 352C Signing time: Thu 16 Apr 2026 14:49:23 +0000 Manifest this update: Thu 16 Apr 2026 14:49:22 +0000 Manifest next update: Thu 23 Apr 2026 14:49:22 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: jMow9K4yvrlWvduIwdy5+YM5Y47htR1NZdeILny2Pik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Apr 16 14:49:22 2026 GMT Not After : Apr 23 14:49:22 2026 GMT Subject: CN=69e0f6f3-17cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c7:4c:75:76:b5:d0:9f:7b:5a:96:39:2f:e3: 7a:23:3d:de:7f:b3:1f:d2:82:3c:7a:10:fd:b6:4d: 19:46:59:3c:44:11:f4:2b:10:4d:9e:ed:a4:88:02: a8:df:48:28:b5:ee:db:fc:41:df:54:38:37:3b:0b: d1:2f:9a:63:4d:82:52:a4:11:b9:a0:2e:e6:d4:2a: e2:3a:d3:65:af:76:fe:d3:35:ce:ec:a9:7f:12:94: 14:8b:09:1a:46:8b:43:ba:d9:f8:dd:63:9c:3c:da: fb:36:12:f2:8d:b8:67:c5:13:cc:fa:5c:49:93:20: 3b:d2:a7:cb:a1:04:60:42:73:4a:3f:e8:9a:7c:56: a7:a7:5f:b4:b4:6c:86:08:05:d1:c5:29:81:4d:12: 4a:46:d6:be:9a:5f:e4:25:ed:11:c0:80:c1:8c:66: 09:09:7d:6d:29:81:0e:fb:4b:7a:06:d9:28:18:94: d3:38:6b:b3:da:01:02:59:03:a9:0b:f0:9f:e0:41: 08:67:e0:c9:16:b8:a3:f9:f2:f2:ab:15:8a:9b:19: a9:2c:19:6e:53:3d:e9:5c:29:a9:c2:89:af:be:be: b3:e5:f1:60:17:fc:03:6b:61:3e:6f:56:29:6b:1f: f2:02:b1:26:50:e3:83:24:23:8c:20:91:26:de:4b: 1a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E9:E9:64:2D:08:D1:D7:4F:3F:CD:93:BF:F9:23:D6:1C:BE:51:5A X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:1e:9a:a6:02:0f:a7:bd:50:d2:3c:51:24:41:16:26:7b:1f: 89:db:71:47:b6:0a:af:64:60:1a:9e:a9:3a:90:ab:5e:ec:96: c7:7f:1c:fa:15:2a:5d:48:de:06:5e:de:15:72:32:35:cc:0e: 2f:39:be:70:d9:70:c8:a9:04:9b:15:0d:1b:0c:b9:b4:be:56: 36:b1:84:0a:95:2d:e4:f1:62:44:e5:95:75:80:6b:94:29:24: 4c:27:72:3c:fa:54:75:06:5c:ed:5f:f6:3a:b2:8a:aa:57:91: d2:1d:ca:76:2f:2c:be:9d:69:05:ae:66:c6:bf:e8:63:95:67: 70:64:d0:17:cc:7d:f5:b0:4b:46:49:c6:33:40:ad:0f:28:22: 2a:8d:67:bd:54:ab:90:fc:09:49:55:c7:2b:48:7a:70:06:b5: b6:1c:8d:6c:5d:52:4d:48:b5:9f:5d:d0:3d:ad:09:4e:60:51: 5d:33:d8:01:24:f5:fb:98:0f:ee:da:24:2f:f2:04:d6:dc:80: 83:bf:e0:1d:5f:44:9d:77:20:27:1d:f3:ff:ba:6e:08:08:09: e6:7d:23:97:da:38:eb:00:de:33:72:e2:7e:5d:b0:04:f5:d6: ad:35:36:62:0a:fe:5d:ab:95:ee:88:1c:b3:dd:d2:85:ac:69: f8:c3:5c:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjYwNDE2MTQ0OTIyWhcNMjYwNDIzMTQ0OTIyWjAYMRYwFAYD VQQDEw02OWUwZjZmMy0xN2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8dMdXa10J97WpY5L+N6Iz3ef7Mf0oI8ehD9tk0ZRlk8RBH0KxBNnu2kiAKo 30gote7b/EHfVDg3OwvRL5pjTYJSpBG5oC7m1CriOtNlr3b+0zXO7Kl/EpQUiwka RotDutn43WOcPNr7NhLyjbhnxRPM+lxJkyA70qfLoQRgQnNKP+iafFanp1+0tGyG CAXRxSmBTRJKRta+ml/kJe0RwIDBjGYJCX1tKYEO+0t6BtkoGJTTOGuz2gECWQOp C/Cf4EEIZ+DJFrij+fLyqxWKmxmpLBluUz3pXCmpwomvvr6z5fFgF/wDa2E+b1Yp ax/yArEmUOODJCOMIJEm3ksazwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvp6WQt CNHXTz/Nk7/5I9YcvlFaMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOx6apgIPp71Q0jxRJEEWJnsfidtxR7YKr2RgGp6pOpCrXuyWx38c+hUqXUje Bl7eFXIyNcwOLzm+cNlwyKkEmxUNGwy5tL5WNrGECpUt5PFiROWVdYBrlCkkTCdy PPpUdQZc7V/2OrKKqleR0h3Kdi8svp1pBa5mxr/oY5VncGTQF8x99bBLRknGM0Ct DygiKo1nvVSrkPwJSVXHK0h6cAa1thyNbF1STUi1n13QPa0JTmBRXTPYAST1+5gP 7tokL/IE1tyAg7/gHV9EnXcgJx3z/7puCAgJ5n0jl9o46wDeM3Lifl2wBPXWrTU2 Ygr+XauV7ogcs93Shaxp+MNcHA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:13:38 2026 by rpki-client