$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: bnOwTXQetaZ7MA0J6PsmukOPfnKEnL4o8G0DCZrh22w= Subject key identifier: 29:BD:5D:8D:DF:A9:79:A4:2C:95:35:54:AC:2B:AB:42:3D:E6:3D:CE Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BC7 Signing time: Sat 14 Jun 2025 18:43:56 +0000 Manifest this update: Sat 14 Jun 2025 18:43:55 +0000 Manifest next update: Sat 21 Jun 2025 18:43:55 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: HMbsr2AGNsWuaM345r0fw8XL/F8rlrgZoNnoW7ogEtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Jun 14 18:43:55 2025 GMT Not After : Jun 21 18:43:55 2025 GMT Subject: CN=684dc2ec-6b13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:2c:87:07:83:c5:3e:9e:fe:59:2f:7b:47: 27:92:bc:d6:4f:75:2f:df:90:81:e1:11:2d:cb:71: 69:ca:4c:2d:31:6b:e1:f4:41:d5:81:66:9e:a0:b8: 9f:f4:20:0a:f8:23:3a:0b:81:77:30:fb:28:fc:20: 21:9d:2f:95:01:ef:54:a0:0d:fe:df:f6:01:4b:2d: 01:f2:c7:f4:73:78:c9:f8:61:b3:a2:9c:0a:fb:b5: 30:f9:2b:75:06:ef:e9:4a:fe:15:34:ba:1c:f7:10: d0:5a:38:0c:d2:b6:9c:1b:ba:7f:19:ad:fd:e0:ac: 97:d2:ba:9f:32:41:c2:9e:0f:b9:65:f6:26:84:9c: 2c:cf:9d:7f:26:69:cd:c8:37:e7:31:fe:0b:54:1b: 0f:97:c3:79:23:e4:6f:9e:c8:46:b5:77:fb:f3:ba: 8c:40:23:70:ee:24:13:bf:1f:fc:5b:4e:21:84:39: 99:1b:55:84:9a:aa:bb:22:56:57:ed:ad:c2:49:77: 18:ab:09:00:47:4d:3b:ff:91:17:82:89:fc:57:7c: af:17:eb:1a:ef:13:b3:d8:39:65:b0:72:a3:33:a4: 8b:4c:49:39:b0:d0:0c:d7:a6:8b:4c:1e:b9:b2:aa: e1:59:fa:7f:dc:01:9d:5e:2b:fd:c4:ba:a0:3f:e0: c2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BD:5D:8D:DF:A9:79:A4:2C:95:35:54:AC:2B:AB:42:3D:E6:3D:CE X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:8b:1a:92:fe:57:ed:99:ba:f2:9c:aa:a7:d5:36:c0:25:7d: e4:10:0e:8b:14:14:9e:7a:ce:b0:67:2e:51:ac:fa:03:57:05: 3a:21:18:6f:f7:9e:42:e0:05:64:48:55:1e:c2:66:b8:3b:8b: ff:db:a8:fe:3e:21:6b:1f:c4:19:bd:25:7c:b2:98:39:d1:8b: da:32:f3:48:47:ea:8c:17:9e:85:72:7c:66:9c:a6:df:66:2e: e5:d1:1f:7a:71:89:e7:17:ef:ec:4b:28:19:47:f4:ad:00:0d: 73:f7:cc:c2:7d:47:62:d8:5a:d6:de:16:39:ea:f8:62:11:ad: dd:8e:7a:b0:de:2e:de:c0:3d:68:0b:18:71:9e:44:3f:07:d8: 8c:90:70:df:29:1a:c8:87:4b:92:af:68:e9:5b:5a:6b:52:da: 5e:8d:d1:c0:7f:82:e9:fa:68:d5:6e:f7:6a:8b:ce:9e:bb:17: 55:f7:86:23:32:85:c4:46:e0:93:26:b3:0c:ea:32:1b:76:4d: 76:40:b1:29:4f:eb:4a:89:19:45:b7:8b:e6:3d:c1:77:46:72: 45:b3:62:d2:c1:4e:f9:94:20:58:e3:9c:67:b1:7e:90:ab:b5: 6f:2d:19:2c:a3:cc:a6:99:b5:c6:b6:12:08:db:2f:3f:a8:4c: 86:9e:44:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwNjE0MTg0MzU1WhcNMjUwNjIxMTg0MzU1WjAYMRYwFAYD VQQDEw02ODRkYzJlYy02YjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYEshweDxT6e/lkve0cnkrzWT3Uv35CB4REty3FpykwtMWvh9EHVgWaeoLif 9CAK+CM6C4F3MPso/CAhnS+VAe9UoA3+3/YBSy0B8sf0c3jJ+GGzopwK+7Uw+St1 Bu/pSv4VNLoc9xDQWjgM0racG7p/Ga394KyX0rqfMkHCng+5ZfYmhJwsz51/JmnN yDfnMf4LVBsPl8N5I+RvnshGtXf787qMQCNw7iQTvx/8W04hhDmZG1WEmqq7IlZX 7a3CSXcYqwkAR007/5EXgon8V3yvF+sa7xOz2DllsHKjM6SLTEk5sNAM16aLTB65 sqrhWfp/3AGdXiv9xLqgP+DCPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm9XY3f qXmkLJU1VKwrq0I95j3OMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlixqS/lftmbrynKqn1TbAJX3kEA6LFBSees6wZy5RrPoDVwU6IRhv 955C4AVkSFUewma4O4v/26j+PiFrH8QZvSV8spg50YvaMvNIR+qMF56FcnxmnKbf Zi7l0R96cYnnF+/sSygZR/StAA1z98zCfUdi2FrW3hY56vhiEa3djnqw3i7ewD1o CxhxnkQ/B9iMkHDfKRrIh0uSr2jpW1prUtpejdHAf4Lp+mjVbvdqi86euxdV94Yj MoXERuCTJrMM6jIbdk12QLEpT+tKiRlFt4vmPcF3RnJFs2LSwU75lCBY45xnsX6Q q7VvLRkso8ymmbXGthII2y8/qEyGnkS/ -----END CERTIFICATE-----Generated at Sun Jun 15 09:51:37 2025 by rpki-client