$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: QxmqZwB6hAURBcex39qq19lHUvkocwaMOXfHJtDi6is= Subject key identifier: 37:DD:02:DF:C7:39:34:6E:D1:AE:A7:14:81:8A:41:6D:01:95:CE:F8 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BAE Signing time: Thu 24 Apr 2025 18:49:49 +0000 Manifest this update: Thu 24 Apr 2025 18:49:48 +0000 Manifest next update: Thu 01 May 2025 18:49:48 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: gKSPotCLj95S28gtcpGAJhPdBSHx6Bt2b0P2Y92aVgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Apr 24 18:49:48 2025 GMT Not After : May 1 18:49:48 2025 GMT Subject: CN=680a87cc-0b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5a:1b:77:43:84:f6:f2:a1:a3:43:b7:ab:a7: 05:36:fd:c3:c8:5d:e1:5c:b4:ee:c3:93:58:8b:9d: 86:6f:0e:6a:91:fc:1d:13:39:ab:8d:b1:8c:1a:b0: f6:6b:72:4d:91:31:d9:f7:3a:29:c8:9b:94:9b:e3: d8:d2:29:25:5b:7b:6e:99:17:4f:fa:94:a3:85:dc: c1:5f:25:57:a4:dd:f5:7f:2e:38:c0:08:b9:34:db: df:57:c7:71:f7:e2:58:b7:b5:e7:a3:b6:6d:2e:51: 68:b8:05:5a:ea:24:ab:73:1e:ed:8e:22:58:56:ee: 7c:f5:43:fc:45:70:e2:f9:20:06:d6:fb:0d:75:5f: 9b:50:eb:85:1f:40:4b:5e:e5:90:43:e7:38:8a:d3: 76:38:e1:17:f6:a1:4f:45:a7:74:a2:f0:ec:c2:d1: 22:fe:f9:da:6f:c9:51:7f:91:b4:fa:e7:c1:57:e2: cc:93:b3:08:bf:73:19:73:3b:71:05:a0:a5:2a:03: 09:d1:f1:85:f6:c9:7b:66:36:e5:ee:e8:ad:f3:21: e7:84:e2:62:f9:5c:55:58:7c:f1:f3:f5:0b:4c:d0: 54:ed:40:f2:ed:45:f6:64:ff:2e:67:9e:15:5f:5c: 8d:3b:ee:20:59:9f:f6:81:57:c7:a8:ff:5b:9e:aa: 90:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DD:02:DF:C7:39:34:6E:D1:AE:A7:14:81:8A:41:6D:01:95:CE:F8 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:7f:6c:b3:a3:5d:f5:06:32:ee:d6:6c:53:2e:02:3b:41:02: a3:21:cb:44:78:c0:76:51:6a:d2:07:e4:7f:34:4b:7a:53:d7: 71:18:92:a1:d0:96:2d:09:f6:1d:7f:93:bd:d2:17:f0:99:b5: ab:6a:33:ab:78:e2:6a:b9:9f:92:1c:3a:46:84:05:a0:5d:3e: f0:43:a1:5a:0d:38:66:0d:79:04:76:0b:81:dc:6e:f8:47:f3: 58:9f:14:2b:5f:12:fa:99:26:73:e9:6f:df:06:b5:55:af:5e: f6:bb:22:12:c6:e4:20:d2:6e:6e:c1:4a:20:11:51:8a:a4:69: e3:a6:14:0c:7f:34:9c:68:a2:cd:3b:32:3d:e7:fb:6a:0a:c1: f3:b8:8a:6d:23:da:5c:d2:9c:5b:ab:ab:00:38:56:06:e3:0b: 34:1f:f5:99:94:77:23:25:6e:d4:9e:11:b0:79:cd:e8:0b:35: ed:0b:aa:e8:b0:53:03:b7:14:82:41:33:c2:92:ee:2d:f5:f5: 64:96:84:a0:a3:47:ab:5b:49:a8:fb:25:ba:09:e4:0c:12:86: eb:b3:10:8a:e7:1c:75:6b:4a:d0:a2:a0:0b:fc:f8:ff:35:2b: 24:19:1a:b6:5a:5f:31:e9:67:c2:ec:12:b9:51:0a:e4:0f:6c: ed:b2:c9:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwNDI0MTg0OTQ4WhcNMjUwNTAxMTg0OTQ4WjAYMRYwFAYD VQQDEw02ODBhODdjYy0wYjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41obd0OE9vKho0O3q6cFNv3DyF3hXLTuw5NYi52Gbw5qkfwdEzmrjbGMGrD2 a3JNkTHZ9zopyJuUm+PY0iklW3tumRdP+pSjhdzBXyVXpN31fy44wAi5NNvfV8dx 9+JYt7Xno7ZtLlFouAVa6iSrcx7tjiJYVu589UP8RXDi+SAG1vsNdV+bUOuFH0BL XuWQQ+c4itN2OOEX9qFPRad0ovDswtEi/vnab8lRf5G0+ufBV+LMk7MIv3MZcztx BaClKgMJ0fGF9sl7Zjbl7uit8yHnhOJi+VxVWHzx8/ULTNBU7UDy7UX2ZP8uZ54V X1yNO+4gWZ/2gVfHqP9bnqqQJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfdAt/H OTRu0a6nFIGKQW0Blc74MB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBff2yzo131BjLu1mxTLgI7QQKjIctEeMB2UWrSB+R/NEt6U9dxGJKh 0JYtCfYdf5O90hfwmbWrajOreOJquZ+SHDpGhAWgXT7wQ6FaDThmDXkEdguB3G74 R/NYnxQrXxL6mSZz6W/fBrVVr172uyISxuQg0m5uwUogEVGKpGnjphQMfzScaKLN OzI95/tqCsHzuIptI9pc0pxbq6sAOFYG4ws0H/WZlHcjJW7UnhGwec3oCzXtC6ro sFMDtxSCQTPCku4t9fVkloSgo0erW0mo+yW6CeQMEobrsxCK5xx1a0rQoqAL/Pj/ NSskGRq2Wl8x6WfC7BK5UQrkD2ztssns -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:27 2025 by rpki-client