$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: 2wbJ71ea+T7WO5fuMxrr4ylC4xkvvXAlaHyOGgB17dc= Subject key identifier: 9C:13:8D:20:4A:7B:FF:A9:A2:D7:CA:E8:7E:1C:77:9F:E4:3D:AF:B0 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BE3 Signing time: Fri 08 Aug 2025 19:04:19 +0000 Manifest this update: Fri 08 Aug 2025 19:04:18 +0000 Manifest next update: Fri 15 Aug 2025 19:04:18 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: e57Pp5vxLD5RFVu/FI3Vjbfmojb1Yge4gQ2pBiJyDPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3045 (0xbe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Aug 8 19:04:18 2025 GMT Not After : Aug 15 19:04:18 2025 GMT Subject: CN=68964a32-0520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c1:63:55:75:11:51:8a:9b:76:c7:33:6d:05: d4:bb:0f:1b:8c:13:c2:23:23:e9:fc:9b:4f:d6:93: 8b:e1:b8:98:f8:6a:e1:c5:87:19:81:61:20:dd:48: 4c:ec:70:89:85:b9:04:f7:21:9b:29:3b:7e:85:47: 14:5b:1f:b5:74:20:2a:70:92:73:85:45:78:89:02: 4e:96:6c:17:e6:3f:3d:e0:b2:31:a8:02:82:be:e8: d4:ba:61:17:41:40:ae:a3:c7:82:d1:8d:78:3b:8a: 3d:45:9f:28:6d:37:c6:43:87:e5:83:be:f5:18:57: 0b:57:dc:f7:ff:1c:4b:56:d5:e2:c2:54:58:7f:61: b0:16:ce:59:f8:c1:ec:63:c7:75:e0:35:b2:d2:24: 50:33:c3:01:d1:c8:df:3e:eb:e1:14:de:45:bf:23: 4d:a4:59:83:e3:b6:6e:82:c3:4f:31:3c:d5:d6:bf: 71:3e:0a:10:d3:ff:11:81:ac:5d:63:43:00:88:1a: 6b:d4:c6:a5:db:4e:73:5c:e0:fa:17:cd:a0:a0:3a: d5:7e:ca:ce:08:7b:82:47:1c:db:48:fd:45:a9:9e: 17:77:e0:23:24:0d:78:14:54:f6:71:51:23:f2:56: 11:7f:1c:d4:d6:7b:ed:7a:06:5c:e9:e1:74:75:61: 2f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:13:8D:20:4A:7B:FF:A9:A2:D7:CA:E8:7E:1C:77:9F:E4:3D:AF:B0 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:56:af:ca:95:95:e9:08:ae:a8:3d:09:3e:a4:3b:da:71:99: d3:db:db:de:37:45:a4:bb:8d:4d:29:d4:99:87:d6:20:ce:04: fd:54:75:ce:6b:e8:d2:e1:65:11:31:ab:6a:fe:9f:bb:79:30: c1:48:b1:88:40:39:5f:41:05:b0:f7:15:ca:e2:16:e2:82:df: 6f:b8:5b:42:e4:72:58:03:ff:49:40:15:b3:24:27:82:6c:b7: 7e:1b:98:d0:35:aa:ea:04:e1:03:c6:79:8f:6e:8e:fa:61:96: 03:a2:c3:30:c5:63:f4:31:79:b9:ed:15:b3:89:cb:42:79:9f: 41:ac:57:83:c3:e8:e8:15:ea:a8:e4:a7:b0:33:67:4b:56:15: 34:9e:60:ec:83:e9:4b:ae:c6:1e:c4:9a:6e:ee:66:3d:93:d5: 17:5e:96:87:18:2c:2f:41:79:64:28:39:62:7b:44:01:fa:b2: 05:e2:11:23:7f:05:46:62:57:e0:4f:60:86:27:95:01:85:27: 96:c9:02:33:b5:01:d6:67:ec:33:fb:a5:64:bf:8a:8b:58:77: f9:4b:de:bc:81:70:fa:c0:85:8d:ac:7f:d4:20:49:22:42:32: a1:70:7b:d7:95:55:e4:86:cc:e0:fd:fa:25:83:49:35:0a:c0: 6a:1a:27:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwODA4MTkwNDE4WhcNMjUwODE1MTkwNDE4WjAYMRYwFAYD VQQDEw02ODk2NGEzMi0wNTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8FjVXURUYqbdsczbQXUuw8bjBPCIyPp/JtP1pOL4biY+GrhxYcZgWEg3UhM 7HCJhbkE9yGbKTt+hUcUWx+1dCAqcJJzhUV4iQJOlmwX5j894LIxqAKCvujUumEX QUCuo8eC0Y14O4o9RZ8obTfGQ4flg771GFcLV9z3/xxLVtXiwlRYf2GwFs5Z+MHs Y8d14DWy0iRQM8MB0cjfPuvhFN5FvyNNpFmD47ZugsNPMTzV1r9xPgoQ0/8Rgaxd Y0MAiBpr1Mal205zXOD6F82goDrVfsrOCHuCRxzbSP1FqZ4Xd+AjJA14FFT2cVEj 8lYRfxzU1nvtegZc6eF0dWEvawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwTjSBK e/+potfK6H4cd5/kPa+wMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIVq/KlZXpCK6oPQk+pDvacZnT29veN0Wku41NKdSZh9YgzgT9VHXO a+jS4WURMatq/p+7eTDBSLGIQDlfQQWw9xXK4hbigt9vuFtC5HJYA/9JQBWzJCeC bLd+G5jQNarqBOEDxnmPbo76YZYDosMwxWP0MXm57RWzictCeZ9BrFeDw+joFeqo 5KewM2dLVhU0nmDsg+lLrsYexJpu7mY9k9UXXpaHGCwvQXlkKDlie0QB+rIF4hEj fwVGYlfgT2CGJ5UBhSeWyQIztQHWZ+wz+6Vkv4qLWHf5S968gXD6wIWNrH/UIEki QjKhcHvXlVXkhszg/folg0k1CsBqGieZ -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:20 2025 by rpki-client