$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: fMP/QfEc6IxHQUA+lORBglh/OGqFCLvPXb9QnRxIDDk= Subject key identifier: 4A:81:49:4E:56:EB:20:59:E4:7B:36:1A:EE:1C:16:AC:7F:EC:00:01 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BA5 Signing time: Sun 06 Apr 2025 18:44:16 +0000 Manifest this update: Sun 06 Apr 2025 18:44:15 +0000 Manifest next update: Sun 13 Apr 2025 18:44:15 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: AGlwyX10dIGhJKqz2LSQByWSHA5U//LD9SMwHB46dFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591 Validity Not Before: Apr 6 18:44:15 2025 GMT Not After : Apr 13 18:44:15 2025 GMT Subject: CN=67f2cb80-9d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:15:2e:45:5c:ba:45:b0:ef:10:35:27:70:4e: 2b:87:d5:39:94:09:3d:2d:1b:28:d3:71:e7:c3:32: a8:28:b7:5d:6f:60:2d:02:d5:6d:0d:ad:bb:ec:3a: c5:f1:8f:e4:d0:df:f9:26:43:ea:c4:e8:ac:20:a4: dc:80:16:3a:e8:18:0f:fe:b4:ac:9c:f7:bf:15:75: 0e:2f:45:56:c5:ef:8c:41:fa:a0:d8:89:f8:c6:48: e9:43:e7:e5:a2:cc:0e:4e:46:44:ff:4a:93:0d:2b: ba:13:6d:16:61:13:50:f7:ab:ab:8d:bd:37:83:63: ad:0f:d3:32:9a:fd:28:7a:ee:7a:1b:f4:ae:75:0f: b2:5d:f3:ac:8d:8a:a8:49:ef:f5:15:07:56:7e:09: 94:b4:f2:f7:53:dc:aa:c4:33:bb:f8:ee:37:6e:86: 0b:22:b8:db:dc:18:5a:b8:86:af:9d:c1:63:51:9c: 0c:4d:5c:4e:bc:c6:27:4c:2b:73:cb:a8:e0:3c:cf: 03:6c:29:64:56:65:64:12:a2:db:4f:7a:d0:a0:44: 29:35:c8:9e:30:b4:91:9d:0e:15:a4:2a:71:22:0a: 43:7e:6d:ac:d5:ec:64:ec:41:d3:8b:bd:14:8f:35: 40:61:1b:d8:f6:b3:67:a5:0b:12:44:0a:50:38:dc: d2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:81:49:4E:56:EB:20:59:E4:7B:36:1A:EE:1C:16:AC:7F:EC:00:01 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:68:dd:24:e7:75:a6:6b:25:29:73:81:d6:62:d7:2e:bf:a7: cb:95:29:44:4e:dc:2b:ba:0c:27:4e:58:bc:16:31:42:7c:50: 76:9e:9c:bf:b5:4c:07:91:41:05:1d:5b:0d:6c:9e:01:b2:56: 60:3b:5b:32:ef:23:0f:0f:98:b0:db:4d:a1:e9:e6:55:a5:2a: 68:bc:dc:fb:7f:f9:cf:9d:1c:a2:28:44:57:b0:8a:61:4a:da: 4c:f9:71:51:66:19:87:8e:d6:62:5d:d3:68:86:a9:6e:f6:26: 40:b2:f5:7f:e9:ea:1e:d6:1a:92:a9:d4:38:25:ff:b3:8e:8c: 79:4b:07:30:f9:65:6e:d4:7c:aa:1e:e7:ae:a6:8c:ba:8f:6e: 7d:16:c5:23:c4:e0:69:fe:2a:60:52:8c:0c:e4:2a:eb:cf:93: ba:38:38:d7:fc:62:bb:19:67:45:f9:1f:09:55:8c:bd:65:ee: 10:e7:d5:31:1f:8c:47:56:7d:ef:e5:7d:01:e6:5c:e7:d5:76: 3e:27:80:6b:ed:25:1f:d2:b5:4e:59:75:14:d5:39:80:c8:d5: 5d:e4:ff:6e:66:fa:af:9a:92:72:0b:d6:cc:27:32:f2:e2:07: 52:3e:17:52:3c:c9:90:12:ae:a2:59:5d:b8:3d:41:48:f1:ce: b5:01:37:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwNDA2MTg0NDE1WhcNMjUwNDEzMTg0NDE1WjAYMRYwFAYD VQQDEw02N2YyY2I4MC05ZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BUuRVy6RbDvEDUncE4rh9U5lAk9LRso03HnwzKoKLddb2AtAtVtDa277DrF 8Y/k0N/5JkPqxOisIKTcgBY66BgP/rSsnPe/FXUOL0VWxe+MQfqg2In4xkjpQ+fl oswOTkZE/0qTDSu6E20WYRNQ96urjb03g2OtD9Mymv0oeu56G/SudQ+yXfOsjYqo Se/1FQdWfgmUtPL3U9yqxDO7+O43boYLIrjb3BhauIavncFjUZwMTVxOvMYnTCtz y6jgPM8DbClkVmVkEqLbT3rQoEQpNcieMLSRnQ4VpCpxIgpDfm2s1exk7EHTi70U jzVAYRvY9rNnpQsSRApQONzSLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqBSU5W 6yBZ5Hs2Gu4cFqx/7AABMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlaN0k53WmayUpc4HWYtcuv6fLlSlETtwrugwnTli8FjFCfFB2npy/ tUwHkUEFHVsNbJ4BslZgO1sy7yMPD5iw202h6eZVpSpovNz7f/nPnRyiKERXsIph StpM+XFRZhmHjtZiXdNohqlu9iZAsvV/6eoe1hqSqdQ4Jf+zjox5Swcw+WVu1Hyq Hueupoy6j259FsUjxOBp/ipgUowM5Crrz5O6ODjX/GK7GWdF+R8JVYy9Ze4Q59Ux H4xHVn3v5X0B5lzn1XY+J4Br7SUf0rVOWXUU1TmAyNVd5P9uZvqvmpJyC9bMJzLy 4gdSPhdSPMmQEq6iWV24PUFI8c61ATcY -----END CERTIFICATE-----Generated at Mon Apr 7 03:12:37 2025 by rpki-client