$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: MSJZmbdTI32dUlKr45dpKKvfPDckwIidNzOAbg7oIbI= Subject key identifier: 6E:F5:F9:53:32:51:02:90:3F:12:D1:E3:E6:E2:70:03:6F:20:FE:D0 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BDA Signing time: Tue 22 Jul 2025 19:04:48 +0000 Manifest this update: Tue 22 Jul 2025 19:04:48 +0000 Manifest next update: Tue 29 Jul 2025 19:04:48 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: Kf663AQU7Poalw3tph2UmFlYRhDmuuCph9y/tLhvCAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3036 (0xbdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Jul 22 19:04:48 2025 GMT Not After : Jul 29 19:04:48 2025 GMT Subject: CN=687fe0d0-a3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:88:a2:bd:2b:c5:5a:f6:57:39:db:ef:03: f4:bc:89:58:fa:f8:d3:b4:d9:bb:29:c1:fe:76:58: 61:09:ef:71:0c:2f:58:0b:4b:02:a1:10:ed:9b:aa: 71:f1:0b:94:b0:39:80:c5:d2:59:96:0a:30:b0:95: e7:fa:8a:03:d0:79:9a:e6:fb:42:c9:ae:65:fc:50: c0:35:6c:cc:71:e1:bb:6e:06:ae:c9:38:b4:76:38: 2c:61:60:d6:39:1e:e7:76:dc:be:2c:d4:13:49:3d: 38:9b:3b:49:8e:b8:14:9a:9b:53:5f:4a:9c:02:6a: 0a:25:c0:85:cd:38:35:07:fc:9a:fa:e7:04:b8:a8: 61:b2:37:8c:94:32:f0:16:bc:99:f1:6f:bc:6b:44: ca:3f:f6:d8:dc:89:12:5b:33:78:2b:b9:1f:b4:07: 26:76:5f:89:2c:9c:a5:5f:16:52:0b:14:ad:9a:48: 19:f3:05:26:f9:ac:f8:dd:54:4a:07:e3:da:4d:af: 2d:14:2d:71:fc:69:a4:b4:fc:fe:9d:4a:fe:77:ac: 70:ae:ed:77:17:1e:86:f2:fa:57:d4:6a:55:e0:d9: c1:69:ed:d7:7a:1e:c5:73:00:d2:da:59:d1:f5:92: e8:5b:b6:f9:df:2e:7e:67:52:99:ad:e6:17:aa:46: e0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F5:F9:53:32:51:02:90:3F:12:D1:E3:E6:E2:70:03:6F:20:FE:D0 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:24:8b:c6:c0:0e:1e:67:04:95:40:b1:de:f4:a4:ed:f6:7c: 93:53:a2:45:d0:40:0d:08:ca:00:aa:de:80:69:65:77:c0:f9: 96:48:bf:36:11:0b:dd:80:81:33:55:5e:42:82:2f:9d:12:3f: 36:b9:ff:0d:33:81:90:2f:5e:ab:07:ac:9c:4a:c8:0b:d2:5c: 1c:5e:c3:87:c4:e6:81:4d:a3:a0:aa:83:dc:90:f0:a0:83:96: 48:4e:43:0c:9f:3f:b4:44:d6:85:78:e8:b6:fa:79:31:99:ab: a1:c8:9f:f7:85:8d:78:78:69:37:5d:ae:44:07:fe:fe:8c:4c: dc:c4:9f:bd:e5:ca:f0:4c:a3:e2:62:58:66:89:56:52:d4:7f: cc:18:b1:ff:38:8d:66:96:b8:9b:83:9b:1f:ec:4c:40:59:ef: a7:11:00:3b:ce:c9:05:0c:be:67:a3:a7:1b:3b:e5:4f:a0:e3: fe:70:4b:ce:11:8f:c9:6b:80:40:32:1e:61:54:9c:15:1d:18: d8:41:93:be:48:bc:92:06:5c:4c:5f:cb:f9:12:a9:19:ed:79: 4d:fb:92:45:eb:5f:76:8e:55:ef:7b:3d:cb:88:28:58:b7:a5: 4a:4d:8f:8d:ff:04:58:ea:e7:98:47:09:e4:df:43:3f:6e:9f: 82:74:fa:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwNzIyMTkwNDQ4WhcNMjUwNzI5MTkwNDQ4WjAYMRYwFAYD VQQDEw02ODdmZTBkMC1hM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0uIor0rxVr2Vznb7wP0vIlY+vjTtNm7KcH+dlhhCe9xDC9YC0sCoRDtm6px 8QuUsDmAxdJZlgowsJXn+ooD0Hma5vtCya5l/FDANWzMceG7bgauyTi0djgsYWDW OR7ndty+LNQTST04mztJjrgUmptTX0qcAmoKJcCFzTg1B/ya+ucEuKhhsjeMlDLw FryZ8W+8a0TKP/bY3IkSWzN4K7kftAcmdl+JLJylXxZSCxStmkgZ8wUm+az43VRK B+PaTa8tFC1x/GmktPz+nUr+d6xwru13Fx6G8vpX1GpV4NnBae3Xeh7FcwDS2lnR 9ZLoW7b53y5+Z1KZreYXqkbgRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG71+VMy UQKQPxLR4+bicANvIP7QMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6JIvGwA4eZwSVQLHe9KTt9nyTU6JF0EANCMoAqt6AaWV3wPmWSL82 EQvdgIEzVV5Cgi+dEj82uf8NM4GQL16rB6ycSsgL0lwcXsOHxOaBTaOgqoPckPCg g5ZITkMMnz+0RNaFeOi2+nkxmauhyJ/3hY14eGk3Xa5EB/7+jEzcxJ+95crwTKPi YlhmiVZS1H/MGLH/OI1mlribg5sf7ExAWe+nEQA7zskFDL5no6cbO+VPoOP+cEvO EY/Ja4BAMh5hVJwVHRjYQZO+SLySBlxMX8v5EqkZ7XlN+5JF6192jlXvez3LiChY t6VKTY+N/wRY6ueYRwnk30M/bp+CdPq3 -----END CERTIFICATE-----Generated at Wed Jul 23 02:31:02 2025 by rpki-client