$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: hvN1JsG6isYAziCDIHP3fkaimLtJOUjuV95zVv/Ezgc= Subject key identifier: 5E:9E:54:61:F3:30:86:01:43:A5:94:A1:A2:4F:71:76:65:F8:22:E0 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BF8 Signing time: Thu 18 Sep 2025 18:59:25 +0000 Manifest this update: Thu 18 Sep 2025 18:59:25 +0000 Manifest next update: Thu 25 Sep 2025 18:59:25 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: YDhWWYIx7iKUHQ3JpxDFO1g+tQ+i6BGAGzsnF1w7QS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3066 (0xbfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Sep 18 18:59:25 2025 GMT Not After : Sep 25 18:59:25 2025 GMT Subject: CN=68cc568d-081e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e8:34:b1:24:d2:82:dc:c3:43:a8:3d:99:ae: e5:80:9c:1b:6f:f8:ee:e3:85:4d:15:dc:49:a8:c5: 26:64:61:cd:22:48:55:b0:b3:b3:8e:ec:62:5d:5d: fd:f4:af:7e:be:46:07:0a:24:80:2d:c9:8d:e8:16: 13:43:7a:b6:57:42:a1:22:09:8b:5b:99:4e:b6:22: 0b:54:a2:f4:ca:f6:71:b3:6c:44:a9:f1:b2:71:d0: c5:7d:9b:07:b7:04:95:b6:cb:7c:96:3e:a8:1b:1c: 10:50:b4:d6:4f:9c:3f:f5:37:02:b8:f3:0f:da:1f: 17:8a:7e:79:19:a0:d4:df:26:90:75:6c:e1:b1:3f: c3:15:8b:03:9f:81:c7:1c:cf:3e:75:43:61:5a:0b: 17:70:e1:e2:45:a8:2e:0d:fe:79:a8:3f:62:67:d9: 87:7e:99:8f:de:13:e9:c3:e0:2a:e1:77:34:3d:a9: f1:a7:3a:ee:69:92:49:cd:9c:8b:89:5f:a0:82:c3: e9:e3:56:f5:df:6d:e6:f5:c3:8d:df:91:f7:7e:1d: af:de:e4:09:e2:b1:6f:0d:68:ce:c2:53:3d:7a:5a: 4e:2d:8d:ea:7b:c7:7e:da:3b:3d:c6:e5:8b:f3:9b: 80:47:8c:ca:72:76:76:4a:ce:d3:7f:86:67:98:5c: 8f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9E:54:61:F3:30:86:01:43:A5:94:A1:A2:4F:71:76:65:F8:22:E0 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:64:3e:95:83:31:8b:2a:6b:da:c5:52:f7:03:fd:1a:7e:95: bb:18:b5:52:c8:ce:e2:96:97:c7:d2:56:54:b9:1a:7b:87:5e: 3c:57:b4:2e:f7:43:83:06:3e:95:ba:4a:67:67:35:e1:f2:b5: 6a:4b:e6:63:12:fd:7c:ab:b4:e7:a8:36:e6:e0:25:7b:54:74: d6:18:3c:2f:ab:99:83:8f:24:a1:a6:d7:df:f0:6d:fd:4b:36: cf:81:94:8a:f1:dd:b8:0f:a1:b0:39:d6:a7:c9:11:14:2a:14: ad:ea:f6:a0:18:93:10:ca:c9:3c:a2:f6:cf:47:90:29:8b:b7: 05:46:c0:92:4c:1b:1a:07:90:ea:5c:71:49:26:d3:13:01:ad: 4e:af:c6:4c:6b:e2:00:39:3b:50:de:e2:fb:5f:10:35:8a:15: dd:85:5f:b2:ef:59:39:31:a9:66:b1:2a:dc:8f:c6:d8:33:97: 60:92:8e:91:a8:f9:fb:c1:68:94:e3:80:af:0b:2f:18:2e:ee: c9:64:c4:94:30:91:62:12:04:01:f1:35:6b:c4:7b:e4:a4:2f: ad:71:2b:49:32:30:49:71:e2:ea:de:74:f8:d6:e0:8b:6d:ed: c3:57:59:3c:b5:39:d1:8d:01:c2:35:23:95:15:1e:12:90:2c: ce:c3:17:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwOTE4MTg1OTI1WhcNMjUwOTI1MTg1OTI1WjAYMRYwFAYD VQQDEw02OGNjNTY4ZC0wODFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+g0sSTSgtzDQ6g9ma7lgJwbb/ju44VNFdxJqMUmZGHNIkhVsLOzjuxiXV39 9K9+vkYHCiSALcmN6BYTQ3q2V0KhIgmLW5lOtiILVKL0yvZxs2xEqfGycdDFfZsH twSVtst8lj6oGxwQULTWT5w/9TcCuPMP2h8Xin55GaDU3yaQdWzhsT/DFYsDn4HH HM8+dUNhWgsXcOHiRaguDf55qD9iZ9mHfpmP3hPpw+Aq4Xc0PanxpzruaZJJzZyL iV+ggsPp41b1323m9cON35H3fh2v3uQJ4rFvDWjOwlM9elpOLY3qe8d+2js9xuWL 85uAR4zKcnZ2Ss7Tf4ZnmFyPTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6eVGHz MIYBQ6WUoaJPcXZl+CLgMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUZD6VgzGLKmvaxVL3A/0afpW7GLVSyM7ilpfH0lZUuRp7h148V7Qu 90ODBj6VukpnZzXh8rVqS+ZjEv18q7TnqDbm4CV7VHTWGDwvq5mDjyShptff8G39 SzbPgZSK8d24D6GwOdanyREUKhSt6vagGJMQysk8ovbPR5Api7cFRsCSTBsaB5Dq XHFJJtMTAa1Or8ZMa+IAOTtQ3uL7XxA1ihXdhV+y71k5MalmsSrcj8bYM5dgko6R qPn7wWiU44CvCy8YLu7JZMSUMJFiEgQB8TVrxHvkpC+tcStJMjBJceLq3nT41uCL be3DV1k8tTnRjQHCNSOVFR4SkCzOwxey -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:26 2025 by rpki-client