$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: ytQRTvBaGvXHFaB16BvVWoy7gUQGSwxb5TDpuTU+d2k= Subject key identifier: 0C:07:16:89:30:88:59:31:BE:78:85:8D:A4:C7:05:A6:87:75:0E:2B Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BBF Signing time: Fri 30 May 2025 19:05:23 +0000 Manifest this update: Fri 30 May 2025 19:05:22 +0000 Manifest next update: Fri 06 Jun 2025 19:05:22 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: OdMGVaIQ5YsAfe14k4Cv7UMp8CGCEBWp1Ahz+p94U60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: May 30 19:05:22 2025 GMT Not After : Jun 6 19:05:22 2025 GMT Subject: CN=683a0173-8007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:69:21:51:53:5c:54:5a:34:08:79:b1:21:82: 17:2f:b2:16:57:1a:fe:dd:9f:a7:5f:38:5f:35:93: b9:78:01:54:ec:b4:cc:78:31:d4:37:d7:0b:d3:bf: 59:ea:8b:77:b8:70:6a:dc:b9:bd:08:c4:16:2d:2d: db:36:54:dd:2f:96:18:b1:6d:9b:40:af:37:43:06: 41:8a:a5:50:ff:48:dc:6c:e2:87:95:62:a5:ca:80: 94:d1:a0:58:2f:30:44:6b:bc:d6:a3:b5:4b:9c:56: 7a:8d:dc:c6:78:93:ad:a4:5d:62:fa:c2:39:28:dd: 9f:c7:89:12:88:d6:f7:94:ff:82:52:3a:92:fa:ce: 89:7f:d1:9c:a4:a8:7c:46:0b:34:7b:da:05:aa:e6: 7d:28:1f:b0:e8:00:9c:f3:07:98:7a:e3:ec:ef:4a: 7c:1b:2a:d0:be:8b:50:db:95:fb:b6:7e:0d:ed:a7: 20:35:99:28:e2:a5:47:31:1d:af:89:ee:84:cf:9c: 64:24:eb:d5:98:fe:65:4a:3e:20:69:bf:cf:ff:31: 32:71:e4:63:d1:90:74:fe:f3:45:ac:78:f1:66:5f: 0d:58:e1:a6:25:1e:d4:41:da:ca:52:70:b9:19:7b: 33:c4:a0:4d:42:c6:c8:e0:ea:8b:79:0a:90:50:26: f5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:07:16:89:30:88:59:31:BE:78:85:8D:A4:C7:05:A6:87:75:0E:2B X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:b1:96:aa:a9:0f:08:4c:84:a2:96:f9:68:7f:ed:f3:92:d9: 0a:c2:18:92:5a:49:8d:e4:aa:91:c4:30:de:5e:ad:bf:28:25: 4d:2d:53:2a:11:08:e6:55:0d:0f:ca:60:0c:51:d0:c7:ef:24: d2:70:88:d8:53:f2:75:c7:0b:fa:74:14:7b:57:b4:a2:31:26: 54:0b:f6:cf:5b:72:ad:9e:1c:6f:11:2d:43:14:47:91:e4:44: b2:cf:24:f7:b0:b5:69:6c:d3:5c:5f:a8:cf:c5:5d:f1:de:4f: 8f:ca:3a:d7:91:d5:d9:96:ce:8a:06:05:c8:79:de:07:c2:03: 68:cb:01:72:9d:21:a6:cb:26:57:68:42:4b:f3:3b:d9:27:1f: ae:26:ff:84:b5:23:bf:25:e3:f1:19:40:75:b5:37:e0:29:fe: 37:92:7f:62:4b:bf:8a:04:ee:c0:2c:51:75:b4:61:06:5c:c4: dd:ea:19:07:52:9b:8f:e5:8a:ee:35:e4:2b:2a:ef:da:eb:85: 8a:46:8d:63:53:04:fb:a9:93:3c:d8:ea:f2:2d:fc:f6:b8:4c: 40:cf:1e:70:02:9b:8c:40:fe:b8:c6:3c:6d:3b:f1:d7:1d:ea: 74:69:9f:38:02:ca:1b:fb:e5:49:50:2a:f1:62:c8:57:98:46: ce:1f:d4:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwNTMwMTkwNTIyWhcNMjUwNjA2MTkwNTIyWjAYMRYwFAYD VQQDEw02ODNhMDE3My04MDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GkhUVNcVFo0CHmxIYIXL7IWVxr+3Z+nXzhfNZO5eAFU7LTMeDHUN9cL079Z 6ot3uHBq3Lm9CMQWLS3bNlTdL5YYsW2bQK83QwZBiqVQ/0jcbOKHlWKlyoCU0aBY LzBEa7zWo7VLnFZ6jdzGeJOtpF1i+sI5KN2fx4kSiNb3lP+CUjqS+s6Jf9GcpKh8 Rgs0e9oFquZ9KB+w6ACc8weYeuPs70p8GyrQvotQ25X7tn4N7acgNZko4qVHMR2v ie6Ez5xkJOvVmP5lSj4gab/P/zEyceRj0ZB0/vNFrHjxZl8NWOGmJR7UQdrKUnC5 GXszxKBNQsbI4OqLeQqQUCb1gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwHFokw iFkxvniFjaTHBaaHdQ4rMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARsZaqqQ8ITISilvlof+3zktkKwhiSWkmN5KqRxDDeXq2/KCVNLVMq EQjmVQ0PymAMUdDH7yTScIjYU/J1xwv6dBR7V7SiMSZUC/bPW3KtnhxvES1DFEeR 5ESyzyT3sLVpbNNcX6jPxV3x3k+PyjrXkdXZls6KBgXIed4HwgNoywFynSGmyyZX aEJL8zvZJx+uJv+EtSO/JePxGUB1tTfgKf43kn9iS7+KBO7ALFF1tGEGXMTd6hkH UpuP5YruNeQrKu/a64WKRo1jUwT7qZM82OryLfz2uExAzx5wApuMQP64xjxtO/HX Hep0aZ84Asob++VJUCrxYshXmEbOH9RH -----END CERTIFICATE-----Generated at Sat May 31 17:24:43 2025 by rpki-client