$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: 3qlLmEAhW3fbKPCpJcZbY3HDjvXgYLR5gO306UKANvk= Subject key identifier: 87:B5:56:33:00:6E:2F:47:EB:0A:2D:1F:FF:D6:3E:E0:25:28:FB:45 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BB8 Signing time: Wed 14 May 2025 19:01:52 +0000 Manifest this update: Wed 14 May 2025 19:01:52 +0000 Manifest next update: Wed 21 May 2025 19:01:52 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: XHAu/rPFUAEkySpc3P2B5Q54I3fQF3SfypERyZaIHdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3002 (0xbba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: May 14 19:01:52 2025 GMT Not After : May 21 19:01:52 2025 GMT Subject: CN=6824e8a0-4cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:55:d6:c6:32:8b:52:47:e8:a7:60:96:d0:d4: ea:a2:90:49:b3:e7:92:65:e7:23:5a:90:23:a7:b5: b5:33:10:63:42:43:09:08:37:57:16:c8:00:93:3a: 02:ec:c8:7f:dc:74:65:3a:d8:68:12:3a:3d:a7:0b: a5:47:35:5e:00:8b:f0:94:4b:f3:bf:d2:90:b2:61: 26:4e:bb:ce:e5:f7:92:88:9b:e9:c0:21:50:f3:6c: 64:fc:dc:32:9b:bd:56:5f:52:47:e6:4b:19:53:6f: de:3f:6e:ca:2f:06:bf:37:78:42:08:c8:6e:46:e9: d1:c6:b8:52:36:37:00:64:17:b4:dc:29:1e:0d:75: a4:27:4b:c0:ab:d8:f6:af:a6:d0:60:09:ff:9e:f0: bd:b0:6e:e4:76:4f:49:96:e1:46:cd:6d:2a:fa:8f: 27:30:5c:b2:53:02:b7:fa:04:18:a3:e7:bc:b8:2d: 69:5a:7f:f1:52:d1:25:9c:7c:12:ff:10:26:0c:b0: 7f:1d:6e:0a:53:42:0c:d8:bf:43:66:7c:bb:3d:0d: 25:54:9a:53:5c:99:b3:cc:40:0d:7e:2d:34:b0:28: 57:8f:38:fd:12:03:9f:b7:0d:2f:dc:ff:b7:13:7d: b1:53:fd:de:b4:8c:9a:85:3d:c4:bc:7e:0e:0b:97: 60:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B5:56:33:00:6E:2F:47:EB:0A:2D:1F:FF:D6:3E:E0:25:28:FB:45 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a0:cf:fa:be:d9:a6:d3:a1:00:23:6b:16:30:e8:86:91:81: 36:60:cf:1d:31:12:4a:64:a7:aa:10:e8:31:63:dd:a9:24:fc: fe:12:38:5d:55:09:39:31:c4:6a:45:c3:32:5d:6b:33:91:44: b8:21:99:76:93:a2:d3:54:31:20:26:f4:2d:56:6f:49:32:4c: c4:e5:82:37:49:42:ee:b3:45:0b:a3:da:85:3e:3b:ac:ab:ba: 74:1f:23:ce:80:75:25:14:81:3a:f7:06:2a:d1:7f:1c:bf:38: 36:87:0c:6e:54:55:0d:9d:3d:95:ca:3c:79:77:80:0b:42:20: 45:9b:b4:f6:a4:82:76:25:58:5a:d4:6c:e5:ae:e5:cd:4c:e4: 66:bf:0c:64:74:c1:2f:7b:b5:3e:8c:35:8e:c1:d2:ae:ee:a0: 44:53:d1:3b:1e:5f:6b:fb:5e:35:64:36:7b:64:1b:a8:7d:28: c0:0e:1f:ce:d4:25:c6:00:40:fd:72:50:3e:bc:c2:1c:12:51: c8:56:64:6a:5d:05:bd:2c:97:92:c4:d0:1d:50:f8:32:be:55: 15:a0:5f:48:d6:76:c3:e7:31:c9:9d:87:7a:e7:e5:30:5a:89: 1b:9a:bd:35:d7:ef:45:af:86:6e:74:e2:32:98:e2:27:40:7f: 9d:21:f0:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwNTE0MTkwMTUyWhcNMjUwNTIxMTkwMTUyWjAYMRYwFAYD VQQDEw02ODI0ZThhMC00Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlXWxjKLUkfop2CW0NTqopBJs+eSZecjWpAjp7W1MxBjQkMJCDdXFsgAkzoC 7Mh/3HRlOthoEjo9pwulRzVeAIvwlEvzv9KQsmEmTrvO5feSiJvpwCFQ82xk/Nwy m71WX1JH5ksZU2/eP27KLwa/N3hCCMhuRunRxrhSNjcAZBe03CkeDXWkJ0vAq9j2 r6bQYAn/nvC9sG7kdk9JluFGzW0q+o8nMFyyUwK3+gQYo+e8uC1pWn/xUtElnHwS /xAmDLB/HW4KU0IM2L9DZny7PQ0lVJpTXJmzzEANfi00sChXjzj9EgOftw0v3P+3 E32xU/3etIyahT3EvH4OC5dgUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIe1VjMA bi9H6wotH//WPuAlKPtFMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfoM/6vtmm06EAI2sWMOiGkYE2YM8dMRJKZKeqEOgxY92pJPz+Ejhd VQk5McRqRcMyXWszkUS4IZl2k6LTVDEgJvQtVm9JMkzE5YI3SULus0ULo9qFPjus q7p0HyPOgHUlFIE69wYq0X8cvzg2hwxuVFUNnT2Vyjx5d4ALQiBFm7T2pIJ2JVha 1GzlruXNTORmvwxkdMEve7U+jDWOwdKu7qBEU9E7Hl9r+141ZDZ7ZBuofSjADh/O 1CXGAED9clA+vMIcElHIVmRqXQW9LJeSxNAdUPgyvlUVoF9I1nbD5zHJnYd65+Uw Wokbmr011+9Fr4ZudOIymOInQH+dIfDl -----END CERTIFICATE-----Generated at Thu May 15 09:28:02 2025 by rpki-client