$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: 0TepMkw//pHQyJuBhLvnQajJNVTskR2fc3GeOWcXUUk= Subject key identifier: 13:97:B2:35:BA:D0:50:43:96:D8:F0:CC:6F:BD:BC:68:86:E9:23:FE Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0C09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0C07 Signing time: Sat 18 Oct 2025 19:35:00 +0000 Manifest this update: Sat 18 Oct 2025 19:35:00 +0000 Manifest next update: Sat 25 Oct 2025 19:35:00 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: q+/Sx29nIqmpB31G5m0pszRX/qfYLB8IVJPYJ7kX+u4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3081 (0xc09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Oct 18 19:35:00 2025 GMT Not After : Oct 25 19:35:00 2025 GMT Subject: CN=68f3ebe4-e0c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:48:38:d5:a6:60:dd:2b:38:9a:51:ab:95:ae: 7b:c7:1c:b4:42:ca:81:93:21:7e:be:45:71:3b:d7: b3:87:23:30:b5:65:fe:a6:4b:df:8f:14:3b:4b:8b: 23:b6:ac:61:10:e9:23:96:e3:f9:cc:79:b2:e7:9f: 04:e8:84:0e:04:36:15:44:69:02:6a:a6:4d:00:e6: b8:50:91:94:ad:97:cd:62:dd:cf:0c:08:5b:02:dc: 0b:a3:68:e3:1e:1c:e2:86:d9:c6:b5:26:0a:2b:2e: 3a:1a:21:a0:19:af:af:d6:9b:26:45:2e:0c:c6:e7: 3d:88:18:a7:d1:21:43:fb:30:7d:d9:9f:41:b2:f3: 85:48:95:c0:3a:ff:d1:b6:ee:ba:c8:07:fb:c5:58: 11:8d:d4:ba:57:59:f1:e6:5d:b1:75:f8:9a:36:38: c8:15:60:3c:82:86:be:6d:fb:d6:7f:3f:f6:20:cc: 8b:2f:05:64:10:25:e5:3b:dc:9d:64:a9:28:bf:2d: b4:03:ce:1f:56:28:b1:7a:98:2e:e1:74:f4:cd:2e: 75:f0:d9:98:be:e5:a3:18:0f:07:19:74:96:dc:a4: 33:d4:79:28:f4:26:28:47:9a:f5:59:4c:5e:f9:49: 14:f1:a0:8f:cc:55:e2:ac:fd:f4:f8:81:8a:fa:db: 44:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:97:B2:35:BA:D0:50:43:96:D8:F0:CC:6F:BD:BC:68:86:E9:23:FE X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:5b:10:3a:d4:96:90:58:96:39:7d:56:8f:2d:17:7a:c3:53: 91:98:83:42:96:51:87:eb:47:1e:34:92:10:7d:56:9b:97:41: ce:1c:1a:05:f9:ba:78:ac:95:9c:1f:c0:c7:a7:b1:5c:92:28: d5:50:f1:18:c7:38:24:c1:07:63:38:f3:3e:9d:64:e1:b6:80: 5b:cb:db:c1:50:7e:d6:a4:2d:03:fd:ab:89:73:34:33:b1:bd: 69:46:17:f9:d0:26:db:00:c9:d5:61:a1:57:82:83:64:9f:da: 29:44:ce:0c:a6:e1:bf:3e:7f:bc:c0:f1:a6:38:55:30:c2:b7: fc:74:96:fe:f0:61:40:66:ba:c8:ab:7c:2e:bc:6c:ed:64:20: 7f:42:07:a9:da:41:32:b5:71:7d:6e:de:bd:d6:09:c2:d2:4c: c1:49:36:c3:e1:6f:14:f9:a5:07:ea:81:e2:78:22:b1:fb:46: 3f:65:bb:90:33:cf:7a:9b:f4:e8:e3:52:a9:28:f8:9f:95:3c: ad:12:a6:31:d3:bb:71:0b:c9:d1:59:10:d1:d0:86:37:d3:4b: c3:35:ef:8a:50:3b:59:61:f1:92:aa:7e:fd:70:98:ce:e1:ef: 30:54:e6:a4:8b:53:9d:b3:fb:64:97:80:42:03:8e:cb:e2:f7: aa:c3:fe:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUxMDE4MTkzNTAwWhcNMjUxMDI1MTkzNTAwWjAYMRYwFAYD VQQDEw02OGYzZWJlNC1lMGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEg41aZg3Ss4mlGrla57xxy0QsqBkyF+vkVxO9ezhyMwtWX+pkvfjxQ7S4sj tqxhEOkjluP5zHmy558E6IQOBDYVRGkCaqZNAOa4UJGUrZfNYt3PDAhbAtwLo2jj HhzihtnGtSYKKy46GiGgGa+v1psmRS4Mxuc9iBin0SFD+zB92Z9BsvOFSJXAOv/R tu66yAf7xVgRjdS6V1nx5l2xdfiaNjjIFWA8goa+bfvWfz/2IMyLLwVkECXlO9yd ZKkovy20A84fViixepgu4XT0zS518NmYvuWjGA8HGXSW3KQz1Hko9CYoR5r1WUxe +UkU8aCPzFXirP30+IGK+ttEaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOXsjW6 0FBDltjwzG+9vGiG6SP+MB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeWxA61JaQWJY5fVaPLRd6w1ORmINCllGH60ceNJIQfVabl0HOHBoF +bp4rJWcH8DHp7FckijVUPEYxzgkwQdjOPM+nWThtoBby9vBUH7WpC0D/auJczQz sb1pRhf50CbbAMnVYaFXgoNkn9opRM4MpuG/Pn+8wPGmOFUwwrf8dJb+8GFAZrrI q3wuvGztZCB/Qgep2kEytXF9bt691gnC0kzBSTbD4W8U+aUH6oHieCKx+0Y/ZbuQ M896m/To41KpKPiflTytEqYx07txC8nRWRDR0IY300vDNe+KUDtZYfGSqn79cJjO 4e8wVOaki1Ods/tkl4BCA47L4veqw/4x -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:36 2025 by rpki-client