$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: 4lZyWl0Bjm9uZPHRpf6UZrNK0WDFGaDsAVziw60arb0= Subject key identifier: E2:8D:A0:5B:96:9F:39:E6:25:55:C4:89:28:EF:7E:FD:D6:B3:BD:1F Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0BEA Signing time: Fri 22 Aug 2025 18:56:39 +0000 Manifest this update: Fri 22 Aug 2025 18:56:38 +0000 Manifest next update: Fri 29 Aug 2025 18:56:38 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: w60bMXpztzs5R/Ir9+3u67PXjHu5SakiLSCBcGlNBng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Aug 22 18:56:38 2025 GMT Not After : Aug 29 18:56:38 2025 GMT Subject: CN=68a8bd67-7c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:75:b8:db:86:f8:1c:b0:a6:c7:58:3a:79:76: d3:ca:a8:4b:f4:7b:fa:c4:5e:e8:71:67:cc:19:09: 33:22:49:cb:be:5b:37:c7:34:cf:0d:0b:2a:bd:e9: b9:06:77:e1:f0:4e:7f:46:bf:62:07:9c:e1:d2:41: 0b:b5:3d:b1:77:37:3a:42:a5:2e:51:5b:4b:31:c9: c3:4c:45:16:79:c2:dd:b6:81:88:7d:c3:00:84:d8: dd:a2:cd:a0:09:02:95:40:51:0a:72:81:ac:39:eb: 92:a6:a4:ed:76:5b:ae:05:d7:b4:7a:bc:31:e2:9e: 51:c9:5b:3b:a8:f5:c1:31:8c:2d:61:09:56:f9:93: a5:89:07:6a:95:2b:b5:4b:6c:d5:ab:da:5e:8f:a6: 57:9b:46:7a:74:c5:c5:94:d6:75:c4:b5:8c:52:44: ed:3e:42:c1:17:ee:a5:30:26:a5:6a:41:a7:99:01: 1a:9b:0a:b9:6e:3e:10:88:6b:01:84:88:d8:ed:0d: d2:ae:ef:53:44:cb:4d:87:89:e5:c1:5b:81:9b:b3: 38:19:d3:c2:71:a6:fd:54:3f:f6:67:bb:ea:ad:b4: 45:04:43:99:e1:b9:f2:3b:8d:b6:de:55:11:62:fc: c2:33:04:90:82:21:f6:2a:dc:a4:13:a2:e2:c6:bb: f2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8D:A0:5B:96:9F:39:E6:25:55:C4:89:28:EF:7E:FD:D6:B3:BD:1F X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:61:04:e1:e1:4a:01:10:0b:e1:ee:46:1f:9a:f5:1e:a8:10: 09:b3:64:70:57:ed:ac:9a:76:0d:c4:44:f6:22:58:e9:6d:bb: f8:b6:88:29:16:81:86:eb:7c:58:21:56:d7:66:cd:64:44:cf: b1:4b:a9:dc:97:1b:a5:19:ce:7c:b5:4d:92:cc:1e:75:b5:e1: 02:b1:7b:16:02:6b:dc:46:09:b7:4c:a2:eb:02:cf:d4:24:23: 3c:c8:a2:ce:6b:ff:fd:de:bf:42:5f:85:84:74:a1:b1:0a:7d: 89:24:d1:5f:c5:ed:3c:06:ea:62:14:8e:46:53:fe:bd:56:63: ca:f0:fa:dc:3b:92:c2:58:5d:0b:5e:bb:7f:e2:e0:fa:e8:b7: 5f:a4:b6:22:8b:db:87:00:f7:e8:73:d5:5b:02:f9:6f:79:23: a3:1f:02:9b:13:38:70:89:a5:94:b3:ad:91:b3:7b:da:7d:96: 81:4d:73:3c:92:39:7e:2b:bb:e6:d2:2b:ca:0e:73:07:22:6e: e4:85:a7:b3:9e:cf:f4:40:73:c9:82:8f:8d:d3:0f:2c:b5:e4: 0d:c4:a1:02:ab:a3:18:54:17:67:22:a9:5e:17:91:77:cd:d1: d9:b4:66:93:1a:c7:4c:0c:3c:63:6c:63:f2:8c:84:7e:f2:dc: 31:6b:10:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUwODIyMTg1NjM4WhcNMjUwODI5MTg1NjM4WjAYMRYwFAYD VQQDEw02OGE4YmQ2Ny03Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXW424b4HLCmx1g6eXbTyqhL9Hv6xF7ocWfMGQkzIknLvls3xzTPDQsqvem5 Bnfh8E5/Rr9iB5zh0kELtT2xdzc6QqUuUVtLMcnDTEUWecLdtoGIfcMAhNjdos2g CQKVQFEKcoGsOeuSpqTtdluuBde0erwx4p5RyVs7qPXBMYwtYQlW+ZOliQdqlSu1 S2zVq9pej6ZXm0Z6dMXFlNZ1xLWMUkTtPkLBF+6lMCalakGnmQEamwq5bj4QiGsB hIjY7Q3Sru9TRMtNh4nlwVuBm7M4GdPCcab9VD/2Z7vqrbRFBEOZ4bnyO4223lUR YvzCMwSQgiH2KtykE6LixrvyAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKNoFuW nznmJVXEiSjvfv3Ws70fMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQYQTh4UoBEAvh7kYfmvUeqBAJs2RwV+2smnYNxET2Iljpbbv4togp FoGG63xYIVbXZs1kRM+xS6nclxulGc58tU2SzB51teECsXsWAmvcRgm3TKLrAs/U JCM8yKLOa//93r9CX4WEdKGxCn2JJNFfxe08BupiFI5GU/69VmPK8PrcO5LCWF0L Xrt/4uD66LdfpLYii9uHAPfoc9VbAvlveSOjHwKbEzhwiaWUs62Rs3vafZaBTXM8 kjl+K7vm0ivKDnMHIm7khaezns/0QHPJgo+N0w8steQNxKECq6MYVBdnIqleF5F3 zdHZtGaTGsdMDDxjbGPyjIR+8twxaxAv -----END CERTIFICATE-----Generated at Sat Aug 23 19:36:55 2025 by rpki-client