$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: /k6dUDdPrFOTtZ9M5WsJxSoeIxJfMHEQxzhQ9SssEvo= Subject key identifier: 89:68:FA:6F:56:08:D2:40:05:7C:FC:89:F1:79:DE:7E:8F:60:36:2A Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 27 Signing time: Fri 25 Apr 2025 06:48:20 +0000 Manifest this update: Fri 25 Apr 2025 06:48:19 +0000 Manifest next update: Fri 02 May 2025 06:48:19 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: 2ySL9hH9jLg1u5wVLBbXohE2zMFRB4I9WHSByhLFMl0=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Apr 25 06:48:19 2025 GMT Not After : May 2 06:48:19 2025 GMT Subject: CN=680b3033-114e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bb:7e:e1:4f:6a:36:ad:78:53:8c:f7:1a:c7: 8d:df:d1:cc:5b:b1:71:af:78:cb:40:a3:fa:4c:d6: 16:06:ce:db:b1:50:4d:93:eb:18:3e:af:46:98:3a: 2a:4c:78:44:2f:58:54:b0:19:d0:08:4a:9a:8e:13: c5:5f:b4:a5:2c:47:c7:75:bd:a9:40:85:59:7a:9d: 6a:13:ee:fe:fa:b5:cd:e5:77:9a:b2:fc:a3:ec:25: e1:18:f6:a6:7e:37:68:46:39:46:5b:de:3d:a4:41: f3:c0:1e:b6:36:57:df:bf:dd:b8:fe:70:ae:29:72: 3f:f2:99:f3:29:5e:75:d7:ab:04:40:87:7c:f8:50: 47:35:e8:c2:2b:34:4c:52:6b:2e:12:22:1c:15:e6: 0d:46:27:7a:63:6a:51:4b:09:bb:4e:84:b2:a3:9d: 86:1a:84:61:48:13:7c:20:1f:71:90:65:1a:99:1c: 08:bd:a5:73:be:b5:99:c6:0a:0b:e9:64:d0:7a:21: 22:54:cd:14:50:be:59:3e:10:84:fd:19:21:8a:92: 34:25:ce:a1:1a:e2:9c:0b:e6:7b:be:01:07:73:3e: 9a:98:bd:4d:14:ac:0a:dd:83:a6:36:0d:5f:07:c3: cd:75:d1:06:24:11:1b:1a:da:d0:18:6a:03:f8:b2: 12:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:68:FA:6F:56:08:D2:40:05:7C:FC:89:F1:79:DE:7E:8F:60:36:2A X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:e7:49:b7:f5:e9:3a:04:f0:06:49:66:f0:8b:db:95:2d:ca: 86:e9:54:45:b5:65:ba:c5:4a:1f:ff:8d:96:c0:84:66:c2:3b: f3:cf:93:c4:bd:cf:9c:2f:db:b9:8a:40:66:e1:3e:fd:2e:55: 74:41:e2:23:8e:b8:4b:eb:91:df:e1:fc:91:09:ef:87:f8:37: 59:31:37:15:46:71:4c:3d:b4:75:e0:37:02:52:a1:53:94:c8: 17:d2:19:23:7d:9b:28:2d:16:11:f1:35:6b:03:e0:43:80:33: 22:8b:30:7f:ac:40:19:98:2a:b3:8e:cc:09:52:d4:34:17:b1: 23:5a:85:5f:5c:00:f1:81:7d:ba:ea:c6:44:14:cb:59:d4:63: a9:dd:57:7b:ac:70:60:63:c3:dc:b8:35:11:05:31:fd:3e:20: 89:54:33:4c:cc:b3:c2:47:fa:f3:42:50:a6:2e:0e:21:db:e4: eb:17:1a:23:9d:ba:18:c4:9c:2a:ec:ce:e8:3c:4e:6c:a6:5b: a9:3a:2c:34:18:1c:b9:35:78:5d:94:19:16:a1:3b:3b:e9:bf: ef:ee:ef:45:63:da:3a:dc:3b:44:c0:36:04:83:56:f6:65:a0: bc:1f:21:45:1d:bb:aa:77:fe:6c:a5:8f:58:46:a9:70:de:bd: a1:66:c1:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA0MjUwNjQ4MTlaFw0yNTA1MDIwNjQ4MTlaMBgxFjAUBgNV BAMTDTY4MGIzMDMzLTExNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCku37hT2o2rXhTjPcax43f0cxbsXGveMtAo/pM1hYGztuxUE2T6xg+r0aYOipM eEQvWFSwGdAISpqOE8VftKUsR8d1valAhVl6nWoT7v76tc3ld5qy/KPsJeEY9qZ+ N2hGOUZb3j2kQfPAHrY2V9+/3bj+cK4pcj/ymfMpXnXXqwRAh3z4UEc16MIrNExS ay4SIhwV5g1GJ3pjalFLCbtOhLKjnYYahGFIE3wgH3GQZRqZHAi9pXO+tZnGCgvp ZNB6ISJUzRRQvlk+EIT9GSGKkjQlzqEa4pwL5nu+AQdzPpqYvU0UrArdg6Y2DV8H w8110QYkERsa2tAYagP4shInAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiWj6b1YI 0kAFfPyJ8Xnefo9gNiowHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG3nSbf16ToE8AZJZvCL25UtyobpVEW1ZbrFSh//jZbAhGbCO/PPk8S9 z5wv27mKQGbhPv0uVXRB4iOOuEvrkd/h/JEJ74f4N1kxNxVGcUw9tHXgNwJSoVOU yBfSGSN9mygtFhHxNWsD4EOAMyKLMH+sQBmYKrOOzAlS1DQXsSNahV9cAPGBfbrq xkQUy1nUY6ndV3uscGBjw9y4NREFMf0+IIlUM0zMs8JH+vNCUKYuDiHb5OsXGiOd uhjEnCrszug8TmymW6k6LDQYHLk1eF2UGRahOzvpv+/u70Vj2jrcO0TANgSDVvZl oLwfIUUdu6p3/mylj1hGqXDevaFmwV4= -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:55 2025 by rpki-client