$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: Esy15pTqZpyOyW3mJqEdZDNS5tZ7cGLk8xKU5KObj10= Subject key identifier: 44:CE:6D:98:10:95:C3:2F:86:1C:A2:4F:A6:17:15:5E:C9:C6:63:0E Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 3F Signing time: Fri 13 Jun 2025 06:26:16 +0000 Manifest this update: Fri 13 Jun 2025 06:26:16 +0000 Manifest next update: Fri 20 Jun 2025 06:26:16 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: UVhE5vpwv/dCwZE94DRWmmC8KXMZMrxyrYiaultn1Us=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Jun 13 06:26:16 2025 GMT Not After : Jun 20 06:26:16 2025 GMT Subject: CN=684bc488-69bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:0e:58:c1:b7:aa:21:77:c0:95:59:c1:3c: 58:6f:83:5c:70:0f:4d:74:85:8e:2d:ff:49:d1:ab: d2:c2:f1:bb:df:c6:56:80:45:aa:03:89:bc:e8:58: 8f:ee:2a:e3:c4:90:c4:17:fb:c7:ba:f4:c0:1b:56: b7:cf:b9:88:95:35:e3:5c:c4:22:54:72:74:2c:78: e4:b5:76:15:c4:bc:20:fb:72:e3:16:88:1a:4e:2f: 92:cb:a3:c9:eb:ac:4c:93:ed:8c:35:a6:ab:69:6d: 04:af:9f:24:1e:38:2e:48:bb:4a:5d:d9:a9:da:d7: a5:bc:d4:ac:56:82:c3:5e:53:c2:8f:9b:15:9e:b1: 3e:ca:5f:1b:1f:6c:99:39:6d:59:02:0e:0d:24:46: 23:08:9e:1b:fd:c0:29:1e:65:10:4b:93:76:36:57: dd:4f:c9:3b:60:87:f8:d6:00:fb:61:a3:4b:23:32: 82:18:f3:a4:18:88:f6:44:bb:14:0d:ca:ff:09:41: 03:7b:6b:c5:fa:d4:a3:e3:49:55:79:10:67:28:02: 9c:47:54:45:52:94:b6:8f:db:40:93:00:e4:f1:dd: 6c:1c:37:e6:db:38:5e:d1:de:97:cc:c7:d0:d2:57: a6:26:29:b5:ff:de:b5:28:f2:52:44:13:fc:52:f4: 7c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CE:6D:98:10:95:C3:2F:86:1C:A2:4F:A6:17:15:5E:C9:C6:63:0E X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f9:76:c9:a7:47:59:d3:12:f7:79:cf:03:1f:e5:b7:43:e6: 86:64:29:eb:bc:3b:0a:05:f5:41:bc:ec:53:51:5f:06:e6:d4: 1e:79:2b:84:8f:40:49:0f:ef:26:81:71:17:2a:43:b2:6a:9d: 8b:e7:ae:99:59:3c:7f:18:32:46:84:13:af:9a:bc:0a:87:5c: 13:dd:b0:5c:12:99:3a:00:05:d2:da:92:b1:dc:b6:b6:a6:18: a2:93:89:69:fe:0d:80:a6:f8:ed:21:59:99:60:64:58:68:35: 0d:36:51:3c:2c:f1:87:72:7d:c9:52:b8:05:ea:04:a1:b2:9a: 89:15:87:92:2b:34:2e:35:f2:42:f0:2a:e3:f2:91:d5:b1:39: d1:c0:91:e6:99:78:65:b1:ce:79:c6:ed:9d:7e:77:2f:f4:73: 4d:7f:ab:26:47:a6:d1:71:0d:f9:e2:ed:85:d6:a2:6f:bc:c8: d1:86:cd:a9:ec:0f:f4:77:f7:ef:24:10:68:7c:77:88:b7:bb: 06:f1:f7:98:f1:f8:cb:22:d0:90:f0:d5:75:82:16:82:03:8b: 89:8b:dd:71:0d:88:c1:c4:62:4c:8a:c6:24:86:ab:15:a4:a3: a1:22:fc:80:e3:c3:b6:91:46:92:80:ef:52:4d:d5:09:b2:38: 23:d4:1d:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA2MTMwNjI2MTZaFw0yNTA2MjAwNjI2MTZaMBgxFjAUBgNV BAMTDTY4NGJjNDg4LTY5YmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8LA5YwbeqIXfAlVnBPFhvg1xwD010hY4t/0nRq9LC8bvfxlaARaoDibzoWI/u KuPEkMQX+8e69MAbVrfPuYiVNeNcxCJUcnQseOS1dhXEvCD7cuMWiBpOL5LLo8nr rEyT7Yw1pqtpbQSvnyQeOC5Iu0pd2ana16W81KxWgsNeU8KPmxWesT7KXxsfbJk5 bVkCDg0kRiMInhv9wCkeZRBLk3Y2V91PyTtgh/jWAPtho0sjMoIY86QYiPZEuxQN yv8JQQN7a8X61KPjSVV5EGcoApxHVEVSlLaP20CTAOTx3WwcN+bbOF7R3pfMx9DS V6YmKbX/3rUo8lJEE/xS9HwfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURM5tmBCV wy+GHKJPphcVXsnGYw4wHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJr5dsmnR1nTEvd5zwMf5bdD5oZkKeu8OwoF9UG87FNRXwbm1B55K4SP QEkP7yaBcRcqQ7JqnYvnrplZPH8YMkaEE6+avAqHXBPdsFwSmToABdLakrHctram GKKTiWn+DYCm+O0hWZlgZFhoNQ02UTws8YdyfclSuAXqBKGymokVh5IrNC418kLw KuPykdWxOdHAkeaZeGWxznnG7Z1+dy/0c01/qyZHptFxDfni7YXWom+8yNGGzans D/R39+8kEGh8d4i3uwbx95jx+Msi0JDw1XWCFoIDi4mL3XENiMHEYkyKxiSGqxWk o6Ei/IDjw7aRRpKA71JN1QmyOCPUHUA= -----END CERTIFICATE-----Generated at Sun Jun 15 08:46:45 2025 by rpki-client