$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: JjNVI4vqD17iPIzKwWovdJp/2b7HUVLJgrOzI6zkXDI= Subject key identifier: 43:17:EB:80:0B:45:A3:D3:20:F4:14:62:2E:83:62:66:A9:06:A1:5D Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 5C Signing time: Sat 09 Aug 2025 07:39:59 +0000 Manifest this update: Sat 09 Aug 2025 07:39:59 +0000 Manifest next update: Sat 16 Aug 2025 07:39:59 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: Hq+PUsCkmfdn5fdA7gwABvagM9r51DumzlPbJzHNxIk=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Aug 9 07:39:59 2025 GMT Not After : Aug 16 07:39:59 2025 GMT Subject: CN=6896fb4f-c085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dc:38:12:7d:9b:c4:4a:9f:69:f9:65:1a:11: 36:c2:49:b5:f1:0f:45:2d:bd:9d:2c:88:7b:81:b0: 06:aa:bd:86:0c:87:1d:20:de:ee:cd:b7:de:59:ad: c7:33:84:91:61:95:10:a4:e4:dc:a4:df:0a:88:e0: b0:5d:67:dd:1b:3e:7b:15:be:40:cc:e1:62:05:23: 87:3d:1d:b9:70:5a:83:44:77:e1:ee:6d:a4:eb:30: 34:74:b2:65:7a:ec:06:48:3f:fd:f2:65:d8:3f:03: 8b:e6:7d:07:dd:73:d5:88:62:47:ca:dc:99:e9:3b: 26:08:7a:58:99:5b:fa:a1:4d:8e:b0:3c:21:38:32: 72:13:26:30:ba:4b:2c:43:e6:65:94:b2:97:ea:45: a5:12:42:54:1e:5a:96:01:ee:d6:3d:fc:18:7d:ee: bc:03:6a:dc:a6:1c:95:81:7f:2a:c4:34:8c:7e:73: 7e:a8:d0:22:50:78:2d:11:de:64:88:16:93:e8:92: 45:ff:f5:1c:14:ed:d9:64:dd:73:db:13:90:e4:15: 1d:83:f5:50:20:6e:bd:d1:41:9f:20:1e:6e:62:33: 74:6c:ab:f2:5b:43:eb:60:a0:ac:84:00:47:bf:ef: 8a:5a:3d:66:22:3e:12:0e:16:9b:a1:38:ca:8e:e8: 04:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:17:EB:80:0B:45:A3:D3:20:F4:14:62:2E:83:62:66:A9:06:A1:5D X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:61:42:d7:c9:80:8e:5e:64:18:9f:b3:bf:74:e6:9e:cc:f4: f4:bd:ed:42:de:61:ca:e3:24:78:f8:6b:12:62:2b:c1:0e:b7: 1a:a7:95:42:db:26:f2:78:d0:f4:99:8b:19:41:18:be:7c:51: cb:dd:61:2d:c5:de:88:b9:01:83:7b:51:51:aa:54:63:d0:b7: d7:c5:24:1f:2f:59:82:69:9f:e2:00:bc:ab:87:d0:1a:2d:d4: f7:8d:69:94:35:bd:79:a6:36:c1:68:72:37:e5:3c:5c:77:e8: 92:cd:05:70:e4:50:32:b8:38:6c:14:6c:0f:5c:30:a3:04:0e: 01:bb:42:fe:5e:90:47:4f:f4:22:12:f6:dc:4a:44:b5:99:7f: 0d:35:21:b0:ce:ad:ff:e0:c7:07:92:19:3e:8f:09:17:5a:ee: 89:d2:cc:9c:b0:1a:68:9a:46:97:6b:df:04:03:9e:ff:e4:b4: 31:8e:c5:d4:a5:40:f1:62:f5:94:51:e4:34:a4:d0:2b:df:b5: f0:00:53:50:fe:07:46:5d:30:bb:8c:a3:f2:28:ff:55:67:0f: 47:a3:9d:36:92:fd:67:0b:75:26:38:10:09:7e:a6:7d:17:a4: ea:fb:7a:6d:6d:1e:39:e8:d6:36:37:18:ce:cb:0a:d3:da:5e: f6:a9:41:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA4MDkwNzM5NTlaFw0yNTA4MTYwNzM5NTlaMBgxFjAUBgNV BAMTDTY4OTZmYjRmLWMwODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCY3DgSfZvESp9p+WUaETbCSbXxD0UtvZ0siHuBsAaqvYYMhx0g3u7Nt95Zrccz hJFhlRCk5Nyk3wqI4LBdZ90bPnsVvkDM4WIFI4c9HblwWoNEd+HubaTrMDR0smV6 7AZIP/3yZdg/A4vmfQfdc9WIYkfK3JnpOyYIeliZW/qhTY6wPCE4MnITJjC6SyxD 5mWUspfqRaUSQlQeWpYB7tY9/Bh97rwDatymHJWBfyrENIx+c36o0CJQeC0R3mSI FpPokkX/9RwU7dlk3XPbE5DkFR2D9VAgbr3RQZ8gHm5iM3Rsq/JbQ+tgoKyEAEe/ 74paPWYiPhIOFpuhOMqO6ASDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQxfrgAtF o9Mg9BRiLoNiZqkGoV0wHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKdhQtfJgI5eZBifs7905p7M9PS97ULeYcrjJHj4axJiK8EOtxqnlULb JvJ40PSZixlBGL58UcvdYS3F3oi5AYN7UVGqVGPQt9fFJB8vWYJpn+IAvKuH0Bot 1PeNaZQ1vXmmNsFocjflPFx36JLNBXDkUDK4OGwUbA9cMKMEDgG7Qv5ekEdP9CIS 9txKRLWZfw01IbDOrf/gxweSGT6PCRda7onSzJywGmiaRpdr3wQDnv/ktDGOxdSl QPFi9ZRR5DSk0CvftfAAU1D+B0ZdMLuMo/Io/1VnD0ejnTaS/WcLdSY4EAl+pn0X pOr7em1tHjno1jY3GM7LCtPaXvapQfY= -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:28 2025 by rpki-client