$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft File: myAvlYUe_EtkzjtAnGxgSzW0mNg.mft (raw, json) Hash identifier: 5YSE2dt6sDIIgaAE/hbBdxJ0Dv49IwCCQ5HxpOSBAvQ= Subject key identifier: 9F:D8:1C:22:02:95:5D:62:F3:14:6D:60:62:59:8A:99:F3:1A:F7:1F Authority key identifier: 9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 Certificate issuer: /CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Certificate serial: 09A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft Manifest number: 099D Signing time: Thu 24 Apr 2025 19:58:20 +0000 Manifest this update: Thu 24 Apr 2025 19:58:19 +0000 Manifest next update: Thu 01 May 2025 19:58:19 +0000 Files and hashes: 1: myAvlYUe_EtkzjtAnGxgSzW0mNg.crl (hash: aB9nN68/Hz3P0M8Tz1+h9gtlsgqSoi4DNLzH2kTZxbI=) 2: 1EEB10267CFB11EBA8C7B009C4F9AE02.roa (hash: O77zp6ks0TqxaDAkJp4Lm1+BoJkZNosQNYkw2uGOZ3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5CE4, serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Validity Not Before: Apr 24 19:58:19 2025 GMT Not After : May 1 19:58:19 2025 GMT Subject: CN=680a97dc-a26c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:73:37:cf:af:20:d8:13:05:b9:96:49:ab:f5: 94:21:b5:41:3a:35:0c:fa:29:0a:1a:c6:4c:3c:d1: 3f:f7:ee:dd:8f:c4:73:cc:5d:5b:84:80:17:80:6e: 7d:c8:c9:d8:c3:ca:aa:5d:e9:b8:94:e6:7f:2b:e4: 3d:5a:fe:47:4b:e7:7f:a4:e2:b1:45:91:e2:a9:7c: b9:a5:98:19:44:f4:11:39:cc:9d:d3:8a:4f:92:0d: ac:ad:b2:40:be:a5:ce:7e:07:ff:fb:e6:f8:3f:58: 34:8c:2b:17:7c:e8:08:65:db:6a:d4:d6:fa:c7:d4: 43:89:a9:55:2e:86:65:fe:46:67:a9:10:fa:3c:4e: a8:aa:ee:99:1b:21:19:47:71:bd:77:55:50:55:4d: e3:69:86:2e:cf:96:43:79:86:de:81:06:5a:52:26: 66:5b:87:f3:2b:26:28:79:b0:c3:e4:d3:2a:67:a6: a7:38:95:2e:7f:34:e7:02:2a:d5:d7:44:59:1c:a2: 2a:8f:77:b6:b6:3b:f8:e8:da:76:cc:58:cb:4c:9d: 61:e0:50:1b:86:10:a0:af:d6:ee:ab:57:1d:ee:fa: 66:e8:3c:dc:05:5b:76:36:66:e1:1e:5b:8a:81:09: a1:a0:56:39:31:cc:f4:59:1b:cd:5d:78:52:72:5f: 35:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D8:1C:22:02:95:5D:62:F3:14:6D:60:62:59:8A:99:F3:1A:F7:1F X509v3 Authority Key Identifier: keyid:9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:14:b9:cf:f4:83:45:e6:7b:7b:7d:79:61:30:3e:94:08:7c: ae:d6:a7:8a:a9:21:2d:95:48:c5:b8:28:10:0c:9c:d8:2d:66: 80:e5:db:6f:6b:6f:61:83:99:19:4f:3d:12:be:85:a1:e9:0a: 84:c8:c8:67:43:21:9e:76:81:f7:f7:36:70:7a:0f:54:1a:cf: 07:f3:a5:09:41:d5:78:55:e9:a8:e8:eb:cd:29:a3:b1:51:47: 4e:f0:ba:98:eb:cc:92:43:0d:b1:87:86:e6:b4:f2:97:39:4a: 87:e7:8f:57:45:01:4a:1a:4b:77:d0:f3:00:15:b8:20:09:33: 4e:6a:01:8a:3f:74:19:22:ce:f0:7e:83:ce:97:72:5e:b0:01: 00:2c:91:be:d1:7b:a5:d4:8a:96:b7:12:1d:bc:c2:8f:19:a9: b0:c5:2b:24:33:67:51:7c:f2:65:fd:81:d3:a4:72:16:24:a4: 71:5f:37:b5:ef:86:81:51:fb:2b:e2:6f:8c:f5:19:e1:76:d1: d5:87:c0:ec:b5:cc:ed:8e:82:ce:53:bf:41:63:5c:a1:e5:a1: 22:2b:6c:75:50:61:43:7a:04:e0:54:4a:33:d8:6c:81:87:09: 0f:53:a5:f5:f0:fc:21:be:9a:ba:44:ec:3a:5d:1c:30:47:ea: 41:32:f1:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDRTQxMTAvBgNVBAUTKDlCMjAyRjk1ODUxRUZDNEI2NENFM0I0MDlDNkM2MDRC MzVCNDk4RDgwHhcNMjUwNDI0MTk1ODE5WhcNMjUwNTAxMTk1ODE5WjAYMRYwFAYD VQQDEw02ODBhOTdkYy1hMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXM3z68g2BMFuZZJq/WUIbVBOjUM+ikKGsZMPNE/9+7dj8RzzF1bhIAXgG59 yMnYw8qqXem4lOZ/K+Q9Wv5HS+d/pOKxRZHiqXy5pZgZRPQROcyd04pPkg2srbJA vqXOfgf/++b4P1g0jCsXfOgIZdtq1Nb6x9RDialVLoZl/kZnqRD6PE6oqu6ZGyEZ R3G9d1VQVU3jaYYuz5ZDeYbegQZaUiZmW4fzKyYoebDD5NMqZ6anOJUufzTnAirV 10RZHKIqj3e2tjv46Np2zFjLTJ1h4FAbhhCgr9buq1cd7vpm6DzcBVt2NmbhHluK gQmhoFY5Mcz0WRvNXXhScl81IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/YHCIC lV1i8xRtYGJZipnzGvcfMB8GA1UdIwQYMBaAFJsgL5WFHvxLZM47QJxsYEs1tJjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUNFNC8zRUZGMUE5QTg2 MzYxMUVBQUU2QjExNDJDNEY5QUUwMi9teUF2bFlVZV9FdGt6anRBbkd4Z1N6VzBt TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL215QXZsWVVlX0V0a3pqdEFuR3hnU3pXMG1OZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUNFNC8zRUZGMUE5QTg2MzYxMUVBQUU2QjExNDJDNEY5QUUwMi9teUF2bFlVZV9F dGt6anRBbkd4Z1N6VzBtTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdFLnP9INF5nt7fXlhMD6UCHyu1qeKqSEtlUjFuCgQDJzYLWaA5dtv a29hg5kZTz0SvoWh6QqEyMhnQyGedoH39zZweg9UGs8H86UJQdV4Vemo6OvNKaOx UUdO8LqY68ySQw2xh4bmtPKXOUqH549XRQFKGkt30PMAFbggCTNOagGKP3QZIs7w foPOl3JesAEALJG+0Xul1IqWtxIdvMKPGamwxSskM2dRfPJl/YHTpHIWJKRxXze1 74aBUfsr4m+M9RnhdtHVh8DstcztjoLOU79BY1yh5aEiK2x1UGFDegTgVEoz2GyB hwkPU6X18Pwhvpq6ROw6XRwwR+pBMvHq -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:52 2025 by rpki-client