$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: jG7OzESKrDSDYR3xPJETsSb84EPqQ6bJ2ghy1GzTtzQ= Subject key identifier: 70:5F:48:97:7C:C7:2C:62:9D:1F:99:8C:6B:92:9B:29:43:40:3D:37 Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 30 Signing time: Tue 13 May 2025 06:55:24 +0000 Manifest this update: Tue 13 May 2025 06:55:23 +0000 Manifest next update: Tue 20 May 2025 06:55:23 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: /mQKOAlWwKcRi/um/2WjkhrfWTirJVWW/aFfpC5thro=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: May 13 06:55:23 2025 GMT Not After : May 20 06:55:23 2025 GMT Subject: CN=6822ecdb-5859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:3c:ee:8b:74:6c:58:d0:06:c9:8a:8a:04:0d: e9:ce:3b:74:0e:bd:c4:6b:f1:75:ac:e4:4c:29:27: 3b:aa:70:4d:09:67:1b:83:aa:5d:d2:fc:bb:9f:bf: a1:11:25:69:70:7f:85:4f:8a:ae:ea:b4:9a:db:59: 31:ce:b2:fe:26:61:57:c9:85:02:a7:7a:9c:af:db: 32:45:a5:78:4a:88:8a:95:fc:cd:91:7e:b4:c5:8e: ac:53:ca:c1:c8:3c:60:86:fc:6a:8a:f4:8f:b3:65: b1:fd:fe:5e:1a:cd:ce:0b:0f:ed:89:b0:8f:1d:6e: 24:d0:cd:5c:fe:37:a6:03:86:d7:9d:65:48:3a:98: 21:ef:ea:d8:78:02:e8:11:95:43:86:b3:17:1a:69: bf:6d:b8:07:59:12:b8:5b:5d:de:37:36:ce:b4:6a: 9f:dc:00:8a:fe:47:68:67:9c:15:ef:25:ad:80:18: d3:57:df:81:a6:99:c6:a9:fc:58:57:14:d0:5f:41: fb:ce:d7:d5:b6:38:49:e0:97:5d:08:c5:fc:dd:39: c2:45:2a:ee:ae:d5:9d:48:d6:ad:d2:48:be:50:0d: 9f:e3:a6:3c:fe:30:db:e1:1c:46:a4:9e:91:76:c7: 63:29:02:14:2a:ba:6c:00:f0:c6:56:48:07:1a:c0: a4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5F:48:97:7C:C7:2C:62:9D:1F:99:8C:6B:92:9B:29:43:40:3D:37 X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:6a:92:7c:38:a5:b9:7b:4f:d2:fe:86:d4:0e:0b:cb:60:a6: b9:30:fc:05:c1:e6:7f:7b:31:57:e9:b6:ca:e0:4c:29:00:bc: c1:7a:d3:2f:45:8e:06:c7:79:62:0a:6e:67:81:6a:78:6c:9d: 07:37:e7:f4:52:3d:2f:1a:a7:78:86:fd:70:bf:b1:cc:02:f5: b2:1d:22:c0:84:ab:d8:b2:32:a3:eb:a8:2f:3b:ab:a7:a7:0a: de:04:fd:1a:bc:e6:45:61:a1:e2:e9:56:bb:c5:6e:c8:6e:53: f9:9e:19:b8:19:0f:5f:a5:61:8c:51:67:6e:21:93:49:b5:f0: 3b:6a:d1:0b:14:6a:23:5c:bc:5f:d8:95:60:93:11:84:02:0f: 13:c0:c7:65:18:0d:2b:3a:3b:f4:a4:d0:ac:6f:4f:93:1d:99: c4:f8:6f:4e:f6:81:9d:08:77:40:d2:36:48:79:b4:42:b8:75: ae:3b:68:28:ae:03:2d:64:64:c7:ae:a2:c7:7f:7b:38:11:8c: 3d:5d:6e:41:14:e6:86:21:31:6d:87:35:8a:46:e8:10:a0:1b: 74:4b:cf:1d:27:a2:ec:e7:77:3a:2a:dc:c0:3b:46:e3:1b:3a: a7:b8:fa:d1:7f:59:0a:8e:98:a1:66:bc:80:be:1e:5e:99:ac: 24:7f:76:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA1MTMwNjU1MjNaFw0yNTA1MjAwNjU1MjNaMBgxFjAUBgNV BAMTDTY4MjJlY2RiLTU4NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzPO6LdGxY0AbJiooEDenOO3QOvcRr8XWs5EwpJzuqcE0JZxuDql3S/Lufv6ER JWlwf4VPiq7qtJrbWTHOsv4mYVfJhQKnepyv2zJFpXhKiIqV/M2RfrTFjqxTysHI PGCG/GqK9I+zZbH9/l4azc4LD+2JsI8dbiTQzVz+N6YDhtedZUg6mCHv6th4AugR lUOGsxcaab9tuAdZErhbXd43Ns60ap/cAIr+R2hnnBXvJa2AGNNX34Gmmcap/FhX FNBfQfvO19W2OEngl10IxfzdOcJFKu6u1Z1I1q3SSL5QDZ/jpjz+MNvhHEaknpF2 x2MpAhQqumwA8MZWSAcawKQ1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcF9Il3zH LGKdH5mMa5KbKUNAPTcwHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGxqknw4pbl7T9L+htQOC8tgprkw/AXB5n97MVfptsrgTCkAvMF60y9F jgbHeWIKbmeBanhsnQc35/RSPS8ap3iG/XC/scwC9bIdIsCEq9iyMqPrqC87q6en Ct4E/Rq85kVhoeLpVrvFbshuU/meGbgZD1+lYYxRZ24hk0m18Dtq0QsUaiNcvF/Y lWCTEYQCDxPAx2UYDSs6O/Sk0KxvT5MdmcT4b072gZ0Id0DSNkh5tEK4da47aCiu Ay1kZMeuosd/ezgRjD1dbkEU5oYhMW2HNYpG6BCgG3RLzx0nouzndzoq3MA7RuMb Oqe4+tF/WQqOmKFmvIC+Hl6ZrCR/dhM= -----END CERTIFICATE-----Generated at Tue May 13 19:55:39 2025 by rpki-client