$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: rYBWm4W/dm8WpRGWIkqxBOCg1kkeAfof9pfgSmqtafQ= Subject key identifier: 3D:10:20:E7:AA:E2:80:A5:0B:65:04:0E:69:FD:87:96:A9:E5:37:61 Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 63 Signing time: Sat 23 Aug 2025 07:19:26 +0000 Manifest this update: Sat 23 Aug 2025 07:19:25 +0000 Manifest next update: Sat 30 Aug 2025 07:19:25 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: 1E3t64bcInInw+7nIO7nwPmBcB86r5t9pRlMCgW09rI=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Aug 23 07:19:25 2025 GMT Not After : Aug 30 07:19:25 2025 GMT Subject: CN=68a96b7e-64ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f9:45:b7:b1:c5:6a:9c:e4:68:db:85:7c:34: 04:90:11:6d:82:2d:36:3f:f6:cc:f4:4e:c8:28:25: 38:92:de:44:05:8f:e8:b0:ab:46:df:0b:78:ad:59: a7:86:8f:36:d9:95:9c:64:e0:0a:d8:cb:a3:4c:5d: 88:b2:ed:79:51:82:90:63:af:f5:be:c0:77:ea:c7: 8b:7f:77:5b:97:89:d0:2c:de:04:d8:de:1e:84:ee: 3b:c2:a0:8a:a8:78:78:c3:b9:d3:73:93:18:48:64: 44:1c:64:33:93:47:a8:8b:b9:35:c6:bb:44:79:92: 67:b9:7f:b8:69:c6:8a:a0:ef:72:3a:09:be:e6:4b: 72:5d:9f:07:25:b1:12:cc:d4:0b:65:19:77:fc:d7: 58:1d:12:34:08:8b:0e:3b:4c:53:a1:81:44:3d:5d: a8:44:05:e5:13:66:6b:42:91:f6:31:9b:eb:5f:8d: 7c:10:2a:7b:16:2e:d0:aa:38:79:0b:48:08:42:01: 21:25:81:83:07:1a:4b:7e:09:e8:cf:cc:a8:b6:10: 1d:91:a8:23:37:e9:2e:8d:c1:32:3f:74:b8:a3:f1: 96:87:07:c8:37:5f:1d:fc:51:34:bf:9f:c2:89:1b: ba:7f:a9:e2:3d:16:19:ea:32:42:c3:d0:52:c7:af: 5f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:10:20:E7:AA:E2:80:A5:0B:65:04:0E:69:FD:87:96:A9:E5:37:61 X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:cb:2c:28:d3:c8:0b:bd:84:dd:4b:1b:37:f0:33:b6:5b:b1: 93:86:10:49:f0:65:1e:0b:23:5e:22:9a:0f:cb:1f:35:d2:d3: 34:d3:06:e8:23:3f:e4:d7:6d:c4:49:e2:7d:a9:fe:c8:99:56: 41:b7:0d:8d:53:bc:4b:65:a2:f6:bf:22:50:f2:85:c0:40:b1: ab:52:6b:c9:01:4d:ec:75:e0:e7:7f:4c:54:e0:25:04:93:b3: ba:5c:27:e9:a9:f5:25:05:6f:a1:f4:89:dc:10:e2:63:8c:2f: 61:f1:76:93:37:f0:e6:2c:7b:cc:3c:9e:47:2b:4d:84:a3:af: 31:8d:70:d3:58:af:41:2c:b6:80:fc:e2:1f:2a:1f:b5:c9:65: 8f:93:93:f2:d1:b3:30:6c:6b:94:41:e0:98:31:be:db:8f:fc: ca:ea:59:25:8f:57:fb:27:b8:e9:18:a2:71:cb:80:9a:30:20: 16:18:60:2a:58:d8:ec:ae:8f:46:b9:85:2c:2d:b9:a9:db:9a: 34:61:a4:75:1f:c7:21:67:e5:f7:ee:e5:bb:83:11:65:ee:1e: 3e:17:06:a3:87:22:b7:e9:ec:f8:5b:4b:a0:e8:3e:db:44:85: 86:bc:1f:52:eb:38:ce:d4:b8:d3:ac:a5:a6:cb:a1:72:45:56: 13:b1:d4:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA4MjMwNzE5MjVaFw0yNTA4MzAwNzE5MjVaMBgxFjAUBgNV BAMTDTY4YTk2YjdlLTY0YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC++UW3scVqnORo24V8NASQEW2CLTY/9sz0TsgoJTiS3kQFj+iwq0bfC3itWaeG jzbZlZxk4ArYy6NMXYiy7XlRgpBjr/W+wHfqx4t/d1uXidAs3gTY3h6E7jvCoIqo eHjDudNzkxhIZEQcZDOTR6iLuTXGu0R5kme5f7hpxoqg73I6Cb7mS3JdnwclsRLM 1AtlGXf811gdEjQIiw47TFOhgUQ9XahEBeUTZmtCkfYxm+tfjXwQKnsWLtCqOHkL SAhCASElgYMHGkt+CejPzKi2EB2RqCM36S6NwTI/dLij8ZaHB8g3Xx38UTS/n8KJ G7p/qeI9FhnqMkLD0FLHr191AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPRAg56ri gKULZQQOaf2HlqnlN2EwHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMjLLCjTyAu9hN1LGzfwM7ZbsZOGEEnwZR4LI14img/LHzXS0zTTBugj P+TXbcRJ4n2p/siZVkG3DY1TvEtlova/IlDyhcBAsatSa8kBTex14Od/TFTgJQST s7pcJ+mp9SUFb6H0idwQ4mOML2HxdpM38OYse8w8nkcrTYSjrzGNcNNYr0EstoD8 4h8qH7XJZY+Tk/LRszBsa5RB4JgxvtuP/MrqWSWPV/snuOkYonHLgJowIBYYYCpY 2Oyuj0a5hSwtuanbmjRhpHUfxyFn5ffu5buDEWXuHj4XBqOHIrfp7PhbS6DoPttE hYa8H1LrOM7UuNOspabLoXJFVhOx1Go= -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:33 2025 by rpki-client