$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: Qasny1QL/6N9EvnwEHMk7l3fQ9/sNtoqnPzPvwNeKnk= Subject key identifier: 55:37:AA:30:2D:6D:D9:C1:FA:17:A8:9B:81:B2:BF:AD:82:BC:98:8F Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 48 Signing time: Tue 01 Jul 2025 08:11:07 +0000 Manifest this update: Tue 01 Jul 2025 08:11:07 +0000 Manifest next update: Tue 08 Jul 2025 08:11:07 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: qjeyOrfDapQZHo6XmviY7L7TQyN7Kz7ozC5PmBTlpNM=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Jul 1 08:11:07 2025 GMT Not After : Jul 8 08:11:07 2025 GMT Subject: CN=6863981b-9f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:af:bb:8c:b1:4b:64:9c:70:d0:f9:e3:12:1f: 03:ee:73:0c:18:24:4e:a2:3e:c4:e9:6f:9a:df:80: 96:0b:0d:44:53:13:53:31:25:6e:c6:5f:7a:f9:d5: 35:08:1b:4e:ea:26:db:52:52:56:cd:a6:00:67:48: dd:61:29:ed:d7:7b:94:ef:b6:53:fe:ec:c5:d4:93: 9f:41:5b:a2:19:0e:93:2e:85:1d:02:06:82:22:f9: 36:4d:4a:dc:41:fa:c0:76:20:a1:04:a4:79:4e:59: a8:75:ba:9a:7a:64:56:0c:1b:09:37:35:9e:9f:8d: 47:59:dc:69:8d:a0:db:00:0b:68:d7:09:8a:80:00: 34:01:c9:57:07:ce:10:94:da:10:a9:f1:73:69:8d: 59:da:ba:3d:2b:59:2f:6a:01:71:00:11:21:ce:73: bb:92:af:08:2d:ea:fa:04:73:cc:c7:92:f9:c5:e9: 45:94:7f:d9:1d:6c:82:25:11:69:77:4b:0b:f2:86: 25:dd:ec:3f:53:b8:36:1f:2e:c9:41:a0:49:db:b1: e2:9b:05:21:af:82:32:b0:89:f7:a6:56:f0:85:2b: ab:6e:8b:f4:06:6b:52:25:88:64:84:2d:d3:3a:99: e3:67:09:cd:27:86:e5:d1:b8:25:e9:16:da:57:20: 9e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:37:AA:30:2D:6D:D9:C1:FA:17:A8:9B:81:B2:BF:AD:82:BC:98:8F X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:4f:63:e9:73:5e:04:b5:21:2e:ac:8f:9f:ca:5c:ea:4d:eb: d4:11:be:8b:83:4a:b1:b6:9e:80:b6:c9:a8:f2:52:93:54:c0: 8f:97:1d:01:b0:9f:90:85:d4:35:81:ff:05:27:d2:0d:15:7f: 41:21:44:c9:f0:b1:ce:0e:63:60:85:a8:66:1a:bb:3f:1c:2d: 90:37:f1:19:26:80:a4:a6:07:18:c7:49:ae:5d:d9:01:42:50: 5a:93:57:b2:51:5f:69:60:ed:88:af:db:fd:5c:8c:85:04:a0: b6:bf:8a:3b:81:39:ee:95:a5:37:10:b4:70:e9:ac:15:86:a6: 32:91:20:ab:5b:8e:7c:c9:11:e7:08:11:71:f9:c5:d3:eb:2d: b4:16:3b:08:35:27:e9:82:b3:5e:92:42:70:6a:e6:d4:d0:a7: f6:21:4e:1a:b2:5b:ca:0b:e4:36:69:1a:30:70:07:0c:e6:96: 65:aa:f1:5b:f7:ec:6d:ca:39:52:30:91:a3:e7:ac:0f:c9:e9: 82:4d:34:27:35:3d:68:f8:b2:1c:5f:fd:50:af:68:c3:eb:6f: 7d:2e:97:78:09:c8:8a:05:74:d5:0f:7a:4d:aa:52:8f:a5:9b: 3b:9f:9d:8d:d4:91:4f:80:62:65:4b:d4:b8:d2:da:84:61:25: 65:bd:7c:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA3MDEwODExMDdaFw0yNTA3MDgwODExMDdaMBgxFjAUBgNV BAMTDTY4NjM5ODFiLTlmNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdr7uMsUtknHDQ+eMSHwPucwwYJE6iPsTpb5rfgJYLDURTE1MxJW7GX3r51TUI G07qJttSUlbNpgBnSN1hKe3Xe5TvtlP+7MXUk59BW6IZDpMuhR0CBoIi+TZNStxB +sB2IKEEpHlOWah1upp6ZFYMGwk3NZ6fjUdZ3GmNoNsAC2jXCYqAADQByVcHzhCU 2hCp8XNpjVnauj0rWS9qAXEAESHOc7uSrwgt6voEc8zHkvnF6UWUf9kdbIIlEWl3 SwvyhiXd7D9TuDYfLslBoEnbseKbBSGvgjKwifemVvCFK6tui/QGa1IliGSELdM6 meNnCc0nhuXRuCXpFtpXIJ5HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVTeqMC1t 2cH6F6ibgbK/rYK8mI8wHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKBPY+lzXgS1IS6sj5/KXOpN69QRvouDSrG2noC2yajyUpNUwI+XHQGw n5CF1DWB/wUn0g0Vf0EhRMnwsc4OY2CFqGYauz8cLZA38RkmgKSmBxjHSa5d2QFC UFqTV7JRX2lg7Yiv2/1cjIUEoLa/ijuBOe6VpTcQtHDprBWGpjKRIKtbjnzJEecI EXH5xdPrLbQWOwg1J+mCs16SQnBq5tTQp/YhThqyW8oL5DZpGjBwBwzmlmWq8Vv3 7G3KOVIwkaPnrA/J6YJNNCc1PWj4shxf/VCvaMPrb30ul3gJyIoFdNUPek2qUo+l mzufnY3UkU+AYmVL1LjS2oRhJWW9fJ8= -----END CERTIFICATE-----Generated at Wed Jul 2 22:45:32 2025 by rpki-client