$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: hz21eX2kaxiZ5Yws6+wC3hRu8CF3F3dEmU9H6WA0ZOU= Subject key identifier: 19:15:B7:02:A7:95:0F:0C:24:C0:6C:04:DA:7C:B7:42:35:B0:E0:D2 Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: 28 Signing time: Sun 27 Apr 2025 06:37:35 +0000 Manifest this update: Sun 27 Apr 2025 06:37:35 +0000 Manifest next update: Sun 04 May 2025 06:37:35 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: d18xfdNgRI/6iTHR9O1iYVU9KCzxOaM+iUSOuHcr9Og=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: /3sx9qkns8VuuHaAsuXJH8HOSf3Re0TlGJBe6HbkiRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Apr 27 06:37:35 2025 GMT Not After : May 4 06:37:35 2025 GMT Subject: CN=680dd0af-7633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:84:ea:4b:58:6f:4b:1f:53:d3:e1:c0:1e:8f: d4:d7:7e:44:7c:e2:13:20:56:33:f5:a6:20:83:d9: 2f:c4:42:a2:82:c0:2a:2d:06:76:1e:5d:89:93:c3: 40:06:60:0d:fc:07:a8:13:b0:04:23:82:a2:08:1a: 9f:fa:d4:b2:2a:0e:fc:fd:ce:27:3e:45:f7:3c:c1: bf:ac:5d:9b:9d:3a:36:87:98:9d:da:26:81:a6:e5: 14:ed:28:e2:54:42:01:67:1a:a2:e9:73:3f:e5:75: 42:69:f8:9b:d4:0b:22:58:45:62:13:69:b9:b1:c9: e6:30:5a:6b:ba:ba:24:d7:d8:fe:32:45:a0:07:a2: 20:9e:6b:ab:1c:01:79:2f:c3:76:e3:00:c7:ab:00: 90:ca:34:0b:25:a4:0b:9b:15:74:6e:8f:a2:b5:9c: 22:3b:7b:54:a2:ab:bd:4f:d8:12:85:43:88:5b:6b: a4:48:b3:6f:fb:f5:bd:27:fe:6d:34:6a:60:1b:18: d9:b1:94:ea:04:d0:30:5c:83:62:dc:4d:08:20:89: 52:50:e7:74:06:53:cf:6d:80:e2:0f:2b:09:84:d7: 73:8c:db:30:7d:f3:57:8f:3f:12:64:76:14:ed:6e: 36:a8:40:8d:b5:f4:56:33:23:e6:bb:0d:95:c1:dc: 24:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:15:B7:02:A7:95:0F:0C:24:C0:6C:04:DA:7C:B7:42:35:B0:E0:D2 X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ae:d5:aa:ed:92:8a:c5:4e:81:99:0e:26:88:97:9f:cc:87: 31:d9:4d:85:a3:98:a0:72:64:11:07:88:ca:ba:21:4d:ee:23: 71:89:50:bb:b3:1c:d2:fc:7e:29:6e:fb:1a:94:55:4c:82:be: 7d:8b:28:c5:91:ab:fe:48:d0:12:76:52:0a:b1:0c:1e:e8:61: 3f:2c:c1:3b:7e:91:60:14:6f:7f:6f:16:50:1b:a7:90:db:99: 09:6a:1b:8c:8c:ed:4e:8a:5b:ed:3c:d8:fe:a3:c9:63:65:da: 29:79:f4:33:43:7a:df:19:8d:4c:66:be:3a:9e:db:37:25:e1: d9:6a:da:89:c6:e7:5f:9d:74:68:73:2d:5a:0d:e6:0b:b6:a0: d2:c1:17:4c:a0:b5:45:2a:66:cb:7c:4f:ff:05:fc:d8:39:68: 94:3d:7c:57:dc:50:85:ea:26:d9:34:9f:43:fb:d5:8d:b8:79: 56:52:d7:0c:d6:23:9f:36:9b:1c:0d:ad:e3:54:75:55:04:40: f7:42:f3:ae:da:fc:42:53:2a:1d:fa:e4:40:29:cf:ca:61:a8: 75:bf:01:d4:e9:5e:ac:ac:f6:31:cf:82:3f:c6:d3:bf:c9:02: e9:a0:f8:c9:06:c2:45:a8:f9:7a:a8:b4:f8:d9:fe:8d:c9:ce: 7b:b6:1a:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NEIwMjExMC8GA1UEBRMoNkFGODNEMTcyNTBFMTZFQzM4NzZFNTY3QUUzRTFEQUI4 MzI1MUMwNjAeFw0yNTA0MjcwNjM3MzVaFw0yNTA1MDQwNjM3MzVaMBgxFjAUBgNV BAMTDTY4MGRkMGFmLTc2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCghOpLWG9LH1PT4cAej9TXfkR84hMgVjP1piCD2S/EQqKCwCotBnYeXYmTw0AG YA38B6gTsAQjgqIIGp/61LIqDvz9zic+Rfc8wb+sXZudOjaHmJ3aJoGm5RTtKOJU QgFnGqLpcz/ldUJp+JvUCyJYRWITabmxyeYwWmu6uiTX2P4yRaAHoiCea6scAXkv w3bjAMerAJDKNAslpAubFXRuj6K1nCI7e1Siq71P2BKFQ4hba6RIs2/79b0n/m00 amAbGNmxlOoE0DBcg2LcTQggiVJQ53QGU89tgOIPKwmE13OM2zB981ePPxJkdhTt bjaoQI219FYzI+a7DZXB3CSNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGRW3AqeV DwwkwGwE2ny3QjWw4NIwHwYDVR0jBBgwFoAUavg9FyUOFuw4duVnrj4dq4MlHAYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0QjAyLzk5QjNBRDg4RUUx RjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhB WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZnOUZ5VU9GdXc0ZHVWbnJqNGRxNE1sSEFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 QjAyLzk5QjNBRDg4RUUxRjExRUZBRDJGNEIzMUM0RjlBRTAyL2F2ZzlGeVVPRnV3 NGR1Vm5yajRkcTRNbEhBWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAau1artkorFToGZDiaIl5/MhzHZTYWjmKByZBEHiMq6IU3uI3GJULuz HNL8filu+xqUVUyCvn2LKMWRq/5I0BJ2UgqxDB7oYT8swTt+kWAUb39vFlAbp5Db mQlqG4yM7U6KW+082P6jyWNl2il59DNDet8ZjUxmvjqe2zcl4dlq2onG51+ddGhz LVoN5gu2oNLBF0ygtUUqZst8T/8F/Ng5aJQ9fFfcUIXqJtk0n0P71Y24eVZS1wzW I582mxwNreNUdVUEQPdC867a/EJTKh365EApz8phqHW/AdTpXqys9jHPgj/G07/J Aumg+MkGwkWo+XqotPjZ/o3Jznu2Gr4= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net