$ rpki-client -vvf rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft File: avGRXIn1DHKtFvQZzTbvEvSto8c.mft (raw, json) Hash identifier: OILZzMgaJmSW+9fDwR+bjq9lXeIpQym1012TEUt3nkI= Subject key identifier: 35:BF:78:CA:3E:D0:25:90:59:30:17:C0:22:B6:D0:A2:CE:39:28:C5 Authority key identifier: 6A:F1:91:5C:89:F5:0C:72:AD:16:F4:19:CD:36:EF:12:F4:AD:A3:C7 Certificate issuer: /CN=A9127F37/serialNumber=6AF1915C89F50C72AD16F419CD36EF12F4ADA3C7 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avGRXIn1DHKtFvQZzTbvEvSto8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft Manifest number: 1A Signing time: Thu 03 Apr 2025 07:13:40 +0000 Manifest this update: Thu 03 Apr 2025 07:13:39 +0000 Manifest next update: Thu 10 Apr 2025 07:13:39 +0000 Files and hashes: 1: avGRXIn1DHKtFvQZzTbvEvSto8c.crl (hash: 6Ba9JzFZ1xsw+olRajY6XGbZlHDA1gMJ9g2K82VA8/Q=) 2: 4FFEB60AEE8411EF981CD840C4F9AE02.roa (hash: 6QHt7FPePc9ME7gIJCijX1TcfEpQyK9WI3BiH/AqMwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.crl rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avGRXIn1DHKtFvQZzTbvEvSto8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:13:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127F37 Validity Not Before: Apr 3 07:13:39 2025 GMT Not After : Apr 10 07:13:39 2025 GMT Subject: CN=67ee3524-fb90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:15:95:7a:49:66:e4:8d:8a:f2:f2:e2:5e: 4c:88:2f:96:10:2d:cd:c7:cb:b2:6a:63:61:52:19: 46:ef:22:1e:ba:a4:4b:1a:f0:1d:9d:77:ac:af:3a: c9:b0:49:64:0f:f3:b8:b4:a2:0d:a4:d5:30:4d:00: 0d:d3:17:9a:cf:72:85:3c:03:63:2b:70:8c:2d:7d: d6:92:41:2d:3e:96:46:8a:f1:16:d4:34:be:ee:ae: 3b:bc:09:b5:3e:1d:99:2c:af:50:0c:02:bf:42:e2: 88:7b:70:5a:a3:f5:0b:05:3d:a6:23:3e:19:80:e0: ae:87:a3:17:fc:3b:e2:de:d9:6c:9a:93:c5:b1:94: 91:1f:7b:22:79:31:aa:cf:fc:b1:29:72:15:bf:55: d8:e9:bf:60:f5:be:b4:9a:72:93:53:bf:12:2b:7d: ff:52:33:6c:2a:a3:c4:0f:01:68:43:1a:47:a3:1f: a3:52:82:97:82:18:78:74:27:de:6d:ca:bd:aa:53: 33:49:2b:3f:bc:5e:5d:be:66:29:a0:2a:82:f9:8d: fa:cc:94:d6:68:24:33:f0:58:d3:5b:d4:c6:a6:6a: 98:a8:89:b3:67:0e:e6:88:1d:bb:91:69:ff:9c:33: 18:6d:2d:d9:a0:82:28:09:96:bd:b1:04:47:2c:39: 80:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BF:78:CA:3E:D0:25:90:59:30:17:C0:22:B6:D0:A2:CE:39:28:C5 X509v3 Authority Key Identifier: keyid:6A:F1:91:5C:89:F5:0C:72:AD:16:F4:19:CD:36:EF:12:F4:AD:A3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avGRXIn1DHKtFvQZzTbvEvSto8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:4d:33:14:73:55:1f:6d:0d:f3:ec:13:a4:fb:1e:ac:e3:9b: 31:f0:fe:af:f4:fb:70:40:04:c1:97:88:59:98:3c:af:2b:c6: 6b:38:75:9b:52:79:f9:18:25:43:ff:74:f3:55:ac:f3:59:70: 42:82:df:11:46:87:e3:e4:d6:03:92:bd:94:a8:ca:32:60:47: 11:a9:da:31:08:75:ea:ba:5e:8c:32:d3:0c:ba:ba:0d:17:d0: 3d:78:13:5b:53:13:f2:9e:e8:ed:35:b8:70:89:80:20:65:66: a4:49:f9:9d:d5:29:0d:d5:7a:a0:46:ce:81:85:50:c8:ff:3c: 78:1a:5c:97:6c:3b:bc:b4:f1:54:20:39:50:66:ff:86:53:aa: b4:ba:d1:3c:c3:d4:21:ca:3a:38:41:89:11:69:b2:0d:8d:ab: 2a:d6:a9:48:e3:db:04:e1:10:43:f4:d3:fe:93:91:d3:40:ac: fa:e0:3e:b7:e8:07:af:d5:7a:e5:a0:ae:0b:21:32:91:50:5f: a2:31:0a:7d:95:c6:d3:f1:55:39:cd:d5:c5:cd:07:90:7e:67: 1f:7c:22:bc:3e:d7:1e:09:fe:cb:49:0a:8c:05:d0:24:96:46: 5f:d7:09:9d:e8:ac:bb:56:41:de:38:ff:f4:ad:05:9a:5e:6a: 9f:1f:fa:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0YzNzExMC8GA1UEBRMoNkFGMTkxNUM4OUY1MEM3MkFEMTZGNDE5Q0QzNkVGMTJG NEFEQTNDNzAeFw0yNTA0MDMwNzEzMzlaFw0yNTA0MTAwNzEzMzlaMBgxFjAUBgNV BAMTDTY3ZWUzNTI0LWZiOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1xxWVeklm5I2K8vLiXkyIL5YQLc3Hy7JqY2FSGUbvIh66pEsa8B2dd6yvOsmw SWQP87i0og2k1TBNAA3TF5rPcoU8A2MrcIwtfdaSQS0+lkaK8RbUNL7urju8CbU+ HZksr1AMAr9C4oh7cFqj9QsFPaYjPhmA4K6Hoxf8O+Le2Wyak8WxlJEfeyJ5MarP /LEpchW/Vdjpv2D1vrSacpNTvxIrff9SM2wqo8QPAWhDGkejH6NSgpeCGHh0J95t yr2qUzNJKz+8Xl2+ZimgKoL5jfrMlNZoJDPwWNNb1MamapioibNnDuaIHbuRaf+c MxhtLdmggigJlr2xBEcsOYApAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNb94yj7Q JZBZMBfAIrbQos45KMUwHwYDVR0jBBgwFoAUavGRXIn1DHKtFvQZzTbvEvSto8cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RjM3L0U1MTIzN0VBRUU4 MzExRUZBRjU4QjczRkM0RjlBRTAyL2F2R1JYSW4xREhLdEZ2UVp6VGJ2RXZTdG84 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZHUlhJbjFESEt0RnZRWnpUYnZFdlN0bzhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 RjM3L0U1MTIzN0VBRUU4MzExRUZBRjU4QjczRkM0RjlBRTAyL2F2R1JYSW4xREhL dEZ2UVp6VGJ2RXZTdG84Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAVNMxRzVR9tDfPsE6T7HqzjmzHw/q/0+3BABMGXiFmYPK8rxms4dZtS efkYJUP/dPNVrPNZcEKC3xFGh+Pk1gOSvZSoyjJgRxGp2jEIdeq6Xowy0wy6ug0X 0D14E1tTE/Ke6O01uHCJgCBlZqRJ+Z3VKQ3VeqBGzoGFUMj/PHgaXJdsO7y08VQg OVBm/4ZTqrS60TzD1CHKOjhBiRFpsg2NqyrWqUjj2wThEEP00/6TkdNArPrgPrfo B6/VeuWgrgshMpFQX6IxCn2VxtPxVTnN1cXNB5B+Zx98Irw+1x4J/stJCowF0CSW Rl/XCZ3orLtWQd44//StBZpeap8f+ps= -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:15 2025 by rpki-client