$ rpki-client -vvf rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft File: avGRXIn1DHKtFvQZzTbvEvSto8c.mft (raw, json) Hash identifier: VzEaqppVMWJyfpZPMi43owktUxQ9hR0q6dh5LjN4M0M= Subject key identifier: 00:7A:91:92:FB:01:2C:A5:C1:40:D8:76:A1:DA:3D:F5:50:C9:1A:6A Authority key identifier: 6A:F1:91:5C:89:F5:0C:72:AD:16:F4:19:CD:36:EF:12:F4:AD:A3:C7 Certificate issuer: /CN=A9127F37/serialNumber=6AF1915C89F50C72AD16F419CD36EF12F4ADA3C7 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avGRXIn1DHKtFvQZzTbvEvSto8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft Manifest number: 4F Signing time: Sat 19 Jul 2025 07:33:24 +0000 Manifest this update: Sat 19 Jul 2025 07:33:23 +0000 Manifest next update: Sat 26 Jul 2025 07:33:23 +0000 Files and hashes: 1: avGRXIn1DHKtFvQZzTbvEvSto8c.crl (hash: eI7m2ladGw4h0mf1CvLPXub6DWlO9qUgNJjkW5U3CTU=) 2: 4FFEB60AEE8411EF981CD840C4F9AE02.roa (hash: 6QHt7FPePc9ME7gIJCijX1TcfEpQyK9WI3BiH/AqMwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.crl rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avGRXIn1DHKtFvQZzTbvEvSto8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127F37, serialNumber=6AF1915C89F50C72AD16F419CD36EF12F4ADA3C7 Validity Not Before: Jul 19 07:33:23 2025 GMT Not After : Jul 26 07:33:23 2025 GMT Subject: CN=687b4a43-d1e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:47:95:77:06:94:1c:8b:95:45:e0:6f:11:05: 7d:b2:1b:bb:27:21:fa:9c:25:54:bd:00:1c:0c:3d: 9c:03:d3:d7:d8:4b:c8:2a:73:6d:60:9f:36:30:ca: f3:df:c3:3b:81:1f:1d:ca:66:86:9a:22:41:a0:2d: 2f:9c:9a:3c:99:72:df:96:5a:37:40:ea:2a:8b:1d: 24:b1:f8:fb:2c:8c:35:de:8f:e3:43:2d:1b:71:69: 3c:8d:f0:61:63:d0:29:a6:fe:2f:ff:62:ee:7c:47: 8a:41:87:20:f6:61:cb:b6:53:8f:fb:65:8d:30:80: e6:09:ce:f9:99:fe:14:91:f3:86:a7:93:17:78:cd: bb:7e:be:4b:71:b2:7f:63:10:c2:47:6e:50:26:c1: 46:8b:f5:8a:76:14:64:87:2b:7d:15:81:7e:53:2a: 38:ab:fc:38:c1:76:fa:76:25:48:4d:24:d3:e3:60: d7:8b:35:71:8d:39:98:f2:1e:0d:77:23:d9:9c:80: c1:4d:8b:5d:4d:02:a0:db:9a:a4:b9:94:a0:7d:dd: 19:02:a1:99:b5:f4:74:72:9c:0f:57:41:74:0a:b4: 55:55:51:ba:2c:24:6c:49:d0:c5:53:1f:dd:4b:45: fb:cf:56:ae:6f:23:ae:cb:7c:eb:47:0e:33:a5:50: 38:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7A:91:92:FB:01:2C:A5:C1:40:D8:76:A1:DA:3D:F5:50:C9:1A:6A X509v3 Authority Key Identifier: keyid:6A:F1:91:5C:89:F5:0C:72:AD:16:F4:19:CD:36:EF:12:F4:AD:A3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avGRXIn1DHKtFvQZzTbvEvSto8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127F37/E51237EAEE8311EFAF58B73FC4F9AE02/avGRXIn1DHKtFvQZzTbvEvSto8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d9:cd:ee:7f:90:b9:3e:8c:43:ef:0f:86:a5:6a:7b:5a:25: bb:31:7b:97:07:dd:2f:31:4c:a3:c2:5d:89:54:97:9b:31:5e: d6:68:5f:af:86:5e:6b:eb:06:92:76:aa:97:f3:ea:d3:53:3d: ad:c3:12:8f:1c:40:c4:33:a8:8c:00:ee:6c:79:c1:77:24:e9: bc:ca:75:1d:a1:79:b4:53:6a:95:61:7a:b7:fa:e4:77:9d:5e: 86:e1:ce:ca:e3:77:6e:18:3b:3e:6a:78:8c:a9:a4:f0:c2:f0: 61:99:d9:44:c9:57:7b:24:66:ad:a6:50:56:f5:8f:50:70:21: dd:61:68:e8:42:29:9f:65:40:de:12:5d:cb:8b:11:7c:7e:0a: 29:ca:35:42:74:a1:4c:2c:f1:1a:8d:93:2d:71:aa:48:e2:7e: 04:e3:3e:4e:57:eb:c3:7d:2f:2b:61:03:c7:89:66:f7:ff:37: 39:12:ff:ad:14:fd:a7:a2:6d:90:2f:6b:29:68:0d:7a:cf:24: d4:71:55:64:fb:a7:28:82:8b:0f:f6:9c:8a:d3:15:19:ce:41: 11:68:2f:61:75:4e:ec:2f:b8:7b:aa:71:71:1f:54:70:8d:d0: 41:8c:66:0b:fc:d4:17:a0:b9:fd:f9:5e:93:3e:f3:e7:81:97: 35:48:5c:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0YzNzExMC8GA1UEBRMoNkFGMTkxNUM4OUY1MEM3MkFEMTZGNDE5Q0QzNkVGMTJG NEFEQTNDNzAeFw0yNTA3MTkwNzMzMjNaFw0yNTA3MjYwNzMzMjNaMBgxFjAUBgNV BAMTDTY4N2I0YTQzLWQxZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClR5V3BpQci5VF4G8RBX2yG7snIfqcJVS9ABwMPZwD09fYS8gqc21gnzYwyvPf wzuBHx3KZoaaIkGgLS+cmjyZct+WWjdA6iqLHSSx+PssjDXej+NDLRtxaTyN8GFj 0Cmm/i//Yu58R4pBhyD2Ycu2U4/7ZY0wgOYJzvmZ/hSR84ankxd4zbt+vktxsn9j EMJHblAmwUaL9Yp2FGSHK30VgX5TKjir/DjBdvp2JUhNJNPjYNeLNXGNOZjyHg13 I9mcgMFNi11NAqDbmqS5lKB93RkCoZm19HRynA9XQXQKtFVVUbosJGxJ0MVTH91L RfvPVq5vI67LfOtHDjOlUDgxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAHqRkvsB LKXBQNh2odo99VDJGmowHwYDVR0jBBgwFoAUavGRXIn1DHKtFvQZzTbvEvSto8cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RjM3L0U1MTIzN0VBRUU4 MzExRUZBRjU4QjczRkM0RjlBRTAyL2F2R1JYSW4xREhLdEZ2UVp6VGJ2RXZTdG84 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXZHUlhJbjFESEt0RnZRWnpUYnZFdlN0bzhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 RjM3L0U1MTIzN0VBRUU4MzExRUZBRjU4QjczRkM0RjlBRTAyL2F2R1JYSW4xREhL dEZ2UVp6VGJ2RXZTdG84Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALLZze5/kLk+jEPvD4alantaJbsxe5cH3S8xTKPCXYlUl5sxXtZoX6+G XmvrBpJ2qpfz6tNTPa3DEo8cQMQzqIwA7mx5wXck6bzKdR2hebRTapVherf65Hed Xobhzsrjd24YOz5qeIyppPDC8GGZ2UTJV3skZq2mUFb1j1BwId1haOhCKZ9lQN4S XcuLEXx+CinKNUJ0oUws8RqNky1xqkjifgTjPk5X68N9LythA8eJZvf/NzkS/60U /aeibZAvayloDXrPJNRxVWT7pyiCiw/2nIrTFRnOQRFoL2F1TuwvuHuqcXEfVHCN 0EGMZgv81Beguf35XpM+8+eBlzVIXPE= -----END CERTIFICATE-----Generated at Sun Jul 20 07:53:13 2025 by rpki-client