$ rpki-client -vvf rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft File: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft (raw, json) Hash identifier: mCeNjwf1CEl/FsPda/xrUXnnlPJWOXXcBNAfNQCIujo= Subject key identifier: 4E:72:C3:A9:7C:A1:0D:6E:20:43:3F:42:B1:8F:2C:C8:C7:AC:69:4B Authority key identifier: 80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A Certificate issuer: /CN=A9143A67/serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft Manifest number: 0299 Signing time: Tue 05 Aug 2025 02:12:57 +0000 Manifest this update: Tue 05 Aug 2025 02:12:56 +0000 Manifest next update: Tue 12 Aug 2025 02:12:56 +0000 Files and hashes: 1: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl (hash: d6csi2kkh2WJOS61cqm9hChripl9M7WVTpwmaeajx8c=) 2: EE62A36A0D9F11EDB7631D1BC4F9AE02.roa (hash: 79mqc7tZF4tbIphjhbOXUthxD6els9a6zfI1+s7nFSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143A67, serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Validity Not Before: Aug 5 02:12:56 2025 GMT Not After : Aug 12 02:12:56 2025 GMT Subject: CN=689168a8-bf1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b8:14:29:c8:a7:f1:6d:34:c9:16:ef:a9:93: c7:c7:52:bc:1f:8c:71:1e:df:e0:59:34:2d:cf:ec: c1:00:13:b8:53:86:e4:67:4d:03:c4:d5:de:94:32: 6b:2a:fb:e9:4c:9d:af:b6:60:40:d5:db:7f:7c:dd: 80:fd:55:de:81:ba:b9:16:51:a6:1b:b6:35:f1:d6: 97:ed:ca:c3:c7:8d:92:c8:d2:cf:35:7d:0a:41:b6: d4:bf:e4:22:60:4d:ef:cd:be:10:9b:b0:f2:c8:49: bf:f1:05:62:4a:8f:f8:1e:e4:0c:15:9b:53:93:ac: 99:48:59:ff:c5:1f:77:fb:bf:55:c7:e6:ed:7a:76: fd:74:e9:6e:33:cc:6a:47:3f:57:0f:ce:8e:9e:d8: 66:cb:93:36:02:77:66:4f:4a:f2:3f:e3:76:58:b3: f5:c7:ba:0a:eb:97:a3:70:5a:54:47:44:12:d0:30: 6d:87:b8:86:87:6b:62:b3:bc:a7:65:59:93:93:6c: 2f:5b:73:ac:10:0f:f0:e5:1d:37:9f:05:3d:a2:90: 0a:2b:1d:50:86:97:08:f9:c9:77:f8:97:4b:9e:f2: d9:27:a8:90:aa:5b:cb:b4:05:12:17:93:4e:99:49: 33:63:22:50:38:e0:b5:b1:72:65:dd:08:e0:3a:15: 5b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:72:C3:A9:7C:A1:0D:6E:20:43:3F:42:B1:8F:2C:C8:C7:AC:69:4B X509v3 Authority Key Identifier: keyid:80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:fc:fc:98:eb:2f:c4:16:d8:c9:66:f7:3c:bf:18:f5:48:ad: 29:0b:34:fb:7b:ea:fa:65:ac:46:04:77:01:96:a8:c2:d1:53: 2c:48:4a:97:17:1d:82:e8:e3:cb:3e:c6:94:3c:e2:7f:2c:58: 6b:c7:d5:6d:ef:25:22:d7:a3:55:01:38:20:0c:38:0b:ab:7c: e6:ed:ac:3c:7b:c0:a2:e2:36:ae:ba:53:16:69:ec:48:2f:0d: b8:92:26:8f:23:51:aa:99:17:84:b2:90:a7:da:3b:06:22:f5: 1e:69:4b:00:b1:8a:8b:1b:48:80:42:2c:0e:1e:ec:ce:67:25: 5d:58:13:44:03:41:0a:5b:47:89:00:21:77:ad:05:52:eb:94: d0:b7:12:91:56:17:f5:ae:10:bc:f1:4a:a9:45:62:6a:17:2d: da:2d:4c:47:4b:39:e4:32:d2:c7:ff:cc:9c:7e:f1:f7:25:d3: ce:24:20:ea:6f:49:d1:28:d8:13:a4:d7:04:16:5a:fe:97:aa: 61:5c:ed:80:5e:9b:6f:4a:f9:d7:a0:59:19:83:ea:39:59:bc: 45:b4:73:be:e9:77:95:eb:fd:23:ea:71:5c:b1:7c:b0:48:00: 18:cd:19:ea:01:d0:4f:e4:66:f1:d6:80:ca:b6:87:4f:27:66: 57:b1:52:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNBNjcxMTAvBgNVBAUTKDgwRTBBQjE4OUZDRDcwMUVFRTQyQzkyQjkzQzE1QjZG NzQyNDgyNkEwHhcNMjUwODA1MDIxMjU2WhcNMjUwODEyMDIxMjU2WjAYMRYwFAYD VQQDEw02ODkxNjhhOC1iZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rgUKcin8W00yRbvqZPHx1K8H4xxHt/gWTQtz+zBABO4U4bkZ00DxNXelDJr KvvpTJ2vtmBA1dt/fN2A/VXegbq5FlGmG7Y18daX7crDx42SyNLPNX0KQbbUv+Qi YE3vzb4Qm7DyyEm/8QViSo/4HuQMFZtTk6yZSFn/xR93+79Vx+btenb9dOluM8xq Rz9XD86Onthmy5M2AndmT0ryP+N2WLP1x7oK65ejcFpUR0QS0DBth7iGh2tis7yn ZVmTk2wvW3OsEA/w5R03nwU9opAKKx1QhpcI+cl3+JdLnvLZJ6iQqlvLtAUSF5NO mUkzYyJQOOC1sXJl3QjgOhVbYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5yw6l8 oQ1uIEM/QrGPLMjHrGlLMB8GA1UdIwQYMBaAFIDgqxifzXAe7kLJK5PBW290JIJq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0E2Ny9DODA2OTc5MjBE OUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNCN3VRc2tyazhGYmIzUWtn bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPQ3JHSl9OY0I3dVFza3JrOEZiYjNRa2dtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0E2Ny9DODA2OTc5MjBEOUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNC N3VRc2tyazhGYmIzUWtnbW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD/PyY6y/EFtjJZvc8vxj1SK0pCzT7e+r6ZaxGBHcBlqjC0VMsSEqX Fx2C6OPLPsaUPOJ/LFhrx9Vt7yUi16NVATggDDgLq3zm7aw8e8Ci4jauulMWaexI Lw24kiaPI1GqmReEspCn2jsGIvUeaUsAsYqLG0iAQiwOHuzOZyVdWBNEA0EKW0eJ ACF3rQVS65TQtxKRVhf1rhC88UqpRWJqFy3aLUxHSznkMtLH/8ycfvH3JdPOJCDq b0nRKNgTpNcEFlr+l6phXO2AXptvSvnXoFkZg+o5WbxFtHO+6XeV6/0j6nFcsXyw SAAYzRnqAdBP5Gbx1oDKtodPJ2ZXsVIv -----END CERTIFICATE-----Generated at Wed Aug 6 14:09:53 2025 by rpki-client