$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: NweXC48nniJL2Aaa29Ssgf3qi5nXnjxzpufc1cAjGuk= Subject key identifier: A0:64:10:E7:46:22:B1:EA:1A:90:42:59:F5:7B:84:66:D3:C8:EC:EA Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 34AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 34AA Signing time: Mon 04 Aug 2025 14:35:45 +0000 Manifest this update: Mon 04 Aug 2025 14:35:44 +0000 Manifest next update: Mon 11 Aug 2025 14:35:44 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: +R/tFVMpDdYSyXFdU9PAPluJWXCb3+HlPADRCONrPjU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13482 (0x34aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Aug 4 14:35:44 2025 GMT Not After : Aug 11 14:35:44 2025 GMT Subject: CN=6890c540-b1b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3f:cb:0e:67:ec:d1:20:34:c2:f1:bf:0d:c7: 2a:58:01:13:2d:05:b3:87:81:5b:79:86:25:27:ea: dc:5b:a5:d5:bd:63:a6:bd:0f:83:c9:fc:d4:99:8d: 8a:34:a5:78:34:02:89:14:78:09:cf:f5:e9:c3:0f: a7:3d:02:f3:0f:3e:ce:6b:ce:c4:6b:01:b1:01:bc: f9:3c:0b:1b:07:49:48:79:d8:98:8d:5e:ef:e2:02: d7:a2:be:6d:f1:45:5d:0d:fa:fa:d5:fe:95:60:cb: 67:43:54:b1:1b:64:9a:d7:a9:d2:ef:2d:87:de:38: ec:4e:b6:e5:20:ca:b6:b5:4c:07:05:e1:f8:6d:5e: 4e:c6:10:2f:22:16:0a:ae:3b:fe:23:0f:90:fc:5c: 55:55:42:c9:f7:a3:7f:78:59:aa:99:2b:96:f1:03: dc:f7:f3:d7:d7:32:1b:a8:39:45:85:06:69:ae:37: 19:84:68:78:46:0d:ba:7b:30:c7:4e:ca:78:bc:57: 2e:a3:1c:16:e3:1d:4e:8e:a3:c1:ab:8f:dd:d4:f0: e0:e2:34:6c:a2:ec:74:d3:e3:d0:53:71:e8:c8:83: 37:e4:c8:d5:e6:01:e7:b9:fb:31:a1:d7:a0:6f:e5: 72:2c:3a:88:bd:5a:b4:da:31:51:54:b1:58:d1:30: 1f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:64:10:E7:46:22:B1:EA:1A:90:42:59:F5:7B:84:66:D3:C8:EC:EA X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f5:ae:78:61:e7:a0:52:20:8a:d8:98:7b:ad:5d:df:22:cb: 42:af:0e:c3:73:6d:77:d5:6c:ca:c0:30:0e:33:01:cc:15:66: db:35:b1:c6:40:1a:02:30:4b:1e:b5:f6:cc:c2:c3:bf:3d:8d: e2:fe:c9:91:7a:1d:56:e8:ef:b0:35:e5:35:6a:f5:e5:16:22: 38:8c:4e:fb:f0:43:08:01:aa:c1:e8:4d:79:bd:3f:9a:cb:7b: 0d:1b:6f:89:d2:2e:e5:60:8c:65:6c:dc:a1:75:08:38:17:b2: 19:52:6b:b9:b9:e9:b7:ac:3a:97:5c:14:db:84:11:49:df:c6: 56:57:2b:d2:63:97:c6:f9:ce:e7:0f:a9:dd:01:88:c1:59:b2: 73:50:72:88:cd:68:ae:5f:29:56:ca:80:7a:be:3a:2b:cf:50: 5c:63:2c:9b:91:d9:a4:4c:68:8a:b1:da:2e:bb:14:d7:e9:b6: 27:29:32:9a:49:48:b1:fd:40:9b:07:e4:69:a6:ba:73:f0:c2: 62:a0:e2:81:2e:c8:93:b0:60:28:8d:d9:b4:81:79:94:51:b6: b4:7d:f5:4f:d6:3e:56:47:3a:0a:21:9f:7d:e7:3f:70:5f:10: af:73:95:46:99:23:a5:3a:03:89:1b:45:83:ab:db:57:b6:dc: 74:98:d5:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUwODA0MTQzNTQ0WhcNMjUwODExMTQzNTQ0WjAYMRYwFAYD VQQDEw02ODkwYzU0MC1iMWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzT/LDmfs0SA0wvG/DccqWAETLQWzh4FbeYYlJ+rcW6XVvWOmvQ+DyfzUmY2K NKV4NAKJFHgJz/Xpww+nPQLzDz7Oa87EawGxAbz5PAsbB0lIediYjV7v4gLXor5t 8UVdDfr61f6VYMtnQ1SxG2Sa16nS7y2H3jjsTrblIMq2tUwHBeH4bV5OxhAvIhYK rjv+Iw+Q/FxVVULJ96N/eFmqmSuW8QPc9/PX1zIbqDlFhQZprjcZhGh4Rg26ezDH Tsp4vFcuoxwW4x1OjqPBq4/d1PDg4jRsoux00+PQU3HoyIM35MjV5gHnufsxodeg b+VyLDqIvVq02jFRVLFY0TAfGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBkEOdG IrHqGpBCWfV7hGbTyOzqMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo9a54YeegUiCK2Jh7rV3fIstCrw7Dc2131WzKwDAOMwHMFWbbNbHG QBoCMEsetfbMwsO/PY3i/smReh1W6O+wNeU1avXlFiI4jE778EMIAarB6E15vT+a y3sNG2+J0i7lYIxlbNyhdQg4F7IZUmu5uem3rDqXXBTbhBFJ38ZWVyvSY5fG+c7n D6ndAYjBWbJzUHKIzWiuXylWyoB6vjorz1BcYyybkdmkTGiKsdouuxTX6bYnKTKa SUix/UCbB+Rpprpz8MJioOKBLsiTsGAojdm0gXmUUba0ffVP1j5WRzoKIZ995z9w XxCvc5VGmSOlOgOJG0WDq9tXttx0mNXW -----END CERTIFICATE-----Generated at Wed Aug 6 10:10:42 2025 by rpki-client