$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: jreRhFvPiX9iOA/2RX5uhhVDCUC+oP2N0L25htz/Bbs= Subject key identifier: 81:37:40:68:CF:D0:E1:40:B6:DC:E7:6D:35:B5:19:6C:CF:7E:B6:8F Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 3476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 3476 Signing time: Thu 24 Apr 2025 14:34:27 +0000 Manifest this update: Thu 24 Apr 2025 14:34:26 +0000 Manifest next update: Thu 01 May 2025 14:34:26 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: amRjoh+ksUe0NlrV7EC1gEmKUxGTJEp462Qp1XO/n2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13430 (0x3476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Apr 24 14:34:26 2025 GMT Not After : May 1 14:34:26 2025 GMT Subject: CN=680a4bf3-9212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ba:bc:89:bc:c1:ed:dc:ca:f1:be:d7:a8:8f: 1d:a1:dc:d0:bb:77:8f:a1:78:2e:6a:de:16:dc:04: 83:7a:62:6f:43:3b:0f:4b:03:19:69:bf:83:2b:31: b3:4c:af:63:7c:c5:a1:23:66:82:89:3f:24:5f:1b: a6:d6:f8:80:25:9e:34:3b:08:e9:97:dc:20:12:85: 4f:08:da:18:e1:ea:5c:ac:20:ff:32:4a:c7:f2:01: d2:a2:69:61:f0:d2:19:6e:40:ec:1c:92:8c:41:d2: 95:e3:44:64:72:98:1f:50:5a:ec:fb:c3:d7:5a:7e: 1d:0d:c3:0d:50:70:a4:61:37:c7:e3:c5:81:4c:be: 8d:98:06:30:91:6f:41:21:4b:e1:63:f8:11:bc:85: c5:bb:96:94:86:95:f2:82:fa:bf:73:ee:16:83:f6: fb:70:cd:39:1e:2f:f5:f5:2f:9b:d2:09:ec:c8:7d: bd:43:93:50:2b:ec:72:69:2a:d8:3a:27:22:df:28: 69:e2:bb:89:33:58:e7:27:10:53:08:b7:12:eb:05: 4e:08:8e:d5:60:50:eb:93:f2:64:db:23:98:21:50: b2:73:02:c7:84:14:63:8b:4c:dc:c3:94:1c:32:c3: 64:97:de:6f:f0:f5:24:d4:f5:b1:ed:dd:48:fe:50: ce:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:37:40:68:CF:D0:E1:40:B6:DC:E7:6D:35:B5:19:6C:CF:7E:B6:8F X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:1d:ec:6f:0c:0f:4e:fc:f3:e6:ac:4a:8f:7d:d5:be:58:66: b6:8e:ca:6f:28:22:61:9c:c2:f0:89:b5:e4:b9:c0:23:f0:f0: 71:c8:da:19:cb:3d:06:cc:4c:4a:3a:a7:a9:68:de:cd:97:16: c7:8e:53:21:18:f9:48:f2:cb:33:13:8c:94:c7:f8:a0:cf:59: ce:06:37:8f:6c:a8:ca:64:ab:75:a7:ee:36:0a:06:ac:4f:57: e2:49:50:da:4b:ca:e2:1f:03:9f:0f:47:90:00:2b:5d:4c:c7: 24:6a:44:9b:4b:05:49:68:b9:2a:42:f7:6b:70:33:2c:45:1a: 9a:31:64:29:e4:67:5d:eb:63:10:71:f9:48:2b:67:12:02:98: e9:7f:06:d8:cf:83:09:77:6e:6a:b2:31:8b:14:c2:63:3e:88: fa:b4:d3:63:97:c2:fd:e4:74:1b:71:73:25:49:9a:b1:d1:04: 72:64:16:c1:95:84:d4:47:fa:ec:22:c5:21:69:b3:4c:70:5e: ef:5f:23:02:8c:3a:fe:a9:91:bc:1d:b7:d1:e5:a6:70:63:e7: cc:1b:9c:1f:8a:65:e2:59:8b:44:4d:3d:8c:23:73:13:c1:43: 99:ab:b9:e6:d6:fc:05:fd:11:25:3c:cf:e3:ee:35:05:ab:4c: 1c:c9:85:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUwNDI0MTQzNDI2WhcNMjUwNTAxMTQzNDI2WjAYMRYwFAYD VQQDEw02ODBhNGJmMy05MjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bq8ibzB7dzK8b7XqI8dodzQu3ePoXguat4W3ASDemJvQzsPSwMZab+DKzGz TK9jfMWhI2aCiT8kXxum1viAJZ40Owjpl9wgEoVPCNoY4epcrCD/MkrH8gHSomlh 8NIZbkDsHJKMQdKV40RkcpgfUFrs+8PXWn4dDcMNUHCkYTfH48WBTL6NmAYwkW9B IUvhY/gRvIXFu5aUhpXygvq/c+4Wg/b7cM05Hi/19S+b0gnsyH29Q5NQK+xyaSrY Oici3yhp4ruJM1jnJxBTCLcS6wVOCI7VYFDrk/Jk2yOYIVCycwLHhBRji0zcw5Qc MsNkl95v8PUk1PWx7d1I/lDOtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIE3QGjP 0OFAttznbTW1GWzPfraPMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXHexvDA9O/PPmrEqPfdW+WGa2jspvKCJhnMLwibXkucAj8PBxyNoZ yz0GzExKOqepaN7NlxbHjlMhGPlI8sszE4yUx/igz1nOBjePbKjKZKt1p+42Cgas T1fiSVDaS8riHwOfD0eQACtdTMckakSbSwVJaLkqQvdrcDMsRRqaMWQp5Gdd62MQ cflIK2cSApjpfwbYz4MJd25qsjGLFMJjPoj6tNNjl8L95HQbcXMlSZqx0QRyZBbB lYTUR/rsIsUhabNMcF7vXyMCjDr+qZG8HbfR5aZwY+fMG5wfimXiWYtETT2MI3MT wUOZq7nm1vwF/RElPM/j7jUFq0wcyYVh -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:14 2025 by rpki-client