$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft File: GOH3Mu-lPDlzoazSLBNopeHyylI.mft (raw, json) Hash identifier: v7s/PbdJaNXHlw7QMC7qQ40ex+CZN56QXel0oamKOf8= Subject key identifier: 29:D4:9A:74:E6:5F:36:8F:7E:CF:EA:CD:3D:6E:71:CC:09:6D:CA:19 Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft Manifest number: 01C9 Signing time: Mon 21 Jul 2025 02:59:07 +0000 Manifest this update: Mon 21 Jul 2025 02:59:07 +0000 Manifest next update: Mon 28 Jul 2025 02:59:07 +0000 Files and hashes: 1: GOH3Mu-lPDlzoazSLBNopeHyylI.crl (hash: NadlL6MtxAoWCWgO/YtnW+mAYp8fO704mqHeu6M7vDA=) 2: 098D6EACAD3E11ED8B645C39C4F9AE02.roa (hash: x5jTQA8XBSMQ8Q+xjjenfP78ItEEc+vCjF2dnXQMxgg=) 3: AA73EF167DEB11EEB9699A24C4F9AE02.roa (hash: EuI+jy3jz6zplStWvLeJaw92baXncm4w2hV/GfKLDMk=) 4: 09106CCCAD3E11ED8B645C39C4F9AE02.roa (hash: KQKk/DHVyq0W7ysUvHn8rqByRNsv/bL8qIPiVwD7k8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F00E, serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Validity Not Before: Jul 21 02:59:07 2025 GMT Not After : Jul 28 02:59:07 2025 GMT Subject: CN=687dacfb-f411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0a:49:4c:e5:b4:f2:ee:ee:33:d4:95:69:08: c7:96:c3:d6:0a:cc:ba:90:0d:a2:83:dd:83:2f:ca: 5f:98:ac:f4:50:58:76:fa:2f:57:cf:64:d6:f8:23: 2b:b0:78:8e:44:ff:d6:cf:29:d3:64:1a:be:3b:8e: 01:79:cf:d6:0a:42:d4:b8:6d:e4:cc:41:40:46:e5: dd:09:17:e1:a6:89:73:db:fe:d0:38:56:08:18:99: d1:cc:72:83:02:e0:d7:7c:12:08:ae:a3:71:7e:14: e5:89:f2:d8:80:0d:1b:4a:7d:b2:60:d3:43:33:c0: 1d:83:85:e4:ab:0d:7e:15:bc:b0:4b:11:5c:37:be: 03:ba:64:54:77:5d:44:98:0a:3a:ea:e8:e2:85:82: 58:e7:38:1f:51:e8:d5:de:db:60:de:de:68:ee:33: 06:e9:36:c4:ad:1b:c8:cd:14:71:00:47:d3:ff:2e: 23:14:c8:45:67:3d:05:7f:f1:a6:d6:c4:0c:39:03: 65:ef:6c:d5:fa:40:92:4f:9a:e8:ad:64:4e:8d:d6: 46:bd:39:d3:61:45:28:65:ce:45:1b:44:23:26:38: 39:fe:4b:b0:69:6f:61:ad:d4:41:9b:68:b8:a1:54: 79:33:12:fc:3c:9b:64:e2:61:b1:6a:ab:46:ea:5d: b5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D4:9A:74:E6:5F:36:8F:7E:CF:EA:CD:3D:6E:71:CC:09:6D:CA:19 X509v3 Authority Key Identifier: keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:7d:63:36:4d:13:53:39:98:00:56:58:64:f3:9d:1a:fd:26: 09:d8:78:a4:44:69:f9:1c:22:b4:e8:ed:06:f4:6f:9a:d2:80: 01:c3:7b:41:0c:20:7d:cc:b7:de:1d:f7:ed:9a:4c:c6:51:05: 33:05:bf:b3:09:c7:53:64:84:f3:a0:43:ac:bc:5c:e9:db:2c: c0:8d:1b:9c:85:e6:4a:6e:79:c2:ce:94:aa:f5:6f:6b:34:58: 91:b9:c6:dc:ab:bd:9c:74:73:b1:26:47:dd:24:12:a7:4b:bd: 1e:b3:7a:cc:9c:46:8b:1d:3b:5e:07:b0:8c:23:05:6b:57:d4: d6:ef:23:09:40:49:95:01:f9:20:d5:8c:c3:e2:01:31:27:d3: 98:8d:f1:d8:88:b3:f0:70:64:ff:54:5b:b1:bd:ca:da:7b:c9: de:f6:f7:fc:be:dd:d9:07:bf:a0:20:a4:17:d5:21:bd:da:2b: e1:e3:72:1a:8c:8b:1f:e1:82:9f:0d:b5:5b:f9:19:c9:21:32: d3:ad:7a:65:70:7f:cc:94:10:ae:5e:c0:87:c9:2b:c0:ef:72: 3f:36:f0:83:13:fe:2d:12:89:e6:79:5e:47:c9:a3:45:19:4e: a8:46:ef:bc:11:8f:d9:45:bc:d7:e1:df:53:a0:01:f5:84:e1: 83:7f:ed:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwMEUxMTAvBgNVBAUTKDE4RTFGNzMyRUZBNTNDMzk3M0ExQUNEMjJDMTM2OEE1 RTFGMkNBNTIwHhcNMjUwNzIxMDI1OTA3WhcNMjUwNzI4MDI1OTA3WjAYMRYwFAYD VQQDEw02ODdkYWNmYi1mNDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmgpJTOW08u7uM9SVaQjHlsPWCsy6kA2ig92DL8pfmKz0UFh2+i9Xz2TW+CMr sHiORP/WzynTZBq+O44Bec/WCkLUuG3kzEFARuXdCRfhpolz2/7QOFYIGJnRzHKD AuDXfBIIrqNxfhTlifLYgA0bSn2yYNNDM8Adg4Xkqw1+FbywSxFcN74DumRUd11E mAo66ujihYJY5zgfUejV3ttg3t5o7jMG6TbErRvIzRRxAEfT/y4jFMhFZz0Ff/Gm 1sQMOQNl72zV+kCST5rorWROjdZGvTnTYUUoZc5FG0QjJjg5/kuwaW9hrdRBm2i4 oVR5MxL8PJtk4mGxaqtG6l21+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnUmnTm XzaPfs/qzT1uccwJbcoZMB8GA1UdIwQYMBaAFBjh9zLvpTw5c6Gs0iwTaKXh8spS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjAwRS81QUExODIyRUFE MzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBEbHpvYXpTTEJOb3BlSHl5 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPSDNNdS1sUERsem9helNMQk5vcGVIeXlsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjAwRS81QUExODIyRUFEMzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBE bHpvYXpTTEJOb3BlSHl5bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBffWM2TRNTOZgAVlhk850a/SYJ2HikRGn5HCK06O0G9G+a0oABw3tB DCB9zLfeHfftmkzGUQUzBb+zCcdTZITzoEOsvFzp2yzAjRucheZKbnnCzpSq9W9r NFiRucbcq72cdHOxJkfdJBKnS70es3rMnEaLHTteB7CMIwVrV9TW7yMJQEmVAfkg 1YzD4gExJ9OYjfHYiLPwcGT/VFuxvcrae8ne9vf8vt3ZB7+gIKQX1SG92ivh43Ia jIsf4YKfDbVb+RnJITLTrXplcH/MlBCuXsCHySvA73I/NvCDE/4tEonmeV5HyaNF GU6oRu+8EY/ZRbzX4d9ToAH1hOGDf+14 -----END CERTIFICATE-----Generated at Wed Jul 23 02:18:22 2025 by rpki-client