$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft File: GOH3Mu-lPDlzoazSLBNopeHyylI.mft (raw, json) Hash identifier: BNuPGAG0bdKiCcD+3Uv/W0Lgf6tPPhY+lB/bp5WOYj0= Subject key identifier: CE:B0:2B:5B:49:9C:27:D5:D8:46:03:CE:76:30:22:41:D7:18:27:0D Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft Manifest number: 0190 Signing time: Sat 29 Mar 2025 03:02:33 +0000 Manifest this update: Sat 29 Mar 2025 03:02:32 +0000 Manifest next update: Sat 05 Apr 2025 03:02:32 +0000 Files and hashes: 1: GOH3Mu-lPDlzoazSLBNopeHyylI.crl (hash: MNz3lLrNLYDZcbWCwDsOKTzWzkx7gUw4OFJxjyXWFJo=) 2: 098D6EACAD3E11ED8B645C39C4F9AE02.roa (hash: x5jTQA8XBSMQ8Q+xjjenfP78ItEEc+vCjF2dnXQMxgg=) 3: AA73EF167DEB11EEB9699A24C4F9AE02.roa (hash: EuI+jy3jz6zplStWvLeJaw92baXncm4w2hV/GfKLDMk=) 4: 09106CCCAD3E11ED8B645C39C4F9AE02.roa (hash: KQKk/DHVyq0W7ysUvHn8rqByRNsv/bL8qIPiVwD7k8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F00E Validity Not Before: Mar 29 03:02:32 2025 GMT Not After : Apr 5 03:02:32 2025 GMT Subject: CN=67e762c8-af79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f5:0a:61:a9:b8:35:b6:ab:1b:78:7f:07:68: 61:01:30:7c:97:60:11:43:77:7a:0d:1e:95:19:b3: a7:70:f1:1c:a4:45:24:2b:5c:27:56:a9:df:84:88: 46:f5:3f:cb:bc:c6:aa:4f:89:b4:9f:25:32:f9:ca: 7d:6a:7f:da:a5:bb:47:c2:d4:18:02:75:be:53:46: a4:ec:24:7b:f8:e9:64:2f:55:8c:54:bd:b7:ba:49: ef:11:6f:c1:f3:1a:5a:45:11:f0:fc:0e:a5:7e:94: ef:2f:0a:08:fe:18:df:7a:3e:9b:3b:a7:c9:6a:76: e7:b8:84:cc:32:ec:e2:04:d8:88:f9:b5:69:5d:3d: 83:f2:e1:e6:90:d0:08:cf:a1:9f:9f:9f:01:81:c0: a6:04:f5:5b:ea:76:e9:da:9e:a0:c3:44:af:77:ea: ac:41:fb:0f:ca:ae:a9:dd:8f:aa:8c:5e:b6:34:c8: 8e:89:38:61:09:5f:aa:d5:06:c2:27:39:03:de:41: 90:44:72:60:84:0e:20:db:91:1e:50:d5:70:63:62: 87:7d:96:76:f3:6b:01:20:a8:29:ea:57:0e:9d:1c: 05:15:c4:84:6a:d2:6b:be:47:1b:d5:6d:96:32:da: e2:30:d5:35:b7:1b:30:db:a6:1b:4a:3b:a9:62:52: 11:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B0:2B:5B:49:9C:27:D5:D8:46:03:CE:76:30:22:41:D7:18:27:0D X509v3 Authority Key Identifier: keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:53:ab:33:0a:a8:39:03:ef:45:57:a5:9a:12:03:db:c3:f0: c7:b0:ca:d8:d3:47:45:1a:90:96:46:84:f1:97:19:6d:9c:04: fd:e9:76:65:f3:87:5c:32:0c:53:ff:63:ee:52:7d:6a:98:cc: 4e:b8:1d:25:f6:c8:eb:ec:96:b8:cf:de:63:00:e4:b3:5a:ff: ba:0c:ae:de:43:a3:c4:54:90:0c:23:d0:09:52:c0:ca:12:42: fc:61:8b:57:03:bf:c0:13:fb:8b:56:5e:ba:97:69:d5:f6:df: c9:bf:9a:56:17:99:a3:61:ba:63:4f:f5:b3:f6:50:90:87:19: 66:48:7c:fa:90:74:1b:e6:30:8c:33:25:4d:69:6d:af:27:08: 7f:85:f9:6c:b1:d2:ac:2d:15:28:84:db:1b:5a:79:68:b4:06: fa:94:fc:8d:c7:9c:d9:fa:01:20:53:b2:d5:02:cb:aa:1c:41: c7:1c:9f:b4:95:d5:13:e8:03:8e:2e:26:e5:79:43:8e:24:9a: 8c:55:20:7c:57:82:78:26:a5:b0:23:0e:86:d9:d1:ba:55:f7: 83:97:f5:14:e9:27:f1:6c:f1:bb:67:57:dc:d5:c2:90:2c:33: 9e:fb:38:54:e9:b8:4f:c8:bf:96:d2:ed:54:99:72:17:1a:71: cd:66:e2:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwMEUxMTAvBgNVBAUTKDE4RTFGNzMyRUZBNTNDMzk3M0ExQUNEMjJDMTM2OEE1 RTFGMkNBNTIwHhcNMjUwMzI5MDMwMjMyWhcNMjUwNDA1MDMwMjMyWjAYMRYwFAYD VQQDEw02N2U3NjJjOC1hZjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fUKYam4NbarG3h/B2hhATB8l2ARQ3d6DR6VGbOncPEcpEUkK1wnVqnfhIhG 9T/LvMaqT4m0nyUy+cp9an/apbtHwtQYAnW+U0ak7CR7+OlkL1WMVL23uknvEW/B 8xpaRRHw/A6lfpTvLwoI/hjfej6bO6fJanbnuITMMuziBNiI+bVpXT2D8uHmkNAI z6Gfn58BgcCmBPVb6nbp2p6gw0Svd+qsQfsPyq6p3Y+qjF62NMiOiThhCV+q1QbC JzkD3kGQRHJghA4g25EeUNVwY2KHfZZ282sBIKgp6lcOnRwFFcSEatJrvkcb1W2W MtriMNU1txsw26YbSjupYlIRNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6wK1tJ nCfV2EYDznYwIkHXGCcNMB8GA1UdIwQYMBaAFBjh9zLvpTw5c6Gs0iwTaKXh8spS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjAwRS81QUExODIyRUFE MzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBEbHpvYXpTTEJOb3BlSHl5 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPSDNNdS1sUERsem9helNMQk5vcGVIeXlsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjAwRS81QUExODIyRUFEMzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBE bHpvYXpTTEJOb3BlSHl5bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfU6szCqg5A+9FV6WaEgPbw/DHsMrY00dFGpCWRoTxlxltnAT96XZl 84dcMgxT/2PuUn1qmMxOuB0l9sjr7Ja4z95jAOSzWv+6DK7eQ6PEVJAMI9AJUsDK EkL8YYtXA7/AE/uLVl66l2nV9t/Jv5pWF5mjYbpjT/Wz9lCQhxlmSHz6kHQb5jCM MyVNaW2vJwh/hflssdKsLRUohNsbWnlotAb6lPyNx5zZ+gEgU7LVAsuqHEHHHJ+0 ldUT6AOOLibleUOOJJqMVSB8V4J4JqWwIw6G2dG6VfeDl/UU6SfxbPG7Z1fc1cKQ LDOe+zhU6bhPyL+W0u1UmXIXGnHNZuLq -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:46 2025 by rpki-client