$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: /1/G99F9vUcThj0p03foCuZrXloGHspQaxxlSbsycMU= Subject key identifier: 86:38:E9:3F:C9:C5:45:EA:9C:F6:2A:E0:DC:5C:8C:33:0F:B4:A2:96 Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 346F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 346F Signing time: Thu 10 Apr 2025 14:36:36 +0000 Manifest this update: Thu 10 Apr 2025 14:36:35 +0000 Manifest next update: Thu 17 Apr 2025 14:36:35 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: T0ERsyIkXg2D3mJ+8g4VdzvhdvRwEiiEjIm2XSUCa+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 14:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13423 (0x346f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Apr 10 14:36:35 2025 GMT Not After : Apr 17 14:36:35 2025 GMT Subject: CN=67f7d774-0a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:60:fd:0a:38:e1:c4:16:90:09:76:75:df: 35:80:58:bf:9c:c6:0d:a2:68:64:81:ba:28:0d:d7: 70:4a:6f:2e:fa:fa:31:1e:bc:e2:cb:62:45:c4:c5: 8f:ce:35:65:d2:d5:43:0f:5f:7b:77:19:aa:c7:8a: 3d:7e:a2:d2:1c:17:c6:d4:55:67:ff:d5:66:71:d6: 3b:4a:e5:72:52:41:cd:8b:6d:1b:d0:ed:2f:db:ac: 7e:eb:a6:a0:f5:49:41:11:de:d0:e8:52:64:42:7d: b6:3a:91:56:45:e1:5e:5b:21:3b:9e:8d:a1:84:1d: b6:73:b7:29:c3:a8:50:84:3b:94:9e:40:ae:14:7b: b9:05:7e:62:7e:cf:99:9d:1b:70:ac:98:63:09:d8: f9:8e:ff:aa:b7:03:f4:cc:42:81:e4:eb:21:82:d2: 8f:50:8a:a7:37:1f:86:18:e0:d2:f2:eb:65:c5:3b: 48:8c:95:4d:49:17:e9:69:5f:cb:a8:03:14:7d:07: 16:10:6f:25:6e:fd:85:0a:e3:72:83:80:ea:2e:d7: d7:7c:73:55:02:e1:1e:df:72:89:eb:b7:df:4a:f7: db:74:a3:37:22:9c:2f:f7:d7:77:fe:d6:3f:f5:7e: 2f:83:1d:d9:a4:9c:66:b3:75:f2:0d:a7:e4:46:91: a2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:38:E9:3F:C9:C5:45:EA:9C:F6:2A:E0:DC:5C:8C:33:0F:B4:A2:96 X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f1:a1:c7:b2:7f:35:4c:93:5d:98:60:a5:36:7f:c7:fc:81: cc:53:6e:50:6e:6f:55:e8:0d:74:9e:0d:07:5b:9b:d6:da:6a: ab:e8:91:4a:0f:fd:a2:1a:08:00:37:55:36:37:59:20:70:a8: 9e:f1:0a:68:2f:79:06:75:79:0c:6f:e5:f7:6e:9f:2e:cd:43: da:7c:81:e1:1c:2b:2e:14:06:32:cd:f7:7c:93:c3:3e:70:47: 7d:77:a7:48:08:c7:0a:67:86:bd:bd:d1:bb:f7:f3:2b:92:20: ca:87:72:a9:f8:73:4d:03:3c:9b:94:73:76:df:75:b0:2f:c9: 27:8f:29:28:87:6a:27:a8:b9:88:3f:98:e4:58:49:da:a7:19: 7a:53:dc:af:1b:d3:b6:69:4e:b8:0e:d5:6a:ee:73:eb:a9:bf: e8:e6:08:05:20:71:27:b6:57:20:ac:21:31:b2:27:7f:d0:7c: b1:79:88:ec:83:d1:37:51:42:65:2c:cb:2c:6f:b5:41:ce:5d: 43:75:ab:28:23:b1:8a:2a:3e:01:3a:b5:ea:09:dc:25:e8:6e: b3:af:13:fd:e9:8c:48:7b:0d:c4:67:c2:54:80:12:c5:6f:09: cc:2b:5b:ed:84:2e:26:2a:17:24:6a:49:62:6e:32:28:fa:b3: 0d:62:ba:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUwNDEwMTQzNjM1WhcNMjUwNDE3MTQzNjM1WjAYMRYwFAYD VQQDEw02N2Y3ZDc3NC0wYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsNg/Qo44cQWkAl2dd81gFi/nMYNomhkgbooDddwSm8u+voxHrziy2JFxMWP zjVl0tVDD197dxmqx4o9fqLSHBfG1FVn/9VmcdY7SuVyUkHNi20b0O0v26x+66ag 9UlBEd7Q6FJkQn22OpFWReFeWyE7no2hhB22c7cpw6hQhDuUnkCuFHu5BX5ifs+Z nRtwrJhjCdj5jv+qtwP0zEKB5OshgtKPUIqnNx+GGODS8utlxTtIjJVNSRfpaV/L qAMUfQcWEG8lbv2FCuNyg4DqLtfXfHNVAuEe33KJ67ffSvfbdKM3Ipwv99d3/tY/ 9X4vgx3ZpJxms3XyDafkRpGi7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY46T/J xUXqnPYq4NxcjDMPtKKWMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT8aHHsn81TJNdmGClNn/H/IHMU25Qbm9V6A10ng0HW5vW2mqr6JFK D/2iGggAN1U2N1kgcKie8QpoL3kGdXkMb+X3bp8uzUPafIHhHCsuFAYyzfd8k8M+ cEd9d6dICMcKZ4a9vdG79/MrkiDKh3Kp+HNNAzyblHN233WwL8knjykoh2onqLmI P5jkWEnapxl6U9yvG9O2aU64DtVq7nPrqb/o5ggFIHEntlcgrCExsid/0HyxeYjs g9E3UUJlLMssb7VBzl1DdasoI7GKKj4BOrXqCdwl6G6zrxP96YxIew3EZ8JUgBLF bwnMK1vthC4mKhckaklibjIo+rMNYrpV -----END CERTIFICATE-----Generated at Sat Apr 12 16:24:37 2025 by rpki-client