$ rpki-client -vvf rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft File: GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft (raw, json) Hash identifier: puQzknHk441FlLrmeHWDAWHEVXh7wNIqundNY1W6ez0= Subject key identifier: 04:53:AE:6A:FE:B1:83:2E:2A:89:5B:14:8C:0D:70:EF:59:83:B9:E3 Authority key identifier: 18:ED:AB:B2:82:0C:E2:5F:90:E8:63:5C:13:B7:F0:D4:5F:04:63:76 Certificate issuer: /CN=A9155810/serialNumber=18EDABB2820CE25F90E8635C13B7F0D45F046376 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft Manifest number: 8D Signing time: Wed 17 Sep 2025 07:17:39 +0000 Manifest this update: Wed 17 Sep 2025 07:17:38 +0000 Manifest next update: Wed 24 Sep 2025 07:17:38 +0000 Files and hashes: 1: GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl (hash: oKoNRNQZLSmX65fWuzc0U8VLEVpz4Z8Cj1wxNmE+oGQ=) 2: 1BC9B310C88E11EF8E789228C4F9AE02.roa (hash: S0OXmYbNImJgx4uOC0U7mhQnmuYrYNwVWM5SzyT3w3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155810, serialNumber=18EDABB2820CE25F90E8635C13B7F0D45F046376 Validity Not Before: Sep 17 07:17:38 2025 GMT Not After : Sep 24 07:17:38 2025 GMT Subject: CN=68ca6092-52b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6b:ab:84:2b:14:97:c2:6e:26:fe:fa:09:62: 05:0b:76:b0:10:a2:3a:9b:27:10:71:ab:3e:15:27: 3d:a2:05:65:0d:2f:8d:46:7b:e4:0f:24:c4:c9:83: 9e:eb:ec:11:08:38:df:38:d0:cb:74:5e:42:91:cb: c8:c7:41:ac:92:d1:2b:26:47:28:42:c9:eb:05:1e: 7f:b2:5f:2b:fb:5c:9d:0d:e2:4e:52:d4:7c:66:2c: f8:2f:37:3c:80:3a:e0:cd:91:ff:f4:95:cd:48:30: f7:3f:17:9f:96:8e:14:7b:32:b3:d8:07:5f:76:4d: 39:96:f1:30:f0:c6:d5:43:c2:a6:a2:ed:07:63:18: b8:ab:e0:5a:2c:4a:35:29:dd:71:b9:a7:07:63:30: d6:cf:88:96:a2:ae:de:5c:d1:30:a3:18:28:7f:d5: 92:1f:4e:91:c4:a9:40:89:d0:e1:74:35:c5:1a:4d: 0e:c1:05:8d:32:04:0e:89:d8:3c:00:a1:3d:db:28: 85:3d:89:ff:cb:89:34:03:df:33:42:cc:27:e5:34: f0:81:08:66:f9:81:ee:64:b3:79:73:11:3c:eb:45: 29:91:5b:21:42:55:90:19:90:7a:d8:f0:7f:ea:60: 76:85:d9:65:5f:b7:44:27:12:72:30:10:1f:89:74: 3f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:53:AE:6A:FE:B1:83:2E:2A:89:5B:14:8C:0D:70:EF:59:83:B9:E3 X509v3 Authority Key Identifier: keyid:18:ED:AB:B2:82:0C:E2:5F:90:E8:63:5C:13:B7:F0:D4:5F:04:63:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:22:8f:34:55:5d:86:2d:02:20:39:60:f2:95:59:b1:e0:7c: 43:fc:da:28:e2:4b:06:68:dd:1f:10:8c:50:5d:df:0a:25:1a: e5:e2:82:db:c0:f4:fd:a8:35:ef:9a:a3:f1:34:a3:60:23:56: 07:9f:45:ca:9f:00:55:b7:75:5a:d2:c1:0e:ba:3f:88:a8:99: 91:19:21:8e:7b:ee:df:85:72:30:a2:bb:44:ac:fb:e0:d5:29: d6:fd:c5:e1:62:bc:96:fb:9a:46:79:72:99:66:b9:15:c9:15: 94:fc:c2:da:fe:af:b9:0c:5f:b4:a1:12:3d:fc:ca:af:db:01: 59:ce:42:67:b5:60:93:e2:43:57:15:68:66:ad:d0:be:47:24: c6:b3:b0:60:f0:1c:28:1b:46:65:d0:99:2a:53:1f:5c:a6:48: 69:d4:09:89:c5:2e:33:5c:dc:b4:e4:e1:0f:d1:72:cd:54:c0: 23:af:83:16:33:5a:b6:d7:5f:6d:00:8f:79:8d:e3:35:93:b5: 6b:82:cb:23:f8:1d:15:0e:87:57:66:5b:7d:03:65:88:cc:f7: 94:08:b8:64:c2:ef:90:ab:d8:a5:e9:fa:0e:24:a4:8f:59:aa: 3b:e4:99:ad:67:49:ca:18:76:0b:a1:45:0d:70:82:79:ae:a4: 06:7e:23:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU4MTAxMTAvBgNVBAUTKDE4RURBQkIyODIwQ0UyNUY5MEU4NjM1QzEzQjdGMEQ0 NUYwNDYzNzYwHhcNMjUwOTE3MDcxNzM4WhcNMjUwOTI0MDcxNzM4WjAYMRYwFAYD VQQDEw02OGNhNjA5Mi01MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02urhCsUl8JuJv76CWIFC3awEKI6mycQcas+FSc9ogVlDS+NRnvkDyTEyYOe 6+wRCDjfONDLdF5CkcvIx0GsktErJkcoQsnrBR5/sl8r+1ydDeJOUtR8Ziz4Lzc8 gDrgzZH/9JXNSDD3Pxeflo4UezKz2Adfdk05lvEw8MbVQ8Kmou0HYxi4q+BaLEo1 Kd1xuacHYzDWz4iWoq7eXNEwoxgof9WSH06RxKlAidDhdDXFGk0OwQWNMgQOidg8 AKE92yiFPYn/y4k0A98zQswn5TTwgQhm+YHuZLN5cxE860UpkVshQlWQGZB62PB/ 6mB2hdllX7dEJxJyMBAfiXQ/AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARTrmr+ sYMuKolbFIwNcO9Zg7njMB8GA1UdIwQYMBaAFBjtq7KCDOJfkOhjXBO38NRfBGN2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTgxMC83QkE4RDM5Q0M3 MDgxMUVGQTg5QjBDNUZDNEY5QUUwMi9HTzJyc29JTTRsLVE2R05jRTdmdzFGOEVZ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPMnJzb0lNNGwtUTZHTmNFN2Z3MUY4RVkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgxMC83QkE4RDM5Q0M3MDgxMUVGQTg5QjBDNUZDNEY5QUUwMi9HTzJyc29JTTRs LVE2R05jRTdmdzFGOEVZM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAIo80VV2GLQIgOWDylVmx4HxD/Noo4ksGaN0fEIxQXd8KJRrl4oLb wPT9qDXvmqPxNKNgI1YHn0XKnwBVt3Va0sEOuj+IqJmRGSGOe+7fhXIwortErPvg 1SnW/cXhYryW+5pGeXKZZrkVyRWU/MLa/q+5DF+0oRI9/Mqv2wFZzkJntWCT4kNX FWhmrdC+RyTGs7Bg8BwoG0Zl0JkqUx9cpkhp1AmJxS4zXNy05OEP0XLNVMAjr4MW M1q2119tAI95jeM1k7Vrgssj+B0VDodXZlt9A2WIzPeUCLhkwu+Qq9il6foOJKSP Wao75JmtZ0nKGHYLoUUNcIJ5rqQGfiM2 -----END CERTIFICATE-----Generated at Fri Sep 19 03:44:41 2025 by rpki-client