$ rpki-client -vvf rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft File: GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft (raw, json) Hash identifier: Ob/ZzI2TqgBK0lkUh1uZeLL/YaXCWKllHTbIaVVQs7I= Subject key identifier: 4D:21:85:89:5C:C0:5C:28:B8:33:1A:CA:E0:44:4D:36:2E:26:07:E8 Authority key identifier: 18:ED:AB:B2:82:0C:E2:5F:90:E8:63:5C:13:B7:F0:D4:5F:04:63:76 Certificate issuer: /CN=A9155810/serialNumber=18EDABB2820CE25F90E8635C13B7F0D45F046376 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft Manifest number: 55 Signing time: Sat 31 May 2025 06:50:42 +0000 Manifest this update: Sat 31 May 2025 06:50:41 +0000 Manifest next update: Sat 07 Jun 2025 06:50:41 +0000 Files and hashes: 1: GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl (hash: Up0HaibPJkVMGy8GgltLljRsCFqsIv5HOvU8bv7NY7I=) 2: 1BC9B310C88E11EF8E789228C4F9AE02.roa (hash: S0OXmYbNImJgx4uOC0U7mhQnmuYrYNwVWM5SzyT3w3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155810, serialNumber=18EDABB2820CE25F90E8635C13B7F0D45F046376 Validity Not Before: May 31 06:50:41 2025 GMT Not After : Jun 7 06:50:41 2025 GMT Subject: CN=683aa6c2-d409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:99:97:0a:fe:2e:5e:23:35:a4:31:d6:f9: f8:ba:80:48:6d:7a:fe:66:ae:83:13:55:5b:67:df: 53:ef:71:3d:c4:99:8a:f0:98:9c:4f:55:73:ac:57: b8:68:62:05:75:16:1b:fa:e3:e9:ca:11:11:38:d6: 7e:f8:07:3c:e1:a5:08:7e:a4:0d:e7:64:22:63:f7: 3a:b3:de:d1:37:46:bf:ce:4b:d8:fc:0d:32:dd:2c: a4:40:ea:95:04:29:9a:22:95:7e:8c:60:cc:72:6e: 1c:f0:4e:f6:f0:66:7e:d1:fa:8d:d5:1e:27:46:06: 79:c7:7b:97:69:27:bb:05:4a:29:12:fb:5a:28:bd: ed:84:2d:2c:cd:49:a7:45:29:f7:03:88:54:52:9c: 90:df:b4:74:ff:a5:22:fc:4d:86:9a:d4:d2:59:63: b3:3e:f3:7d:98:be:47:d8:61:83:94:0f:af:9c:62: 28:f2:1b:44:7f:dc:c0:76:ea:85:cb:74:f4:e8:b6: 52:26:c2:c2:f0:a1:58:3c:d1:07:7e:33:81:92:d1: 3d:f0:68:27:f3:c9:d0:8a:e3:8c:72:b1:ab:74:1d: e2:fc:3a:b9:51:38:a3:2f:8a:59:b0:ab:23:08:01: be:fc:51:91:b6:9a:31:a2:8f:58:9f:55:4f:f5:9a: 87:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:21:85:89:5C:C0:5C:28:B8:33:1A:CA:E0:44:4D:36:2E:26:07:E8 X509v3 Authority Key Identifier: keyid:18:ED:AB:B2:82:0C:E2:5F:90:E8:63:5C:13:B7:F0:D4:5F:04:63:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:33:74:7c:65:18:3a:61:df:2c:10:2b:ed:f8:3b:e8:8b:41: e5:d7:b3:79:b0:eb:63:88:df:a8:fc:68:4f:42:f6:54:1d:43: ac:cb:90:d6:90:8b:7c:74:d3:47:3b:cd:b6:7a:11:48:8c:ac: d9:5f:26:94:ab:2a:af:48:7e:06:b3:ea:50:29:91:4a:e4:a5: eb:6d:bc:00:17:06:3f:87:66:88:8e:95:66:af:49:4c:c0:23: 82:0c:0a:82:87:6e:ac:ea:9d:1f:0f:14:20:4b:14:93:d6:12: a9:1b:a0:d1:06:63:7c:08:e2:05:a7:e8:58:f1:ed:49:2c:a7: 36:9d:c3:1c:2a:44:03:cd:33:23:e2:a6:ba:21:b2:6e:73:2d: 5b:6e:42:48:92:ee:e4:79:a5:17:e2:4f:e0:db:76:63:66:00: e5:71:bf:3f:c3:7b:28:31:da:c7:44:d6:02:10:b1:4f:e1:38: a0:78:0f:6d:1e:6f:c9:e1:99:6a:5e:62:28:db:87:9b:1e:57: a4:aa:ef:e8:e7:ea:8e:b0:4e:55:fd:21:19:19:b2:40:1b:31: 41:15:fb:cc:ee:59:c4:32:cf:22:f8:24:a4:ae:fe:40:33:fb: 85:81:01:e3:c6:55:ed:04:d9:5e:9b:77:85:45:3e:49:1b:4e: a9:01:e4:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgxMDExMC8GA1UEBRMoMThFREFCQjI4MjBDRTI1RjkwRTg2MzVDMTNCN0YwRDQ1 RjA0NjM3NjAeFw0yNTA1MzEwNjUwNDFaFw0yNTA2MDcwNjUwNDFaMBgxFjAUBgNV BAMTDTY4M2FhNmMyLWQ0MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVzJmXCv4uXiM1pDHW+fi6gEhtev5mroMTVVtn31PvcT3EmYrwmJxPVXOsV7ho YgV1Fhv64+nKERE41n74BzzhpQh+pA3nZCJj9zqz3tE3Rr/OS9j8DTLdLKRA6pUE KZoilX6MYMxybhzwTvbwZn7R+o3VHidGBnnHe5dpJ7sFSikS+1oove2ELSzNSadF KfcDiFRSnJDftHT/pSL8TYaa1NJZY7M+832YvkfYYYOUD6+cYijyG0R/3MB26oXL dPTotlImwsLwoVg80Qd+M4GS0T3waCfzydCK44xysat0HeL8OrlROKMvilmwqyMI Ab78UZG2mjGij1ifVU/1mofRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTSGFiVzA XCi4MxrK4ERNNi4mB+gwHwYDVR0jBBgwFoAUGO2rsoIM4l+Q6GNcE7fw1F8EY3Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODEwLzdCQThEMzlDQzcw ODExRUZBODlCMEM1RkM0RjlBRTAyL0dPMnJzb0lNNGwtUTZHTmNFN2Z3MUY4RVkz WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR08ycnNvSU00bC1RNkdOY0U3ZncxRjhFWTNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 ODEwLzdCQThEMzlDQzcwODExRUZBODlCMEM1RkM0RjlBRTAyL0dPMnJzb0lNNGwt UTZHTmNFN2Z3MUY4RVkzWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE4zdHxlGDph3ywQK+34O+iLQeXXs3mw62OI36j8aE9C9lQdQ6zLkNaQ i3x000c7zbZ6EUiMrNlfJpSrKq9Ifgaz6lApkUrkpettvAAXBj+HZoiOlWavSUzA I4IMCoKHbqzqnR8PFCBLFJPWEqkboNEGY3wI4gWn6Fjx7UkspzadwxwqRAPNMyPi prohsm5zLVtuQkiS7uR5pRfiT+DbdmNmAOVxvz/Deygx2sdE1gIQsU/hOKB4D20e b8nhmWpeYijbh5seV6Sq7+jn6o6wTlX9IRkZskAbMUEV+8zuWcQyzyL4JKSu/kAz +4WBAePGVe0E2V6bd4VFPkkbTqkB5KE= -----END CERTIFICATE-----Generated at Sat May 31 16:49:03 2025 by rpki-client