$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: fGbTlDNhGbbGHBWNL0WinJmYILhAR65G+KT/QXR1LzA= Subject key identifier: 3B:17:F0:6F:D9:D7:93:33:B6:6D:C1:BD:42:A5:D9:76:57:99:0A:B2 Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 3488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 3488 Signing time: Fri 30 May 2025 14:34:38 +0000 Manifest this update: Fri 30 May 2025 14:34:37 +0000 Manifest next update: Fri 06 Jun 2025 14:34:37 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: a5HN2WnQJLbB9bzt6UwF5VL0chxr92eUVBjhBkQmyc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13448 (0x3488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: May 30 14:34:37 2025 GMT Not After : Jun 6 14:34:37 2025 GMT Subject: CN=6839c1fd-e498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:ab:50:b5:02:cb:0b:03:9e:1c:ff:b3:ca: 0b:85:03:7e:88:45:61:c6:49:25:dc:01:d9:a5:b6: b1:6a:16:e8:a7:f8:ef:30:d9:f8:c1:be:5b:d1:d3: 7a:b6:93:23:9d:a9:98:20:1e:d8:5b:c2:ee:6d:fa: 85:18:bc:69:2e:e6:5a:a9:9c:ca:68:11:5e:73:00: 6b:ef:f1:2d:7e:3a:bb:ce:6f:61:25:5e:0b:52:c8: c1:fa:fc:87:00:c7:18:23:d6:e8:53:a9:c5:55:77: e9:6a:cb:7a:0f:d7:4e:1a:78:fe:45:24:23:0f:4c: 14:aa:20:bd:f8:5a:bc:6a:42:e3:d3:4c:1e:58:f0: 96:cf:83:f3:f6:96:93:ee:fc:51:80:63:26:6a:14: 65:d1:6c:f9:68:3e:22:4f:cf:03:e8:79:d4:d0:fd: 97:23:05:f2:8f:94:bb:50:7b:9a:3b:44:a9:e0:4c: f6:f0:ac:ba:7d:3b:18:de:0d:c0:11:66:7f:6e:77: 2c:a1:bc:4e:58:32:e9:e9:d7:27:01:8f:0e:5e:59: 4d:b7:10:62:44:c1:7c:80:ee:12:7f:39:d2:31:03: dc:5d:31:05:22:5c:8f:2b:4c:c1:d2:b5:0e:61:1d: 29:a0:17:6b:6d:75:1e:36:ed:c6:6a:6e:c7:48:b2: 73:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:17:F0:6F:D9:D7:93:33:B6:6D:C1:BD:42:A5:D9:76:57:99:0A:B2 X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:fc:c1:71:92:50:7b:7e:c1:2a:e8:68:e7:5c:1e:12:c1:42: a9:62:00:4d:70:8c:49:46:0f:de:a0:e1:a8:07:79:11:14:2d: e4:57:56:dc:a3:06:e5:1a:95:e6:b1:c4:b6:4a:6e:0e:e3:7a: 66:87:d2:f8:cf:18:d6:8f:83:ed:69:28:1b:57:5b:d4:1b:7e: ff:f3:df:90:7b:e7:83:46:5f:1b:7c:a7:b9:1d:9a:7d:16:3d: 65:24:af:a2:b0:91:15:13:14:1f:99:87:96:a6:29:3a:97:e9: 5f:b4:1b:37:a9:99:34:75:5e:45:e5:ed:fa:2f:42:9c:16:43: 51:ff:f1:7c:a8:65:55:b6:6a:39:a5:82:10:b8:95:8d:c8:0c: 7f:15:48:3a:96:b0:d7:d4:1d:5c:5d:9d:2c:a4:b4:45:77:5a: 75:45:17:21:aa:3c:4c:ae:ae:f5:be:a7:12:76:50:a4:52:41: 5b:52:39:c9:13:4c:5d:4f:da:89:1f:f1:02:db:c7:07:fc:11: 27:52:93:de:9e:65:a7:9b:2f:9f:39:3c:ae:11:ae:77:49:41: af:b4:49:2c:5d:33:9a:70:7c:5f:52:47:a9:dc:30:20:a9:12: 1e:16:3e:1e:80:19:58:0c:2d:29:78:4e:21:4c:04:f4:9b:19: 31:6a:ac:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUwNTMwMTQzNDM3WhcNMjUwNjA2MTQzNDM3WjAYMRYwFAYD VQQDEw02ODM5YzFmZC1lNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuGrULUCywsDnhz/s8oLhQN+iEVhxkkl3AHZpbaxahbop/jvMNn4wb5b0dN6 tpMjnamYIB7YW8LubfqFGLxpLuZaqZzKaBFecwBr7/Etfjq7zm9hJV4LUsjB+vyH AMcYI9boU6nFVXfpast6D9dOGnj+RSQjD0wUqiC9+Fq8akLj00weWPCWz4Pz9paT 7vxRgGMmahRl0Wz5aD4iT88D6HnU0P2XIwXyj5S7UHuaO0Sp4Ez28Ky6fTsY3g3A EWZ/bncsobxOWDLp6dcnAY8OXllNtxBiRMF8gO4SfznSMQPcXTEFIlyPK0zB0rUO YR0poBdrbXUeNu3Gam7HSLJz6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsX8G/Z 15Mztm3BvUKl2XZXmQqyMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE/MFxklB7fsEq6GjnXB4SwUKpYgBNcIxJRg/eoOGoB3kRFC3kV1bc owblGpXmscS2Sm4O43pmh9L4zxjWj4PtaSgbV1vUG37/89+Qe+eDRl8bfKe5HZp9 Fj1lJK+isJEVExQfmYeWpik6l+lftBs3qZk0dV5F5e36L0KcFkNR//F8qGVVtmo5 pYIQuJWNyAx/FUg6lrDX1B1cXZ0spLRFd1p1RRchqjxMrq71vqcSdlCkUkFbUjnJ E0xdT9qJH/EC28cH/BEnUpPenmWnmy+fOTyuEa53SUGvtEksXTOacHxfUkep3DAg qRIeFj4egBlYDC0peE4hTAT0mxkxaqx2 -----END CERTIFICATE-----Generated at Sat May 31 14:53:19 2025 by rpki-client