$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: eVvFuzTZpk//rXAs5YjeiufDx1xQVKAH0r+ZtJ1QC6w= Subject key identifier: 78:C0:CE:02:DB:B1:60:81:4B:25:4D:D4:8E:66:9B:28:3E:41:3C:80 Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 34B5 Signing time: Sun 24 Aug 2025 14:34:49 +0000 Manifest this update: Sun 24 Aug 2025 14:34:48 +0000 Manifest next update: Sun 31 Aug 2025 14:34:48 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: BzzTJDFLFO9c7sKqqs88xDuiwgKowlxJFfBRY5p7F+0=) 2: 2021C6F6795E11F0B07E6E6BC4F9AE02.roa (hash: /tr9Ms57wuKfsw+OEtuIOe0iJR3426UBPMZCKa1pr2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Aug 24 14:34:48 2025 GMT Not After : Aug 31 14:34:48 2025 GMT Subject: CN=68ab2308-f925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:70:df:03:71:1b:9e:12:c1:fb:4e:b3:a0:db: 79:2b:39:05:f3:73:38:59:fb:d1:1a:23:3a:2d:26: b1:75:62:1b:f4:d4:fd:ab:8e:94:7a:f6:11:b1:9c: ac:db:69:ce:95:8a:42:01:e5:34:ad:61:41:b8:73: 57:9f:8a:0a:9a:85:82:ac:53:e4:96:74:88:31:aa: 6b:96:6d:ef:8f:6a:c8:f4:5f:88:55:57:a0:9c:ea: f4:c7:e8:49:1e:b1:eb:1f:f7:58:22:2e:4d:35:b8: 16:45:b2:dc:31:94:64:12:97:c6:bd:0c:87:51:30: 68:85:f1:82:a3:aa:68:e3:89:8a:2b:4e:28:0f:38: e9:01:be:57:5c:5c:26:61:68:bd:50:5a:69:fe:0d: ae:53:2e:6d:a9:e2:fc:92:df:41:70:ee:b4:7e:f4: e1:78:20:78:18:60:61:0a:82:01:69:bf:40:96:95: 9d:d8:08:25:df:d8:87:c6:db:c7:e7:fb:b7:eb:6f: 11:78:2b:d7:38:d1:19:8d:f6:ea:65:d2:44:18:50: f8:bb:c5:a7:04:5c:e1:84:99:67:59:9a:6d:95:14: 20:9c:04:27:62:23:2c:b5:e4:1b:28:68:45:34:5f: 47:f3:ab:e0:b3:f6:4b:f6:2c:ca:e4:7b:07:48:37: f4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C0:CE:02:DB:B1:60:81:4B:25:4D:D4:8E:66:9B:28:3E:41:3C:80 X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5f:95:e4:d0:0f:76:86:f8:b2:a9:14:4b:b9:04:91:62:99: 26:e0:f7:f3:14:07:25:7b:7c:8f:4e:48:9f:94:1c:fe:06:63: 55:55:db:5c:45:fe:08:61:9b:6e:3d:0a:5f:dd:90:c3:70:68: 6a:85:9e:76:6a:b7:c3:14:10:a0:50:de:79:c8:d7:b9:94:43: 59:ab:0b:e9:ea:49:64:3b:f9:06:e7:64:d3:01:c0:90:7c:bf: 40:d7:8c:fb:14:e2:b1:90:fe:19:e0:a3:c6:52:ca:d6:b9:c7: d5:fd:9e:c3:8f:ad:e1:bc:14:fe:2a:91:5f:1d:fd:e5:21:cc: ae:bb:54:27:a4:92:a6:cd:95:a4:97:2f:d0:cc:47:f1:ee:2e: 18:f0:bc:70:b6:99:11:67:74:67:e7:24:16:a9:b0:5e:e1:78: f5:3b:61:d8:b7:75:3c:51:16:40:23:ee:9c:db:d6:02:b4:85: 50:87:35:84:df:a1:34:b8:20:71:f0:43:2e:0a:2c:77:7a:ab: c4:15:bb:ae:c7:62:4b:25:28:24:ff:ca:b0:15:dc:63:44:64: 63:04:a3:27:53:62:52:c9:9d:f1:27:da:ff:17:e9:ba:36:96: 95:d3:12:67:4d:44:9d:31:e5:89:55:09:97:ac:46:d4:41:93: c4:d6:51:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUwODI0MTQzNDQ4WhcNMjUwODMxMTQzNDQ4WjAYMRYwFAYD VQQDEw02OGFiMjMwOC1mOTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3DfA3EbnhLB+06zoNt5KzkF83M4WfvRGiM6LSaxdWIb9NT9q46UevYRsZys 22nOlYpCAeU0rWFBuHNXn4oKmoWCrFPklnSIMaprlm3vj2rI9F+IVVegnOr0x+hJ HrHrH/dYIi5NNbgWRbLcMZRkEpfGvQyHUTBohfGCo6po44mKK04oDzjpAb5XXFwm YWi9UFpp/g2uUy5tqeL8kt9BcO60fvTheCB4GGBhCoIBab9AlpWd2Agl39iHxtvH 5/u3628ReCvXONEZjfbqZdJEGFD4u8WnBFzhhJlnWZptlRQgnAQnYiMsteQbKGhF NF9H86vgs/ZL9izK5HsHSDf07QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjAzgLb sWCBSyVN1I5mmyg+QTyAMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqX5Xk0A92hviyqRRLuQSRYpkm4PfzFAcle3yPTkiflBz+BmNVVdtc Rf4IYZtuPQpf3ZDDcGhqhZ52arfDFBCgUN55yNe5lENZqwvp6klkO/kG52TTAcCQ fL9A14z7FOKxkP4Z4KPGUsrWucfV/Z7Dj63hvBT+KpFfHf3lIcyuu1QnpJKmzZWk ly/QzEfx7i4Y8LxwtpkRZ3Rn5yQWqbBe4Xj1O2HYt3U8URZAI+6c29YCtIVQhzWE 36E0uCBx8EMuCix3eqvEFbuux2JLJSgk/8qwFdxjRGRjBKMnU2JSyZ3xJ9r/F+m6 NpaV0xJnTUSdMeWJVQmXrEbUQZPE1lGB -----END CERTIFICATE-----Generated at Sun Aug 24 21:33:10 2025 by rpki-client