$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: 1002DhVtQ5q06FEzFrdFma++7z2TyATResBZc4I5cMo= Subject key identifier: A8:61:89:A8:98:4F:D7:B1:C1:57:44:1E:AC:DB:66:56:F1:6F:23:E1 Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 34D9 Signing time: Sun 02 Nov 2025 14:33:59 +0000 Manifest this update: Sun 02 Nov 2025 14:33:58 +0000 Manifest next update: Sun 09 Nov 2025 14:33:58 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: O+xjjttLJOXnG85IO2YO+ocSOu+gFmVuakkTwPnXGQQ=) 2: 2021C6F6795E11F0B07E6E6BC4F9AE02.roa (hash: /tr9Ms57wuKfsw+OEtuIOe0iJR3426UBPMZCKa1pr2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Nov 2 14:33:58 2025 GMT Not After : Nov 9 14:33:58 2025 GMT Subject: CN=69076bd6-1741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d9:b0:46:e1:8b:7a:c7:5a:b6:fc:e9:03:ba: 39:33:f0:90:58:37:74:eb:5a:de:80:fa:e2:ee:b8: 72:28:2b:52:83:65:df:56:55:9e:94:b3:a7:8f:e9: c5:a7:9b:43:4f:e7:a6:c7:89:45:da:3f:a2:91:09: 15:c6:cd:a2:7e:52:94:02:88:e6:86:19:3d:a5:c1: 2c:3f:ff:81:ca:fa:78:9c:64:be:74:cf:08:d6:66: 55:cd:8d:06:cd:2c:38:a5:0d:ee:fb:7e:26:ef:18: 42:37:13:c2:bd:ba:0a:f4:56:96:d1:90:66:6f:f7: 60:69:a8:3c:7d:d3:92:08:2b:bd:1d:ea:42:5e:15: 4f:0f:39:f6:3a:e8:ca:61:bf:8c:cc:19:1d:07:33: a6:d0:f9:50:d8:b4:48:df:e2:ff:c6:3b:66:e8:00: f6:73:1d:2e:65:8a:e1:1d:ea:f6:88:80:76:e5:0e: 62:15:ba:86:61:81:ee:3f:67:34:a0:0b:d3:23:1a: 03:b3:c8:55:9d:6f:a9:47:7a:02:b2:0f:60:93:c0: 71:ef:32:1e:43:30:bc:a8:4d:30:39:19:e9:dc:cb: e0:73:ef:a9:25:fb:0b:81:d7:d4:b0:a8:db:31:34: 18:b0:5e:38:18:bf:55:1c:36:0b:78:3a:db:76:b8: 26:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:61:89:A8:98:4F:D7:B1:C1:57:44:1E:AC:DB:66:56:F1:6F:23:E1 X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ab:21:1f:a4:42:f3:d2:98:a5:45:e0:4f:0e:81:82:50:17: 92:f7:4a:24:9a:03:0c:46:b1:48:08:1d:6e:9e:ed:e7:4e:8e: 20:a9:69:2c:79:0e:11:d8:d2:4b:3f:1b:c3:9c:42:ec:14:89: bf:ac:67:35:be:9b:22:9b:7f:f7:e6:e5:0b:b7:90:d8:f8:ae: 9a:c7:8d:ee:e5:63:9a:8a:75:64:49:82:dd:33:10:90:76:e7: 88:f5:17:9c:23:ef:56:04:b9:17:8d:4b:5e:ac:e7:ef:17:d3: 39:99:d5:77:1a:db:ad:98:ee:b5:86:9c:b8:a7:ce:af:1e:06: 79:12:a2:96:3e:14:2b:31:e5:6c:69:41:be:cc:69:d5:1a:67: bb:ed:44:e1:fd:af:32:ad:eb:40:43:4f:ed:cd:08:8e:61:2e: 1c:ae:3f:28:dd:4d:11:d1:d6:f4:32:5b:c3:f7:d7:22:7b:62: 42:55:f5:25:98:57:64:fd:27:73:58:de:43:68:65:73:43:3e: 1c:61:a8:3b:9e:61:87:09:45:9e:c6:80:a6:69:78:ad:b7:4b: 95:b0:88:39:ce:35:81:e6:3e:9f:5c:43:f3:77:dd:48:39:5b: 57:ae:89:2e:c6:63:39:c0:ab:21:43:87:e6:fc:d5:c2:3c:de: 39:d9:7a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUxMTAyMTQzMzU4WhcNMjUxMTA5MTQzMzU4WjAYMRYwFAYD VQQDEw02OTA3NmJkNi0xNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdmwRuGLesdatvzpA7o5M/CQWDd061regPri7rhyKCtSg2XfVlWelLOnj+nF p5tDT+emx4lF2j+ikQkVxs2iflKUAojmhhk9pcEsP/+Byvp4nGS+dM8I1mZVzY0G zSw4pQ3u+34m7xhCNxPCvboK9FaW0ZBmb/dgaag8fdOSCCu9HepCXhVPDzn2OujK Yb+MzBkdBzOm0PlQ2LRI3+L/xjtm6AD2cx0uZYrhHer2iIB25Q5iFbqGYYHuP2c0 oAvTIxoDs8hVnW+pR3oCsg9gk8Bx7zIeQzC8qE0wORnp3Mvgc++pJfsLgdfUsKjb MTQYsF44GL9VHDYLeDrbdrgm6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhhiaiY T9exwVdEHqzbZlbxbyPhMB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEqyEfpELz0pilReBPDoGCUBeS90okmgMMRrFICB1unu3nTo4gqWks eQ4R2NJLPxvDnELsFIm/rGc1vpsim3/35uULt5DY+K6ax43u5WOainVkSYLdMxCQ dueI9RecI+9WBLkXjUterOfvF9M5mdV3GtutmO61hpy4p86vHgZ5EqKWPhQrMeVs aUG+zGnVGme77UTh/a8yretAQ0/tzQiOYS4crj8o3U0R0db0MlvD99cie2JCVfUl mFdk/SdzWN5DaGVzQz4cYag7nmGHCUWexoCmaXitt0uVsIg5zjWB5j6fXEPzd91I OVtXrokuxmM5wKshQ4fm/NXCPN452Xpa -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:12 2025 by rpki-client