$ rpki-client -vvf rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft File: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft (raw, json) Hash identifier: fteSIxoDi+T/7MxNpoOQmjnly0D5riyFwFGKs3Vnjrg= Subject key identifier: BD:AC:57:53:32:E5:C9:F4:C3:9C:28:84:7E:E0:81:25:BC:FB:86:8B Authority key identifier: 80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A Certificate issuer: /CN=A9143A67/serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft Manifest number: 02A2 Signing time: Sat 23 Aug 2025 01:48:26 +0000 Manifest this update: Sat 23 Aug 2025 01:48:26 +0000 Manifest next update: Sat 30 Aug 2025 01:48:26 +0000 Files and hashes: 1: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl (hash: VtSwXJqcPTfxSRjx1cOxw0gcNGQmc3f67xUAVcYCi9Y=) 2: EE62A36A0D9F11EDB7631D1BC4F9AE02.roa (hash: 79mqc7tZF4tbIphjhbOXUthxD6els9a6zfI1+s7nFSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143A67, serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Validity Not Before: Aug 23 01:48:26 2025 GMT Not After : Aug 30 01:48:26 2025 GMT Subject: CN=68a91dea-97f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:be:0b:8d:08:78:73:07:25:78:d5:16:ee:03: 7f:39:3c:4c:0c:ef:52:16:42:df:08:87:28:93:00: 12:fb:ae:45:da:72:99:4e:33:11:a3:fd:c2:d1:d7: b3:a9:15:ef:f1:7a:5f:81:ee:e0:e9:a0:ae:51:1b: 3a:83:56:42:e9:6e:da:72:03:00:5d:ef:f0:1a:90: 77:43:ad:f7:22:aa:59:6c:9e:80:6e:6b:d7:2b:25: e4:79:89:66:32:c4:8c:18:b0:7c:df:96:53:ab:49: d7:a5:cc:35:0a:6d:1f:e4:69:ed:29:5d:c1:6d:88: a6:a4:42:50:14:29:7d:b9:e9:69:25:04:4b:51:d0: 1c:c1:83:33:9a:59:5f:f3:42:90:6b:cd:61:82:89: eb:7a:8e:08:78:e5:34:2f:05:cf:4b:a2:d8:2a:13: aa:bb:d9:80:ec:91:a0:73:77:37:52:b5:58:f1:1d: 03:eb:2f:4f:36:0e:0d:d5:ef:41:7a:b0:de:bb:37: 03:11:37:fd:f9:85:29:4c:ba:79:4d:f3:f5:a7:8e: e5:99:7c:ba:72:ea:ce:d8:3e:52:6a:35:a6:07:be: 50:be:a5:e9:67:c6:6a:0c:40:64:d2:6c:cf:3a:bc: b1:b5:52:fe:19:4e:5b:ac:33:d4:7a:f4:92:5f:7a: ed:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AC:57:53:32:E5:C9:F4:C3:9C:28:84:7E:E0:81:25:BC:FB:86:8B X509v3 Authority Key Identifier: keyid:80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:f9:94:d8:e5:c9:c1:b4:c4:24:7a:f3:a9:f3:12:22:88:83: 38:36:56:14:fd:b5:0a:aa:d5:bd:b3:17:82:12:a3:24:aa:ab: c8:3e:bc:ca:15:ba:7a:7e:45:0f:54:93:b7:85:56:9e:aa:9f: c3:f6:e4:7f:be:8e:da:b2:5c:b4:82:2e:eb:d0:1b:d5:e2:67: 2f:6d:20:f8:53:28:01:20:95:f5:2a:6e:08:ff:b0:70:3d:65: 38:ad:f8:e8:1e:3f:02:e3:05:ea:e4:32:44:18:26:06:bf:3c: cd:9c:b2:e0:ae:a6:3d:8c:1d:78:85:c7:cc:65:f4:27:b0:63: 14:ee:d8:1a:f3:b8:4e:c9:38:6b:b4:a6:a1:7e:12:26:1e:2e: a2:fc:fd:a0:2d:b4:68:e9:5c:a2:73:62:5b:00:d2:32:68:63: fc:c7:6f:4d:92:a1:24:28:70:3e:cc:49:2d:3f:f9:c7:d1:63: 9d:7d:be:73:0b:87:f3:cc:bf:ff:b0:01:b0:7e:db:92:15:8a: b3:0d:ac:1e:b9:e9:e9:d6:68:c6:b9:89:dc:10:9f:4e:33:2a: 0c:ab:94:69:5f:95:34:39:ae:d2:a8:2d:93:35:cb:bd:69:9f: 17:80:6d:74:cc:99:44:4b:a3:60:ab:cf:2b:17:7f:fb:c6:49: 42:7e:8c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNBNjcxMTAvBgNVBAUTKDgwRTBBQjE4OUZDRDcwMUVFRTQyQzkyQjkzQzE1QjZG NzQyNDgyNkEwHhcNMjUwODIzMDE0ODI2WhcNMjUwODMwMDE0ODI2WjAYMRYwFAYD VQQDEw02OGE5MWRlYS05N2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub4LjQh4cwcleNUW7gN/OTxMDO9SFkLfCIcokwAS+65F2nKZTjMRo/3C0dez qRXv8Xpfge7g6aCuURs6g1ZC6W7acgMAXe/wGpB3Q633IqpZbJ6AbmvXKyXkeYlm MsSMGLB835ZTq0nXpcw1Cm0f5GntKV3BbYimpEJQFCl9uelpJQRLUdAcwYMzmllf 80KQa81hgonreo4IeOU0LwXPS6LYKhOqu9mA7JGgc3c3UrVY8R0D6y9PNg4N1e9B erDeuzcDETf9+YUpTLp5TfP1p47lmXy6curO2D5SajWmB75QvqXpZ8ZqDEBk0mzP OryxtVL+GU5brDPUevSSX3rtBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2sV1My 5cn0w5wohH7ggSW8+4aLMB8GA1UdIwQYMBaAFIDgqxifzXAe7kLJK5PBW290JIJq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0E2Ny9DODA2OTc5MjBE OUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNCN3VRc2tyazhGYmIzUWtn bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPQ3JHSl9OY0I3dVFza3JrOEZiYjNRa2dtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0E2Ny9DODA2OTc5MjBEOUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNC N3VRc2tyazhGYmIzUWtnbW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf+ZTY5cnBtMQkevOp8xIiiIM4NlYU/bUKqtW9sxeCEqMkqqvIPrzK Fbp6fkUPVJO3hVaeqp/D9uR/vo7asly0gi7r0BvV4mcvbSD4UygBIJX1Km4I/7Bw PWU4rfjoHj8C4wXq5DJEGCYGvzzNnLLgrqY9jB14hcfMZfQnsGMU7tga87hOyThr tKahfhImHi6i/P2gLbRo6Vyic2JbANIyaGP8x29NkqEkKHA+zEktP/nH0WOdfb5z C4fzzL//sAGwftuSFYqzDaweuenp1mjGuYncEJ9OMyoMq5RpX5U0Oa7SqC2TNcu9 aZ8XgG10zJlES6Ngq88rF3/7xklCfoyD -----END CERTIFICATE-----Generated at Sat Aug 23 18:18:14 2025 by rpki-client