$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft File: GOH3Mu-lPDlzoazSLBNopeHyylI.mft (raw, json) Hash identifier: fVwjaFvkk/o/JtMyh3R813kNoxw849gx1ybP1w5BjgM= Subject key identifier: 79:F2:26:F7:56:29:CE:1D:E7:24:F9:FA:A1:11:AE:D5:90:AF:EB:5A Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft Manifest number: 01BF Signing time: Tue 01 Jul 2025 03:25:47 +0000 Manifest this update: Tue 01 Jul 2025 03:25:47 +0000 Manifest next update: Tue 08 Jul 2025 03:25:47 +0000 Files and hashes: 1: GOH3Mu-lPDlzoazSLBNopeHyylI.crl (hash: HPq35ORJ49WEjFR1fpyygMF+HSqZUq7gRimDpQ0iHOY=) 2: 098D6EACAD3E11ED8B645C39C4F9AE02.roa (hash: x5jTQA8XBSMQ8Q+xjjenfP78ItEEc+vCjF2dnXQMxgg=) 3: AA73EF167DEB11EEB9699A24C4F9AE02.roa (hash: EuI+jy3jz6zplStWvLeJaw92baXncm4w2hV/GfKLDMk=) 4: 09106CCCAD3E11ED8B645C39C4F9AE02.roa (hash: KQKk/DHVyq0W7ysUvHn8rqByRNsv/bL8qIPiVwD7k8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F00E, serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Validity Not Before: Jul 1 03:25:47 2025 GMT Not After : Jul 8 03:25:47 2025 GMT Subject: CN=6863553b-a8b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:d2:2f:b7:08:31:f2:e1:c9:61:de:eb:53: 68:a3:0d:c7:ce:5f:c2:27:1b:03:14:64:b4:98:07: 8a:28:53:e0:87:22:dc:1c:c9:4c:23:44:ec:01:bb: f8:ba:68:40:6b:90:0b:20:fc:7b:99:cf:d0:2e:bf: f8:3e:15:8a:b1:57:26:a5:ee:66:84:45:d5:7a:18: 9f:45:ec:2e:ef:79:c1:1e:3f:3b:5f:e2:7a:09:1d: 96:27:79:4f:62:be:35:77:f2:52:16:d1:c6:43:3d: c6:eb:a3:3b:30:55:ac:4b:a4:ca:9d:10:d3:c5:96: eb:77:e2:5b:a7:99:be:37:6b:81:a0:0c:82:16:12: db:a0:6a:7e:9a:3f:bd:5e:7e:cc:3f:0f:2b:6e:1f: af:a8:97:9f:25:2f:cc:ea:df:4c:4d:d8:45:b1:68: ff:39:56:af:ba:a2:6d:7a:cd:8d:5a:0b:94:40:d7: 76:36:cf:cd:be:79:48:5a:c6:3e:54:a3:52:3b:eb: 69:19:9f:df:31:dc:e5:81:f3:f4:35:93:a9:b1:ec: f0:1f:51:98:4d:2b:98:03:7e:a1:89:ad:9c:1c:52: f2:fa:ce:7a:a0:f7:8f:dd:ab:7d:f1:6b:b1:21:4f: 31:c2:a2:78:82:6c:a1:f7:da:9c:bb:0f:11:2c:ca: fc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F2:26:F7:56:29:CE:1D:E7:24:F9:FA:A1:11:AE:D5:90:AF:EB:5A X509v3 Authority Key Identifier: keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:2b:45:e1:22:67:7d:64:3c:f1:fa:ed:36:31:20:55:e9:2b: a8:18:05:3f:1e:f1:a6:8a:43:42:c5:c5:ce:fb:6a:22:0b:b1: 1f:45:3a:55:fc:63:84:ab:82:ae:62:c8:8c:9a:7c:22:16:0a: 8c:67:3a:89:28:5a:74:48:a4:27:78:3c:15:39:84:93:a6:70: 52:11:f1:38:39:33:ba:92:bf:e8:8d:66:3f:b3:73:c3:ee:00: 42:23:f0:16:99:c8:14:27:c2:c4:df:c2:bc:7a:06:4f:7e:9a: 8a:ad:fe:d9:29:5c:bc:f9:f4:94:cd:5d:ad:e1:b3:b9:63:81: f3:a3:19:da:5f:fc:0b:d3:8f:fc:35:b7:73:1a:0b:c1:a4:74: e7:76:95:78:b7:ba:1c:46:8c:b3:69:e7:8c:af:22:76:d0:bc: c9:96:55:af:40:d8:43:c9:96:83:9d:45:83:cd:d3:5e:8c:af: 4e:a8:f6:e4:5f:f8:1e:be:90:5d:32:e9:81:71:69:66:6b:87: 21:f2:a0:bb:af:e0:75:3c:c9:0e:7d:7a:bb:5e:09:b0:a0:f8: 18:0d:83:94:e0:0b:4e:39:68:b5:43:91:35:b5:2c:ca:bf:83: 37:b9:58:5a:09:2a:2a:f1:36:7d:2b:49:52:92:1d:be:d1:fa: 6d:dd:c7:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwMEUxMTAvBgNVBAUTKDE4RTFGNzMyRUZBNTNDMzk3M0ExQUNEMjJDMTM2OEE1 RTFGMkNBNTIwHhcNMjUwNzAxMDMyNTQ3WhcNMjUwNzA4MDMyNTQ3WjAYMRYwFAYD VQQDEw02ODYzNTUzYi1hOGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrPSL7cIMfLhyWHe61Noow3Hzl/CJxsDFGS0mAeKKFPghyLcHMlMI0TsAbv4 umhAa5ALIPx7mc/QLr/4PhWKsVcmpe5mhEXVehifRewu73nBHj87X+J6CR2WJ3lP Yr41d/JSFtHGQz3G66M7MFWsS6TKnRDTxZbrd+Jbp5m+N2uBoAyCFhLboGp+mj+9 Xn7MPw8rbh+vqJefJS/M6t9MTdhFsWj/OVavuqJtes2NWguUQNd2Ns/NvnlIWsY+ VKNSO+tpGZ/fMdzlgfP0NZOpsezwH1GYTSuYA36hia2cHFLy+s56oPeP3at98Wux IU8xwqJ4gmyh99qcuw8RLMr8JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnyJvdW Kc4d5yT5+qERrtWQr+taMB8GA1UdIwQYMBaAFBjh9zLvpTw5c6Gs0iwTaKXh8spS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjAwRS81QUExODIyRUFE MzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBEbHpvYXpTTEJOb3BlSHl5 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPSDNNdS1sUERsem9helNMQk5vcGVIeXlsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjAwRS81QUExODIyRUFEMzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBE bHpvYXpTTEJOb3BlSHl5bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHK0XhImd9ZDzx+u02MSBV6SuoGAU/HvGmikNCxcXO+2oiC7EfRTpV /GOEq4KuYsiMmnwiFgqMZzqJKFp0SKQneDwVOYSTpnBSEfE4OTO6kr/ojWY/s3PD 7gBCI/AWmcgUJ8LE38K8egZPfpqKrf7ZKVy8+fSUzV2t4bO5Y4HzoxnaX/wL04/8 NbdzGgvBpHTndpV4t7ocRoyzaeeMryJ20LzJllWvQNhDyZaDnUWDzdNejK9OqPbk X/gevpBdMumBcWlma4ch8qC7r+B1PMkOfXq7XgmwoPgYDYOU4AtOOWi1Q5E1tSzK v4M3uVhaCSoq8TZ9K0lSkh2+0fpt3cex -----END CERTIFICATE-----Generated at Wed Jul 2 22:34:26 2025 by rpki-client