$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft File: 1p-GUNl6UkwplFPMtI13tOZf3yI.mft (raw, json) Hash identifier: ix+XxXEvzgWNyhUTNXkg+Rr1eLFCR+3Rc4fV6xZ+9NQ= Subject key identifier: 5F:29:21:A0:7D:78:F7:A5:FC:7D:C4:BD:10:FF:50:F9:44:74:1E:23 Authority key identifier: D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 Certificate issuer: /CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft Manifest number: F1 Signing time: Thu 03 Apr 2025 04:30:51 +0000 Manifest this update: Thu 03 Apr 2025 04:30:51 +0000 Manifest next update: Thu 10 Apr 2025 04:30:51 +0000 Files and hashes: 1: 1p-GUNl6UkwplFPMtI13tOZf3yI.crl (hash: QEgSrZZ21TQEHUAMjGxWczphUQsjgqlCAiCSPBNJH1k=) 2: D1054582A0C111EEA54E2F0BC4F9AE02.roa (hash: Czi7PWRQ87B1nKXSiQO2Heb4QoSzR8e/1K23JvG3RhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0695 Validity Not Before: Apr 3 04:30:51 2025 GMT Not After : Apr 10 04:30:51 2025 GMT Subject: CN=67ee0efb-b9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c9:af:10:cb:30:15:4e:1e:f0:13:3f:13:88: c2:80:80:a9:c3:2e:3d:ff:02:7b:60:8e:4c:58:76: 1e:53:a7:7a:e1:a6:d0:ba:e7:ea:4d:8b:14:32:b0: 24:73:ab:3d:7d:1b:dc:b0:38:b7:20:9b:00:c9:02: 63:4f:4c:4d:74:a7:70:77:35:bb:87:08:d5:1f:76: f5:a8:f0:8e:23:a9:04:b9:dc:43:09:63:be:2e:6f: 84:56:6a:1f:85:20:2a:ca:38:79:3f:2d:e1:8b:6a: e0:09:68:be:f8:23:58:f2:a0:ac:40:ac:4b:dc:eb: 45:33:4e:44:c6:1c:2d:2f:30:d3:54:31:9a:8f:02: e8:6e:ff:24:fd:c6:a5:82:33:9c:62:90:00:9a:8b: cb:bc:50:b8:d3:01:46:03:cb:ed:ec:94:35:26:85: c7:52:c2:6b:08:48:be:4d:70:24:86:34:ad:c6:63: 81:b2:34:a3:1e:c0:32:11:7b:96:6f:b9:b7:34:17: 2f:d2:7b:f6:10:fc:57:7c:7e:65:de:73:42:48:02: 9a:50:fe:9d:c8:bb:25:9f:76:5e:33:3c:a9:f1:12: 9c:74:d8:1f:00:94:57:7c:f1:d8:ea:d9:fd:4c:9c: 4f:c1:0a:41:c5:94:bc:29:0a:f6:00:41:7f:07:0e: 77:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:29:21:A0:7D:78:F7:A5:FC:7D:C4:BD:10:FF:50:F9:44:74:1E:23 X509v3 Authority Key Identifier: keyid:D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c0:27:a5:4c:e8:98:f7:93:d0:5d:86:48:77:29:45:a8:03: 0e:f0:e8:e0:d4:0d:17:5c:b7:9e:9c:53:b4:62:20:22:98:56: 3a:9d:50:cd:b4:81:50:3c:44:fa:c3:8a:a4:54:a1:12:43:75: f3:2e:ea:b5:16:4f:84:49:83:65:12:61:ab:f8:95:24:9b:c9: 69:a6:ab:a4:65:f0:7f:7a:36:64:d6:7f:3c:f4:04:86:95:f6: 6a:85:61:58:77:01:24:fc:eb:71:1d:3c:80:03:08:48:1d:3a: cd:4f:75:4a:63:0f:47:4a:37:cc:73:7f:d3:20:70:3e:eb:2d: 4e:93:10:14:65:9b:25:5c:d1:02:00:7b:65:43:dc:ea:97:4d: cb:a3:2d:d2:c8:a3:a4:65:d4:55:e7:19:3c:44:a3:a4:cb:85: a3:a2:1c:e8:cb:97:a8:21:75:a7:4c:6f:cc:99:11:72:c2:c5: a0:6b:93:e7:a1:3d:bf:70:9d:08:fa:95:d9:4e:5b:fc:77:46: b9:73:2b:4b:a7:b8:1b:47:60:bb:01:7d:60:bd:18:78:60:33: 75:b1:d1:75:9c:2c:77:fa:cf:f9:6b:01:7f:c6:1f:a5:0a:63: ef:ba:03:b4:6b:fd:4b:84:c6:45:b6:8b:ae:b0:30:9f:a9:98: a9:a2:ca:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA2OTUxMTAvBgNVBAUTKEQ2OUY4NjUwRDk3QTUyNEMyOTk0NTNDQ0I0OEQ3N0I0 RTY1RkRGMjIwHhcNMjUwNDAzMDQzMDUxWhcNMjUwNDEwMDQzMDUxWjAYMRYwFAYD VQQDEw02N2VlMGVmYi1iOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8mvEMswFU4e8BM/E4jCgICpwy49/wJ7YI5MWHYeU6d64abQuufqTYsUMrAk c6s9fRvcsDi3IJsAyQJjT0xNdKdwdzW7hwjVH3b1qPCOI6kEudxDCWO+Lm+EVmof hSAqyjh5Py3hi2rgCWi++CNY8qCsQKxL3OtFM05ExhwtLzDTVDGajwLobv8k/cal gjOcYpAAmovLvFC40wFGA8vt7JQ1JoXHUsJrCEi+TXAkhjStxmOBsjSjHsAyEXuW b7m3NBcv0nv2EPxXfH5l3nNCSAKaUP6dyLsln3ZeMzyp8RKcdNgfAJRXfPHY6tn9 TJxPwQpBxZS8KQr2AEF/Bw53LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8pIaB9 ePel/H3EvRD/UPlEdB4jMB8GA1UdIwQYMBaAFNafhlDZelJMKZRTzLSNd7TmX98i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDY5NS83QzY3ODE0OEEw QzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVrd3BsRlBNdEkxM3RPWmYz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwLUdVTmw2VWt3cGxGUE10STEzdE9aZjN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDY5NS83QzY3ODE0OEEwQzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVr d3BsRlBNdEkxM3RPWmYzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwwCelTOiY95PQXYZIdylFqAMO8Ojg1A0XXLeenFO0YiAimFY6nVDN tIFQPET6w4qkVKESQ3XzLuq1Fk+ESYNlEmGr+JUkm8lppqukZfB/ejZk1n889ASG lfZqhWFYdwEk/OtxHTyAAwhIHTrNT3VKYw9HSjfMc3/TIHA+6y1OkxAUZZslXNEC AHtlQ9zql03Loy3SyKOkZdRV5xk8RKOky4Wjohzoy5eoIXWnTG/MmRFywsWga5Pn oT2/cJ0I+pXZTlv8d0a5cytLp7gbR2C7AX1gvRh4YDN1sdF1nCx3+s/5awF/xh+l CmPvugO0a/1LhMZFtouusDCfqZipospj -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:26 2025 by rpki-client