$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft File: 1p-GUNl6UkwplFPMtI13tOZf3yI.mft (raw, json) Hash identifier: VTNPCD/nuVQ88JsZR6igKoc1/4W3pZVasbgmngincF0= Subject key identifier: EC:BB:ED:C3:E6:92:BC:A0:67:30:B6:F3:9F:01:32:CC:57:EE:D4:A2 Authority key identifier: D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 Certificate issuer: /CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft Manifest number: 0127 Signing time: Mon 21 Jul 2025 04:44:58 +0000 Manifest this update: Mon 21 Jul 2025 04:44:57 +0000 Manifest next update: Mon 28 Jul 2025 04:44:57 +0000 Files and hashes: 1: 1p-GUNl6UkwplFPMtI13tOZf3yI.crl (hash: CIFsp4gKSZSc5jj0xNgpG+bf342utj1QlON/uGJMVhI=) 2: D1054582A0C111EEA54E2F0BC4F9AE02.roa (hash: Czi7PWRQ87B1nKXSiQO2Heb4QoSzR8e/1K23JvG3RhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0695, serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Validity Not Before: Jul 21 04:44:57 2025 GMT Not After : Jul 28 04:44:57 2025 GMT Subject: CN=687dc5c9-c7d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bf:8d:e0:b9:71:49:17:48:66:f6:10:a8:e9: 07:70:97:7d:e0:34:7a:64:35:6a:6d:5b:8b:20:7c: 9c:3a:8e:d7:fa:61:6e:3d:27:d9:24:8b:56:f9:56: d6:bc:f2:0e:33:d5:fc:0f:ec:cf:96:6d:ee:92:8f: fa:8f:0f:5b:f2:2f:72:c5:74:5a:7d:51:df:5e:db: 1a:29:ec:12:92:6f:de:94:6e:96:5f:2d:a6:cb:82: 46:89:0e:3f:f0:10:be:b9:d3:bb:06:4b:6c:b3:02: 4d:92:6a:8a:15:14:3b:db:78:ff:5d:c6:c1:70:19: 87:28:2c:9c:b6:e6:68:25:29:78:2b:f4:b7:e2:c0: ad:34:5c:e7:a6:14:12:71:38:25:be:58:c7:b2:00: 13:7f:02:4e:4c:59:ed:00:a3:e1:8a:66:bd:b3:cb: 83:45:ff:50:48:cc:7c:14:26:51:4d:9b:5d:82:b9: d3:59:60:52:0f:cc:e3:05:30:43:27:d3:4d:fc:4b: ca:bc:b0:93:2e:fa:03:2c:86:60:0b:38:26:88:92: 5d:c1:31:26:9a:16:9a:44:d1:8a:a4:a1:ad:54:73: 39:c3:27:7c:3b:8d:1d:6a:44:b6:ea:f5:14:19:2d: ef:be:1a:98:57:7f:21:26:88:d3:36:fe:d7:21:aa: e7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BB:ED:C3:E6:92:BC:A0:67:30:B6:F3:9F:01:32:CC:57:EE:D4:A2 X509v3 Authority Key Identifier: keyid:D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:3d:aa:0d:cc:0e:d9:60:a3:6a:f2:86:8a:33:0d:94:be:13: 19:59:f1:d3:85:aa:00:e8:cb:69:96:be:9d:9f:18:3e:c7:dc: e5:05:9f:d5:99:8a:d1:e5:a8:21:1c:ba:a2:c6:92:10:db:c0: 97:47:fc:21:71:c0:6a:d0:a9:e1:66:4d:87:86:9b:6a:2b:7b: 14:b1:55:9e:66:46:55:d2:e6:fd:e1:a2:35:ed:7d:0f:d5:c5: d5:ac:9c:2b:d1:9e:8d:b1:1c:a1:0c:0c:0d:95:91:26:c2:7b: 85:07:eb:43:0f:58:a9:ba:0d:89:b2:fc:24:3c:54:83:af:fb: 0b:d2:c3:8c:4b:94:9f:f8:8d:28:e4:f3:84:30:28:35:6a:dc: 70:00:80:67:ba:06:47:83:49:3f:44:e7:6c:47:2e:5d:7d:73: de:50:80:8c:17:18:d1:7c:1b:3b:bd:04:2a:0a:d7:7e:70:35: 8c:bb:10:83:d6:cc:7d:89:02:04:b6:18:31:58:fe:2d:36:7f: 29:b3:34:32:9b:73:0b:d0:a1:53:2d:1a:e9:35:29:fb:c5:f9: 7b:ad:23:f4:e0:a0:c3:01:22:61:91:1f:07:66:3f:83:7c:ee: 3b:c2:ef:f3:0b:97:e5:f8:24:80:da:6f:c2:29:95:32:55:8d: ab:64:b3:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA2OTUxMTAvBgNVBAUTKEQ2OUY4NjUwRDk3QTUyNEMyOTk0NTNDQ0I0OEQ3N0I0 RTY1RkRGMjIwHhcNMjUwNzIxMDQ0NDU3WhcNMjUwNzI4MDQ0NDU3WjAYMRYwFAYD VQQDEw02ODdkYzVjOS1jN2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnb+N4LlxSRdIZvYQqOkHcJd94DR6ZDVqbVuLIHycOo7X+mFuPSfZJItW+VbW vPIOM9X8D+zPlm3uko/6jw9b8i9yxXRafVHfXtsaKewSkm/elG6WXy2my4JGiQ4/ 8BC+udO7BktsswJNkmqKFRQ723j/XcbBcBmHKCyctuZoJSl4K/S34sCtNFznphQS cTglvljHsgATfwJOTFntAKPhima9s8uDRf9QSMx8FCZRTZtdgrnTWWBSD8zjBTBD J9NN/EvKvLCTLvoDLIZgCzgmiJJdwTEmmhaaRNGKpKGtVHM5wyd8O40dakS26vUU GS3vvhqYV38hJojTNv7XIarn/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOy77cPm krygZzC2858BMsxX7tSiMB8GA1UdIwQYMBaAFNafhlDZelJMKZRTzLSNd7TmX98i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDY5NS83QzY3ODE0OEEw QzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVrd3BsRlBNdEkxM3RPWmYz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwLUdVTmw2VWt3cGxGUE10STEzdE9aZjN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDY5NS83QzY3ODE0OEEwQzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVr d3BsRlBNdEkxM3RPWmYzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhPaoNzA7ZYKNq8oaKMw2UvhMZWfHThaoA6Mtplr6dnxg+x9zlBZ/V mYrR5aghHLqixpIQ28CXR/whccBq0KnhZk2HhptqK3sUsVWeZkZV0ub94aI17X0P 1cXVrJwr0Z6NsRyhDAwNlZEmwnuFB+tDD1ipug2JsvwkPFSDr/sL0sOMS5Sf+I0o 5POEMCg1atxwAIBnugZHg0k/ROdsRy5dfXPeUICMFxjRfBs7vQQqCtd+cDWMuxCD 1sx9iQIEthgxWP4tNn8pszQym3ML0KFTLRrpNSn7xfl7rSP04KDDASJhkR8HZj+D fO47wu/zC5fl+CSA2m/CKZUyVY2rZLPp -----END CERTIFICATE-----Generated at Mon Jul 21 07:02:20 2025 by rpki-client