$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: 8uXD1pvupPcVTSzdIm7GyNvBDgd639bdaMOuSahWxnI= Subject key identifier: 4A:BC:7D:30:38:2A:8A:D2:8A:30:13:55:90:41:6F:CB:A7:91:B3:E3 Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 012F Signing time: Tue 01 Jul 2025 05:02:06 +0000 Manifest this update: Tue 01 Jul 2025 05:02:06 +0000 Manifest next update: Tue 08 Jul 2025 05:02:06 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: 7iP7vf4vWd9gg7YGpKge4UJTMcJ5rbcr/XLF+8c4lYE=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Jul 1 05:02:06 2025 GMT Not After : Jul 8 05:02:06 2025 GMT Subject: CN=68636bce-ed32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:44:48:12:59:aa:97:98:a6:a6:d0:25:a5:7d: e6:52:93:1c:f6:2a:86:55:ed:e7:79:b8:ca:ed:f7: 47:f2:91:37:2b:ef:38:e0:3f:9d:17:56:67:a5:0d: 3c:d6:e5:94:cd:ef:11:00:6b:79:fc:be:6b:fd:a7: 18:07:49:8b:c9:3a:8b:8b:55:1f:60:d2:0b:e4:d5: 68:32:61:8e:21:43:95:8c:83:14:56:9d:37:b5:3b: 4d:e4:9c:db:07:30:d6:b0:29:c1:f7:ba:14:06:54: e1:c8:e7:5b:09:e8:32:4e:5b:de:06:77:18:7f:9e: 7c:08:4d:d2:93:f0:6d:f9:a6:df:e0:97:9e:3d:20: 0f:9f:55:8c:86:05:ac:d0:0d:1f:97:40:89:14:f5: 50:49:29:91:2b:b8:64:e5:63:e7:a1:50:ce:05:0f: b5:72:6b:e9:de:0c:ac:08:1d:bd:b0:a0:e3:0e:37: 62:b3:a2:9e:2a:f4:79:ce:f8:4d:e2:0a:d6:2e:3b: c0:e5:a7:cf:6f:81:4f:00:7c:b6:ea:ad:64:ec:51: bd:7b:3c:59:6f:77:ae:8e:62:b2:09:59:bc:cd:66: 5d:cb:ea:e8:8c:c4:90:db:6c:bf:48:72:af:6d:e5: f9:75:49:6d:1d:47:c9:06:b9:ef:0e:44:65:07:bc: 95:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:BC:7D:30:38:2A:8A:D2:8A:30:13:55:90:41:6F:CB:A7:91:B3:E3 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:8e:00:e6:32:14:9e:c6:79:87:ff:11:0a:19:ff:de:40:46: 9a:ee:3a:8d:6d:04:b2:18:13:e4:ed:40:76:d6:d1:ad:2d:87: 14:8c:55:d8:b8:fb:cb:09:a8:c2:2c:99:b5:63:25:01:bc:1c: 08:06:a7:91:27:56:2c:94:76:07:54:c0:fe:03:a8:f9:af:79: e9:da:36:39:c6:a4:82:aa:32:ec:d5:0d:c3:57:90:7c:1c:49: 8c:f4:8f:a6:a4:0d:c2:06:3f:07:68:13:2d:db:12:cb:9c:69: 42:d5:9f:17:81:54:2d:91:b1:2a:f6:57:3c:3a:bb:85:db:7d: 6a:0d:e9:fe:d2:bc:a9:35:ab:01:ed:09:81:f8:39:4c:74:2f: bb:e0:07:22:4d:fe:16:af:c1:72:ab:1d:ef:58:55:31:6d:ae: 9e:d2:34:17:12:10:73:04:df:57:22:96:38:cb:73:a3:c3:85: de:d6:fb:74:15:75:4f:dd:af:24:36:5a:6e:c5:dd:de:64:b7: 44:c4:b2:ec:06:78:71:55:ef:ad:a2:61:1b:81:f3:5d:63:30: eb:91:62:0e:3b:49:0f:d4:47:36:0c:24:fd:cf:9c:4b:90:f2: 5d:53:a0:54:7d:d8:58:3f:82:10:65:d5:6d:87:a8:42:7b:4a: 94:dc:69:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwNzAxMDUwMjA2WhcNMjUwNzA4MDUwMjA2WjAYMRYwFAYD VQQDEw02ODYzNmJjZS1lZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskRIElmql5imptAlpX3mUpMc9iqGVe3nebjK7fdH8pE3K+844D+dF1ZnpQ08 1uWUze8RAGt5/L5r/acYB0mLyTqLi1UfYNIL5NVoMmGOIUOVjIMUVp03tTtN5Jzb BzDWsCnB97oUBlThyOdbCegyTlveBncYf558CE3Sk/Bt+abf4JeePSAPn1WMhgWs 0A0fl0CJFPVQSSmRK7hk5WPnoVDOBQ+1cmvp3gysCB29sKDjDjdis6KeKvR5zvhN 4grWLjvA5afPb4FPAHy26q1k7FG9ezxZb3eujmKyCVm8zWZdy+rojMSQ22y/SHKv beX5dUltHUfJBrnvDkRlB7yVIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEq8fTA4 KorSijATVZBBb8unkbPjMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCijgDmMhSexnmH/xEKGf/eQEaa7jqNbQSyGBPk7UB21tGtLYcUjFXY uPvLCajCLJm1YyUBvBwIBqeRJ1YslHYHVMD+A6j5r3np2jY5xqSCqjLs1Q3DV5B8 HEmM9I+mpA3CBj8HaBMt2xLLnGlC1Z8XgVQtkbEq9lc8OruF231qDen+0rypNasB 7QmB+DlMdC+74AciTf4Wr8Fyqx3vWFUxba6e0jQXEhBzBN9XIpY4y3Ojw4Xe1vt0 FXVP3a8kNlpuxd3eZLdExLLsBnhxVe+tomEbgfNdYzDrkWIOO0kP1Ec2DCT9z5xL kPJdU6BUfdhYP4IQZdVth6hCe0qU3Gk0 -----END CERTIFICATE-----Generated at Wed Jul 2 11:12:41 2025 by rpki-client