$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: fmJRWYtYsbhnb5xXCYkRJ2eY0EUKmfWeVWrN0TXn/uY= Subject key identifier: EB:43:0B:70:17:E6:34:79:A6:B3:28:B8:97:54:95:F0:80:24:07:C2 Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 014A Signing time: Sat 23 Aug 2025 04:23:34 +0000 Manifest this update: Sat 23 Aug 2025 04:23:33 +0000 Manifest next update: Sat 30 Aug 2025 04:23:33 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: I4p6vtABO0xmp2vQBu1/czZA8G5A40C37ok85LSwWnM=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Aug 23 04:23:33 2025 GMT Not After : Aug 30 04:23:33 2025 GMT Subject: CN=68a94245-c956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:32:52:ab:95:65:16:35:31:f4:75:7b:e0:bb: a0:cb:5b:20:91:4d:fe:bb:33:4e:79:8a:de:cc:35: 51:d4:04:1b:a9:bc:39:4b:be:9e:27:f3:da:f1:c6: 54:52:e9:25:cd:a6:48:8b:1b:8e:a0:8d:34:1a:34: a0:00:ca:35:8c:3a:98:6b:37:68:14:1f:e6:88:c9: d3:ef:04:28:4d:b8:3c:87:04:0c:e6:44:f7:cc:af: 80:15:20:df:b0:37:c3:e4:ac:52:4d:47:a3:91:7c: 6a:90:22:6e:02:42:4e:48:fa:e9:4c:cc:5c:cd:51: ee:09:63:2e:5a:e3:f7:d1:4e:2b:d1:81:16:7a:6c: 92:31:60:5b:58:73:6f:78:91:a6:e3:f8:44:44:e4: 85:97:49:60:60:cd:57:34:19:7f:61:e7:93:79:75: ec:2f:f3:6f:62:f7:41:1e:27:1b:02:16:5a:3a:0f: 8b:b9:4b:cc:b0:27:31:bd:97:3f:5b:4f:7e:f4:5e: 71:7f:66:f5:c2:ee:28:11:0d:c9:57:d2:5d:64:4c: 4b:f3:f2:40:96:1c:88:d3:f8:90:02:9b:45:fc:21: d5:2b:65:76:ba:63:db:0b:ce:76:b1:d1:7c:17:9e: 47:2c:3f:96:89:fb:ae:5b:ea:c9:bc:ac:5f:a6:a6: 50:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:43:0B:70:17:E6:34:79:A6:B3:28:B8:97:54:95:F0:80:24:07:C2 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f7:bf:70:44:55:4e:59:30:ea:71:e2:58:0b:bf:ae:89:26: c1:8c:ba:cc:c8:5a:ee:bf:81:b4:8d:c9:99:0c:c7:f1:b4:40: ff:ac:88:66:71:86:fc:df:58:29:03:40:d5:48:32:25:0d:a3: f0:fc:1e:58:de:68:93:57:c4:67:70:09:d5:e6:5a:e3:fc:45: 26:6e:6b:1e:bd:ed:fa:1f:f8:8c:f0:9d:fa:31:90:b8:c1:13: 7b:c2:98:2d:8d:5c:2c:3e:b3:56:44:04:1f:6d:58:0d:67:09: f7:d9:51:b2:8a:69:73:b3:a7:8f:c4:e5:0f:aa:ba:0f:a9:69: 36:e7:9b:e2:37:c5:05:0f:98:3d:a2:59:e6:ba:3f:d2:71:74: cf:5f:92:cb:3b:0d:3b:f6:56:d3:04:80:3e:f8:8d:22:ed:ff: 00:71:c8:51:33:8e:71:b9:06:09:93:53:74:d0:c2:28:a4:78: a9:c2:cf:f5:a7:4c:67:a6:2c:60:8e:4d:71:7c:5f:84:3a:b0: 8a:c5:28:af:e1:85:a7:72:ee:26:cb:83:e1:54:a0:d7:00:38: 3a:b0:b6:51:b1:ea:06:74:7d:9e:18:ed:df:a8:25:b8:9c:82: 7c:d1:e0:49:3c:e1:55:8a:04:f3:d6:12:8b:56:47:69:18:f1: 07:0a:ad:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwODIzMDQyMzMzWhcNMjUwODMwMDQyMzMzWjAYMRYwFAYD VQQDEw02OGE5NDI0NS1jOTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TJSq5VlFjUx9HV74Lugy1sgkU3+uzNOeYrezDVR1AQbqbw5S76eJ/Pa8cZU UuklzaZIixuOoI00GjSgAMo1jDqYazdoFB/miMnT7wQoTbg8hwQM5kT3zK+AFSDf sDfD5KxSTUejkXxqkCJuAkJOSPrpTMxczVHuCWMuWuP30U4r0YEWemySMWBbWHNv eJGm4/hEROSFl0lgYM1XNBl/YeeTeXXsL/NvYvdBHicbAhZaOg+LuUvMsCcxvZc/ W09+9F5xf2b1wu4oEQ3JV9JdZExL8/JAlhyI0/iQAptF/CHVK2V2umPbC852sdF8 F55HLD+WifuuW+rJvKxfpqZQ7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtDC3AX 5jR5prMouJdUlfCAJAfCMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw979wRFVOWTDqceJYC7+uiSbBjLrMyFruv4G0jcmZDMfxtED/rIhm cYb831gpA0DVSDIlDaPw/B5Y3miTV8RncAnV5lrj/EUmbmseve36H/iM8J36MZC4 wRN7wpgtjVwsPrNWRAQfbVgNZwn32VGyimlzs6ePxOUPqroPqWk255viN8UFD5g9 olnmuj/ScXTPX5LLOw079lbTBIA++I0i7f8AcchRM45xuQYJk1N00MIopHipws/1 p0xnpixgjk1xfF+EOrCKxSiv4YWncu4my4PhVKDXADg6sLZRseoGdH2eGO3fqCW4 nIJ80eBJPOFVigTz1hKLVkdpGPEHCq2T -----END CERTIFICATE-----Generated at Sat Aug 23 16:20:23 2025 by rpki-client