$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: yr39HVgDMU2Yjnw8HP8hBsBfa99+EE9plGb/ea+vwZE= Subject key identifier: 71:DE:27:CF:CB:F6:B4:F6:24:C6:04:AC:E5:73:DF:79:04:E2:7C:2C Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 016F Signing time: Wed 05 Nov 2025 04:00:16 +0000 Manifest this update: Wed 05 Nov 2025 04:00:15 +0000 Manifest next update: Wed 12 Nov 2025 04:00:15 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: IfLDxoCQHYf52Utj7urm/vg2pTB07H0k2FaYW/USZpY=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Nov 5 04:00:15 2025 GMT Not After : Nov 12 04:00:15 2025 GMT Subject: CN=690acbcf-40eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:53:31:92:0b:0f:88:df:d3:b5:04:00:4b:45: 97:57:c5:64:ff:ff:50:0a:6e:06:e6:ee:90:8e:bf: db:f5:77:b8:7c:8e:77:1f:c2:cd:53:1e:10:91:db: 4c:0f:34:11:3d:d1:a1:36:92:fb:18:5b:ad:91:e7: b8:4e:75:42:11:86:6c:f2:43:fa:29:9b:4d:82:27: d9:ac:92:8f:3e:95:aa:d4:cf:84:95:df:56:fb:ba: ce:8a:15:4c:d7:e5:19:6e:0b:8c:ce:45:85:df:2c: a4:39:49:2f:76:66:67:e3:1b:13:72:92:58:d3:7e: ec:aa:26:a9:af:8d:18:2f:ad:8a:d8:1f:de:46:04: ee:ad:75:ce:f2:53:6b:6c:d7:00:50:e6:eb:c0:fd: e1:c5:3e:fd:86:65:72:27:73:03:9d:9b:09:e0:e3: 94:77:98:53:c9:b4:56:58:71:18:0d:20:f9:7d:be: 28:7e:a4:e7:9c:03:87:02:13:84:fa:bf:19:c9:c5: 0e:a6:80:f0:4a:76:8e:27:b7:5e:58:92:d7:0b:8a: ad:ec:51:3e:5a:e3:2b:24:6f:0d:71:ac:77:eb:ba: 8e:cf:eb:cb:6d:56:30:bb:e3:1e:cf:45:8d:7e:10: c8:16:f1:2a:c4:ac:00:8f:15:4a:48:71:07:74:8d: d7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:DE:27:CF:CB:F6:B4:F6:24:C6:04:AC:E5:73:DF:79:04:E2:7C:2C X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f0:3e:3e:df:b6:cd:df:71:a9:cb:66:90:8e:02:4d:59:03: 2f:df:0d:7b:f1:f2:d2:cc:69:33:a8:dd:c4:b8:c7:1c:b4:3c: 7a:c9:64:d6:57:0d:90:c6:cd:5f:e5:02:3c:bb:7e:bf:c4:38: 11:71:09:fd:b0:43:20:d8:b4:ef:bb:20:eb:09:37:f3:df:24: 58:29:a3:e1:44:77:b9:e6:23:f4:ce:1c:be:e5:b2:4e:a6:ef: db:d2:6e:b0:d5:c7:0d:c1:f7:f1:d2:14:02:ee:b7:a0:da:c3: 32:2d:f2:be:35:7e:eb:77:e2:17:c5:fe:21:ed:72:f8:2b:c9: 6e:54:b4:ad:61:d4:18:54:3d:27:e8:a1:c1:c5:81:96:a4:5d: 78:56:0d:de:25:44:f1:1a:32:cc:ed:1c:8e:8f:39:f3:49:78: 21:08:7d:7a:5f:c7:fd:66:32:6b:1b:3c:14:4d:8e:4b:27:3b: 6c:20:97:9a:c0:cc:06:ae:8a:ed:b0:60:08:49:fe:cd:61:5f: f0:8d:1b:76:0f:28:8e:24:9c:2d:9e:5d:b4:48:a9:5b:18:a8: 16:6b:d9:18:f4:11:56:05:4e:d0:de:a5:c1:25:1f:38:85:ec: 53:a9:bb:12:19:0e:4c:bd:19:cc:76:29:4c:53:99:99:81:d8: 15:aa:55:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUxMTA1MDQwMDE1WhcNMjUxMTEyMDQwMDE1WjAYMRYwFAYD VQQDEw02OTBhY2JjZi00MGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolMxkgsPiN/TtQQAS0WXV8Vk//9QCm4G5u6Qjr/b9Xe4fI53H8LNUx4QkdtM DzQRPdGhNpL7GFutkee4TnVCEYZs8kP6KZtNgifZrJKPPpWq1M+Eld9W+7rOihVM 1+UZbguMzkWF3yykOUkvdmZn4xsTcpJY037sqiapr40YL62K2B/eRgTurXXO8lNr bNcAUObrwP3hxT79hmVyJ3MDnZsJ4OOUd5hTybRWWHEYDSD5fb4ofqTnnAOHAhOE +r8ZycUOpoDwSnaOJ7deWJLXC4qt7FE+WuMrJG8Ncax367qOz+vLbVYwu+Mez0WN fhDIFvEqxKwAjxVKSHEHdI3XGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHeJ8/L 9rT2JMYErOVz33kE4nwsMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH8D4+37bN33Gpy2aQjgJNWQMv3w178fLSzGkzqN3EuMcctDx6yWTW Vw2Qxs1f5QI8u36/xDgRcQn9sEMg2LTvuyDrCTfz3yRYKaPhRHe55iP0zhy+5bJO pu/b0m6w1ccNwffx0hQC7reg2sMyLfK+NX7rd+IXxf4h7XL4K8luVLStYdQYVD0n 6KHBxYGWpF14Vg3eJUTxGjLM7RyOjznzSXghCH16X8f9ZjJrGzwUTY5LJztsIJea wMwGrortsGAISf7NYV/wjRt2DyiOJJwtnl20SKlbGKgWa9kY9BFWBU7Q3qXBJR84 hexTqbsSGQ5MvRnMdilMU5mZgdgVqlWS -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:46 2025 by rpki-client