$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: olwf7+UgIBf7hfkbAoJWmvSx8sufX+3uyOomNzv/0Mc= Subject key identifier: 21:18:2D:4A:C8:FD:63:A2:80:9C:C7:DF:58:83:27:07:7D:FB:B6:4C Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 011F Signing time: Sat 31 May 2025 04:22:36 +0000 Manifest this update: Sat 31 May 2025 04:22:35 +0000 Manifest next update: Sat 07 Jun 2025 04:22:35 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: SKs9YBd0QOZBvlJR8+UrDvp0JX2Y6rK2F9xWh0fVyis=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: May 31 04:22:35 2025 GMT Not After : Jun 7 04:22:35 2025 GMT Subject: CN=683a840c-aefc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:88:2e:11:72:76:d7:e3:6a:67:ab:65:79: 16:c0:47:22:32:2c:a6:df:07:38:ac:bf:fc:b6:d8: 6f:4e:b9:31:f7:ff:73:02:ea:60:01:08:d6:c4:bb: 13:b2:d5:2d:af:4a:22:10:51:a5:0d:9d:40:95:8d: a8:bd:03:9e:92:62:1b:73:31:c0:51:7e:ae:02:9a: a6:e2:2d:4a:36:46:fc:3e:d2:fa:e3:42:c7:2b:01: c2:98:ee:21:e4:54:b6:6d:2a:40:8d:11:74:f8:80: 64:07:80:37:9c:c0:7c:2b:55:d4:a7:0c:23:25:dd: 5b:38:29:31:33:8a:0e:0e:79:2c:90:81:b7:a0:1b: 2b:b5:de:00:4a:d8:7d:22:de:d4:91:ab:ae:90:4b: be:5e:9b:d9:de:1f:1c:98:e5:4f:d6:39:5d:2c:d9: dd:cb:2d:68:29:a3:73:43:94:7f:8a:d3:5c:66:e4: 3a:a6:27:1a:ea:dc:60:13:86:28:88:e3:50:29:7b: 0d:c6:51:69:f2:a1:4e:66:95:13:87:01:ab:e2:44: 7d:64:0a:ad:3e:58:cf:98:70:4b:7d:ac:01:33:65: 23:12:9e:76:b5:1a:cd:77:47:ec:9d:1b:ec:7e:5a: 05:03:6f:34:63:4f:06:52:ac:6c:25:75:8b:56:32: 32:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:18:2D:4A:C8:FD:63:A2:80:9C:C7:DF:58:83:27:07:7D:FB:B6:4C X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:34:54:67:41:32:bc:9c:76:40:36:27:05:9f:5e:3b:59:6f: 0f:ed:17:af:78:f4:f9:ea:77:ac:93:78:87:5b:d0:c4:2c:b3: c2:b1:02:06:b7:00:1e:59:86:ac:e8:74:2f:51:50:d4:71:bc: 07:94:8c:b5:89:05:4d:9e:bd:68:6f:87:bf:7d:6a:5e:7b:54: 21:c2:ba:9d:ad:b5:38:d0:9f:c3:dc:b0:ce:ea:d6:c3:fe:fc: dc:ee:c6:e6:f1:2b:6e:56:e1:1a:f3:cc:0f:8f:fd:94:fa:08: b7:f0:7a:43:df:33:fa:f3:e8:b2:d9:58:3e:4e:cf:48:9b:1b: bc:55:e7:c5:2d:47:08:58:8c:64:58:52:2b:62:8c:6a:cf:33: 87:58:4a:6c:d2:5d:f0:54:f0:be:73:ae:98:4f:5c:dd:5c:76: b3:54:10:bc:97:66:a6:a9:6b:9b:62:3d:87:b4:b1:4c:0b:fe: 96:74:e5:4c:cc:d2:be:d2:38:7e:bd:62:93:d3:f7:7c:57:6b: fc:87:65:25:1f:c2:fe:a9:4d:18:e5:49:d6:88:6a:21:c3:d6: 99:75:58:81:e1:fa:cf:02:37:b9:00:9f:15:4c:e3:18:36:66: 88:9c:32:80:0c:1c:97:2b:36:3a:71:9e:cc:5a:f4:1d:2c:05: 16:b8:90:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwNTMxMDQyMjM1WhcNMjUwNjA3MDQyMjM1WjAYMRYwFAYD VQQDEw02ODNhODQwYy1hZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskCILhFydtfjamerZXkWwEciMiym3wc4rL/8tthvTrkx9/9zAupgAQjWxLsT stUtr0oiEFGlDZ1AlY2ovQOekmIbczHAUX6uApqm4i1KNkb8PtL640LHKwHCmO4h 5FS2bSpAjRF0+IBkB4A3nMB8K1XUpwwjJd1bOCkxM4oODnkskIG3oBsrtd4ASth9 It7UkauukEu+XpvZ3h8cmOVP1jldLNndyy1oKaNzQ5R/itNcZuQ6pica6txgE4Yo iONQKXsNxlFp8qFOZpUThwGr4kR9ZAqtPljPmHBLfawBM2UjEp52tRrNd0fsnRvs floFA280Y08GUqxsJXWLVjIyLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEYLUrI /WOigJzH31iDJwd9+7ZMMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMNFRnQTK8nHZANicFn147WW8P7RevePT56nesk3iHW9DELLPCsQIG twAeWYas6HQvUVDUcbwHlIy1iQVNnr1ob4e/fWpee1QhwrqdrbU40J/D3LDO6tbD /vzc7sbm8StuVuEa88wPj/2U+gi38HpD3zP68+iy2Vg+Ts9Imxu8VefFLUcIWIxk WFIrYoxqzzOHWEps0l3wVPC+c66YT1zdXHazVBC8l2amqWubYj2HtLFMC/6WdOVM zNK+0jh+vWKT0/d8V2v8h2UlH8L+qU0Y5UnWiGohw9aZdViB4frPAje5AJ8VTOMY NmaInDKADByXKzY6cZ7MWvQdLAUWuJCB -----END CERTIFICATE-----Generated at Sat May 31 16:33:57 2025 by rpki-client