$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: 2ofObaNH1dlBZiMFoBaKPt8r6/5SDcgkk0wjS9lQBY0= Subject key identifier: C5:63:11:DD:B5:22:53:C1:08:C0:1C:4B:5E:D3:29:A6:D5:03:DC:53 Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 0149 Signing time: Thu 21 Aug 2025 04:24:22 +0000 Manifest this update: Thu 21 Aug 2025 04:24:21 +0000 Manifest next update: Thu 28 Aug 2025 04:24:21 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: zZSe17Yj7AaA5ICZ5a3r/XMnzDgO3oufFyQPNiivAQM=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Aug 21 04:24:21 2025 GMT Not After : Aug 28 04:24:21 2025 GMT Subject: CN=68a69f76-4c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:44:27:93:7d:1d:5b:e5:d5:44:8c:bb:a7:d4: d1:03:6b:3c:38:76:20:8f:c4:73:64:ed:39:05:26: a9:7f:ce:5b:56:dd:40:28:0b:16:67:57:d6:06:e1: a3:ea:dc:9a:f0:ee:e1:6c:0d:8f:81:e4:73:4b:33: 52:11:15:06:ad:fe:37:01:19:f7:0a:4f:7c:96:e5: 68:2a:07:34:ee:91:14:c9:da:23:5a:d4:ca:28:ed: d9:ad:46:35:a1:ac:4e:3b:ed:66:c0:9e:1b:f2:24: e4:fd:96:c0:68:f0:50:91:3b:1f:cf:e9:6e:c7:a8: 6b:41:be:d1:f8:7d:46:a0:06:92:3e:f4:64:ed:9e: b8:88:86:55:11:75:cd:7f:53:2d:10:b0:e2:1d:b4: 5f:cc:9a:27:e1:b2:98:59:57:eb:8d:6e:fe:bb:35: 23:dd:88:a3:9a:d4:be:90:de:39:06:39:5e:52:8e: ec:12:f9:98:1a:a1:3a:d7:6f:8e:1f:33:c2:59:b9: 97:28:cb:da:de:4f:a9:96:f6:99:6f:cf:70:df:87: 2b:64:b4:bb:71:1e:27:f6:e5:0b:74:fc:c1:f5:26: b7:36:82:79:53:10:1b:33:69:8b:66:a3:98:11:92: 14:c1:af:13:9b:d5:3e:74:3f:23:32:41:8d:0d:d2: b9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:63:11:DD:B5:22:53:C1:08:C0:1C:4B:5E:D3:29:A6:D5:03:DC:53 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:6f:f7:d2:f9:91:03:b3:0b:c0:5d:9e:55:56:08:e0:31:6d: 6d:e5:b6:47:f0:01:2f:f1:cc:21:59:a3:c3:c1:4a:12:ba:0b: b8:cf:14:b1:28:42:9f:92:9b:fa:6f:3c:88:98:95:6e:29:4d: 55:67:d2:31:79:23:b4:45:bd:e7:38:2b:68:a4:50:ac:2e:e4: a4:26:ff:5a:05:c5:cb:2d:2f:8f:b7:5b:ed:18:e5:4c:01:de: 00:f8:55:fd:cd:fe:af:68:19:23:bb:ca:89:0a:27:5e:95:44: 2a:8c:59:75:4a:db:ea:17:33:19:73:4e:83:19:a8:e7:3c:ec: 5a:65:da:45:f3:d4:84:a7:f2:c9:ef:f6:f2:fe:14:b2:08:25: 91:08:74:28:b3:88:f2:a8:ea:c6:ae:ad:6a:95:a5:bb:ca:3e: cc:64:dc:e4:b6:e4:94:ed:7e:f6:6e:b4:45:ff:cd:12:04:a9: 6d:8c:2a:7b:4c:25:25:08:95:8a:2f:61:7f:39:fd:e4:12:b9: d5:8b:b5:f8:b6:36:73:2e:f4:ca:62:76:07:d0:53:3b:5f:bb: 47:24:8c:5c:9a:e8:c0:91:9a:37:7f:6c:95:29:17:72:88:a4: 00:e8:5c:bc:50:f3:b4:b5:4d:56:a5:80:7f:db:e3:a7:de:4a: 2a:5b:c9:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwODIxMDQyNDIxWhcNMjUwODI4MDQyNDIxWjAYMRYwFAYD VQQDEw02OGE2OWY3Ni00YzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0Qnk30dW+XVRIy7p9TRA2s8OHYgj8RzZO05BSapf85bVt1AKAsWZ1fWBuGj 6tya8O7hbA2PgeRzSzNSERUGrf43ARn3Ck98luVoKgc07pEUydojWtTKKO3ZrUY1 oaxOO+1mwJ4b8iTk/ZbAaPBQkTsfz+lux6hrQb7R+H1GoAaSPvRk7Z64iIZVEXXN f1MtELDiHbRfzJon4bKYWVfrjW7+uzUj3YijmtS+kN45BjleUo7sEvmYGqE612+O HzPCWbmXKMva3k+plvaZb89w34crZLS7cR4n9uULdPzB9Sa3NoJ5UxAbM2mLZqOY EZIUwa8Tm9U+dD8jMkGNDdK59wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVjEd21 IlPBCMAcS17TKabVA9xTMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnb/fS+ZEDswvAXZ5VVgjgMW1t5bZH8AEv8cwhWaPDwUoSugu4zxSx KEKfkpv6bzyImJVuKU1VZ9IxeSO0Rb3nOCtopFCsLuSkJv9aBcXLLS+Pt1vtGOVM Ad4A+FX9zf6vaBkju8qJCidelUQqjFl1StvqFzMZc06DGajnPOxaZdpF89SEp/LJ 7/by/hSyCCWRCHQos4jyqOrGrq1qlaW7yj7MZNzktuSU7X72brRF/80SBKltjCp7 TCUlCJWKL2F/Of3kErnVi7X4tjZzLvTKYnYH0FM7X7tHJIxcmujAkZo3f2yVKRdy iKQA6Fy8UPO0tU1WpYB/2+On3koqW8kj -----END CERTIFICATE-----Generated at Fri Aug 22 16:14:59 2025 by rpki-client