$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: afs1A6nQi0OxyX5Zcen863S04aNBcSkmJLJ4e8YJvow= Subject key identifier: 64:5B:96:C8:BF:AE:17:7D:2E:7D:89:4D:FD:BC:32:93:91:13:B6:E4 Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 0126 Signing time: Fri 13 Jun 2025 03:37:35 +0000 Manifest this update: Fri 13 Jun 2025 03:37:34 +0000 Manifest next update: Fri 20 Jun 2025 03:37:34 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: 0hxcSUP9RdcjyoFSIsTz2pLwE8kzq3C/G+ihNLGQJs0=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Jun 13 03:37:34 2025 GMT Not After : Jun 20 03:37:34 2025 GMT Subject: CN=684b9cff-4004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ee:42:8c:d3:d2:5e:65:dc:7f:89:c4:64:e7: 49:37:21:4b:6b:3a:aa:71:b8:26:a9:1b:9b:39:73: 6e:1b:37:a8:55:4e:3f:96:b6:d9:ed:19:93:96:4a: 86:94:06:4a:51:36:04:38:97:6f:81:c3:9f:31:7b: c0:64:28:1f:8a:d5:87:32:8f:ee:8a:a1:2c:fe:86: fb:d1:5f:cb:7e:ec:e2:66:2a:01:6c:7c:34:aa:7a: da:b4:06:3c:85:d7:10:bc:b9:e3:77:39:58:ea:ec: f8:c2:11:e2:64:31:20:07:ac:ef:53:37:6a:c7:27: e7:4c:26:e6:01:0d:4f:b9:e8:b5:28:63:45:51:3f: f1:84:f3:3f:58:d2:9a:a3:ee:70:be:e5:11:db:a3: eb:9d:60:61:1d:2d:19:f9:e5:b5:68:69:c1:ff:85: b2:71:2e:b4:1d:38:97:17:b3:b2:91:60:51:a8:68: c5:1a:88:37:22:b4:4d:89:b3:6c:d7:b7:c3:65:93: f3:51:be:51:9b:3a:8d:28:3b:81:08:cb:0c:d5:f6: 5f:9b:cc:a3:ee:59:69:41:23:99:d7:00:ff:ac:82: 96:13:25:b6:6c:1e:0c:5b:4a:ff:f6:9a:a6:df:5d: 14:75:8b:4a:56:59:e6:50:69:3e:78:23:bb:27:b3: 87:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5B:96:C8:BF:AE:17:7D:2E:7D:89:4D:FD:BC:32:93:91:13:B6:E4 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d8:9d:50:ed:e2:ed:67:a6:87:70:d9:b3:71:96:15:ea:27: 95:47:cd:2e:fa:51:be:94:4a:7f:55:ec:f9:df:9e:22:ff:b0: 54:71:94:ac:8e:a9:17:6e:79:b8:5d:2b:72:25:d6:e1:9f:63: 3b:83:be:a0:6c:61:bf:44:2c:65:57:8b:66:e2:6d:b3:5e:59: fa:db:40:0a:d5:b3:b5:d7:35:23:58:ea:94:10:b9:e4:f8:59: 12:dc:59:fc:dd:37:fa:ca:4a:a5:74:19:23:3d:a5:73:e1:88: 36:24:dd:e6:9e:8d:05:b8:4c:57:56:cf:5d:dc:e0:f1:e9:ff: 51:33:96:6c:a3:d5:3f:52:1f:92:bd:23:43:77:87:51:2a:41: 5e:1e:c3:c7:f8:af:a2:19:7f:6c:f2:95:19:72:a1:2e:75:03: 10:ff:ae:8c:f3:15:f1:af:78:ab:7f:32:e5:7b:cf:74:b7:cf: 61:ee:73:30:5c:ea:a3:1e:54:b6:d5:07:b4:bb:27:9f:0e:f7: 6d:3b:91:da:13:a1:2d:1c:a9:99:33:7f:c5:9d:c7:29:84:ee: e6:36:f0:4e:df:84:c5:bd:5a:63:6b:4c:ad:d9:17:0b:63:74: 8a:7e:68:64:60:86:d3:6f:e2:0a:e1:05:41:d0:82:03:3d:84: 27:6a:72:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwNjEzMDMzNzM0WhcNMjUwNjIwMDMzNzM0WjAYMRYwFAYD VQQDEw02ODRiOWNmZi00MDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+5CjNPSXmXcf4nEZOdJNyFLazqqcbgmqRubOXNuGzeoVU4/lrbZ7RmTlkqG lAZKUTYEOJdvgcOfMXvAZCgfitWHMo/uiqEs/ob70V/LfuziZioBbHw0qnratAY8 hdcQvLnjdzlY6uz4whHiZDEgB6zvUzdqxyfnTCbmAQ1Puei1KGNFUT/xhPM/WNKa o+5wvuUR26PrnWBhHS0Z+eW1aGnB/4WycS60HTiXF7OykWBRqGjFGog3IrRNibNs 17fDZZPzUb5RmzqNKDuBCMsM1fZfm8yj7llpQSOZ1wD/rIKWEyW2bB4MW0r/9pqm 310UdYtKVlnmUGk+eCO7J7OHtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRblsi/ rhd9Ln2JTf28MpORE7bkMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa2J1Q7eLtZ6aHcNmzcZYV6ieVR80u+lG+lEp/Vez5354i/7BUcZSs jqkXbnm4XStyJdbhn2M7g76gbGG/RCxlV4tm4m2zXln620AK1bO11zUjWOqUELnk +FkS3Fn83Tf6ykqldBkjPaVz4Yg2JN3mno0FuExXVs9d3ODx6f9RM5Zso9U/Uh+S vSNDd4dRKkFeHsPH+K+iGX9s8pUZcqEudQMQ/66M8xXxr3irfzLle890t89h7nMw XOqjHlS21Qe0uyefDvdtO5HaE6EtHKmZM3/FnccphO7mNvBO34TFvVpja0yt2RcL Y3SKfmhkYIbTb+IK4QVB0IIDPYQnanKQ -----END CERTIFICATE-----Generated at Sat Jun 14 18:49:26 2025 by rpki-client