$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: /USDmoqHkRfLb458/F4AhOAtK6O4Vo2SwJbt7jkWxf4= Subject key identifier: C8:C7:BD:0E:00:8E:DA:06:52:D9:95:57:9B:36:F7:B2:4F:79:8F:C8 Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 010E Signing time: Fri 25 Apr 2025 04:01:07 +0000 Manifest this update: Fri 25 Apr 2025 04:01:07 +0000 Manifest next update: Fri 02 May 2025 04:01:07 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: QHYzdtuyff/6FpeX8bn8WUYnDEa5GoXOoK8qQ4MXnbU=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Apr 25 04:01:07 2025 GMT Not After : May 2 04:01:07 2025 GMT Subject: CN=680b0903-59f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:93:ec:52:9e:b2:b7:f6:fc:b3:ed:88:66:3b: 78:79:5d:11:1a:8f:73:de:52:53:d3:65:b3:b1:69: e4:35:f7:5c:33:44:a9:5e:2c:de:91:ea:20:a9:2e: 28:55:c9:8c:79:29:53:e5:df:16:d4:c3:d1:45:77: 2c:02:49:fb:b6:ce:9e:c1:57:b1:f1:29:2a:bd:a9: fe:72:ec:93:77:99:5c:45:4b:68:10:f0:39:06:23: 66:57:23:b8:d9:28:cf:81:a5:c2:79:4d:16:dd:10: 64:30:b6:7d:8e:a4:84:88:d8:01:28:43:09:5c:0b: 69:15:b3:84:a5:25:e2:28:cb:c0:16:a5:73:72:dd: e0:06:51:ff:78:45:22:aa:9e:80:10:01:10:69:a8: e7:c5:81:cd:91:2a:99:ae:bc:29:41:50:d3:f5:26: 03:5e:14:57:4a:28:df:70:e5:f9:c6:5a:0c:62:99: cb:40:4f:3a:5b:2c:8c:a5:3b:b3:64:6e:bf:82:92: 99:6b:35:48:81:2f:60:54:fe:dd:62:c1:d9:cc:82: 17:97:81:0e:92:e0:b6:ec:d5:f1:6a:bc:c3:da:4b: 4a:c1:bc:10:11:67:02:41:33:06:a2:0f:d7:ba:91: 99:ca:b0:4e:0c:9d:cd:8a:34:22:0f:53:65:97:04: d8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C7:BD:0E:00:8E:DA:06:52:D9:95:57:9B:36:F7:B2:4F:79:8F:C8 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:4e:45:8e:dc:e4:df:69:8e:a0:64:df:fb:79:98:f4:c0:4b: f9:89:9f:37:01:6d:4e:3d:a0:97:ae:ea:b2:41:0d:3f:06:41: 9b:e6:00:d5:98:97:02:6e:2c:77:2a:7d:28:c1:e6:55:f8:37: 1a:51:31:1a:88:93:2f:e4:fc:5f:62:c3:b5:71:8b:23:46:95: 48:b1:43:bc:7c:f2:f7:5c:5b:ac:7a:4a:e1:f5:27:74:4f:85: b3:d2:67:3e:77:48:9f:00:3f:1e:6a:c6:03:eb:29:ac:8b:da: 17:6f:7c:2b:59:04:ef:f3:28:9e:c8:93:79:87:a3:40:1c:ae: e7:80:3c:de:d5:b0:5b:6d:de:19:2c:85:2f:f5:81:83:93:c1: 04:d4:94:c3:0e:8f:c1:75:32:a7:c2:1c:0f:b0:5d:23:ad:7b: 65:5c:9e:42:01:9b:54:5b:1c:3a:b8:e7:6f:63:ac:ac:93:46: 38:f6:6b:1c:2d:8f:32:81:af:e9:b2:96:80:4b:08:fe:ba:dc: 22:2f:9a:39:75:f3:ff:ec:20:ba:56:a5:6c:c1:f7:23:bb:e7: 1c:27:46:f2:90:20:e9:be:e2:41:59:2d:19:f2:ae:07:ee:ea: 69:29:c2:ff:21:56:85:5d:0f:39:5a:5a:04:34:e7:2f:ae:84: 5f:0b:61:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwNDI1MDQwMTA3WhcNMjUwNTAyMDQwMTA3WjAYMRYwFAYD VQQDEw02ODBiMDkwMy01OWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5PsUp6yt/b8s+2IZjt4eV0RGo9z3lJT02WzsWnkNfdcM0SpXizekeogqS4o VcmMeSlT5d8W1MPRRXcsAkn7ts6ewVex8Skqvan+cuyTd5lcRUtoEPA5BiNmVyO4 2SjPgaXCeU0W3RBkMLZ9jqSEiNgBKEMJXAtpFbOEpSXiKMvAFqVzct3gBlH/eEUi qp6AEAEQaajnxYHNkSqZrrwpQVDT9SYDXhRXSijfcOX5xloMYpnLQE86WyyMpTuz ZG6/gpKZazVIgS9gVP7dYsHZzIIXl4EOkuC27NXxarzD2ktKwbwQEWcCQTMGog/X upGZyrBODJ3NijQiD1NllwTYkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjHvQ4A jtoGUtmVV5s297JPeY/IMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAETkWO3OTfaY6gZN/7eZj0wEv5iZ83AW1OPaCXruqyQQ0/BkGb5gDV mJcCbix3Kn0oweZV+DcaUTEaiJMv5PxfYsO1cYsjRpVIsUO8fPL3XFusekrh9Sd0 T4Wz0mc+d0ifAD8easYD6ymsi9oXb3wrWQTv8yieyJN5h6NAHK7ngDze1bBbbd4Z LIUv9YGDk8EE1JTDDo/BdTKnwhwPsF0jrXtlXJ5CAZtUWxw6uOdvY6ysk0Y49msc LY8yga/pspaASwj+utwiL5o5dfP/7CC6VqVswfcju+ccJ0bykCDpvuJBWS0Z8q4H 7uppKcL/IVaFXQ85WloENOcvroRfC2FU -----END CERTIFICATE-----Generated at Sat Apr 26 05:12:18 2025 by rpki-client