$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: V9dBDLis6q/zQggYNHGXcIXBcFlbcii/iluFy8Dcbmc= Subject key identifier: C1:A6:A1:31:F1:8D:7C:FE:43:8D:98:70:27:E1:8E:16:A7:30:98:2B Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 01AA Signing time: Sun 01 Mar 2026 04:48:46 +0000 Manifest this update: Sun 01 Mar 2026 04:48:46 +0000 Manifest next update: Sun 08 Mar 2026 04:48:46 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: MXC+zCAcRKgNe3mo5YuEYuytGfH3nLH1UQ+1DxZ0Wb4=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Mar 1 04:48:46 2026 GMT Not After : Mar 8 04:48:46 2026 GMT Subject: CN=69a3c52e-7e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:5b:df:ee:85:ff:62:5a:23:d1:a6:48:13: a6:f6:27:51:04:bf:c4:db:75:c1:ca:ad:02:2d:de: 78:e0:f7:8d:dd:22:c8:b1:76:a1:76:06:f6:c1:95: 29:61:e2:00:82:d8:c7:0a:03:3e:1d:d8:4c:8e:a5: 2e:37:7c:68:68:ef:42:75:59:6b:96:1e:c1:37:1d: 66:9e:2e:03:05:4e:cf:da:f1:09:8e:56:e6:01:ce: 0e:08:f8:c6:9a:f5:6f:29:d4:14:4c:d7:ba:c3:1d: 61:ca:b1:f9:b8:b2:32:b4:7f:e3:45:30:6b:13:3a: d3:87:14:e5:0b:98:cd:d1:fd:75:03:65:d9:ce:14: c7:b4:8f:66:7b:50:16:c6:11:5c:b6:60:cc:cb:26: 56:a7:c8:bd:c5:ec:46:62:dd:a8:6e:48:c9:04:78: ca:91:4f:b8:77:70:43:aa:dc:ac:1b:94:1b:a6:ff: b3:16:c8:bc:54:01:43:bd:61:46:25:c7:14:2f:af: 86:43:7f:ef:70:2e:5d:c4:fd:34:2d:66:45:cb:42: df:53:a0:4b:35:97:11:25:f6:f6:f6:30:7f:94:6a: c2:c8:02:35:cd:3d:85:3a:5f:7c:b9:f6:e8:e0:89: 98:81:52:c4:5d:8a:52:14:3b:57:fd:2a:80:84:5c: 99:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A6:A1:31:F1:8D:7C:FE:43:8D:98:70:27:E1:8E:16:A7:30:98:2B X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:1b:f7:d7:97:82:9b:9f:48:1e:f6:d9:13:e7:9f:39:cb:38: 8c:00:a7:89:46:40:a4:f4:92:fb:e0:9f:6b:20:f0:21:45:bd: df:e3:07:ff:23:48:4b:09:36:4f:65:dd:c4:cb:c1:27:b2:42: 5f:e1:08:c1:bf:57:53:49:c8:d7:6d:91:b2:70:92:c7:15:64: 42:a1:eb:e8:24:1b:e2:e4:c5:f9:7b:57:c2:c1:0a:58:cc:96: 5e:3e:2b:d4:e4:56:65:a0:db:f1:f6:0e:9b:3c:79:df:e3:fc: 43:0f:85:4e:ad:b4:77:1d:12:59:67:a2:84:4f:c2:37:7e:9f: f6:8c:77:f6:0d:31:d2:6e:69:a6:f7:2e:a2:52:38:02:b8:59: 20:66:40:23:59:d8:ca:42:b8:74:28:25:65:34:3d:33:b9:57: 20:6b:35:2c:59:19:15:b7:a6:80:06:c3:dd:c9:62:27:0b:9f: 4c:d7:6c:49:cd:dc:40:70:d6:ec:7d:86:db:84:a7:0d:00:33: bf:8e:a6:94:d6:9f:24:f6:b1:75:31:5d:21:f1:95:70:5d:16: ba:69:71:15:f3:86:63:23:8a:7c:9e:11:99:32:47:17:bf:e7: 98:d2:84:a8:50:d3:b3:8a:75:a8:de:7a:50:5f:b0:83:3f:c6: e7:8f:c8:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjYwMzAxMDQ0ODQ2WhcNMjYwMzA4MDQ0ODQ2WjAYMRYwFAYD VQQDDA02OWEzYzUyZS03ZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/xb3+6F/2JaI9GmSBOm9idRBL/E23XByq0CLd544PeN3SLIsXahdgb2wZUp YeIAgtjHCgM+HdhMjqUuN3xoaO9CdVlrlh7BNx1mni4DBU7P2vEJjlbmAc4OCPjG mvVvKdQUTNe6wx1hyrH5uLIytH/jRTBrEzrThxTlC5jN0f11A2XZzhTHtI9me1AW xhFctmDMyyZWp8i9xexGYt2obkjJBHjKkU+4d3BDqtysG5Qbpv+zFsi8VAFDvWFG JccUL6+GQ3/vcC5dxP00LWZFy0LfU6BLNZcRJfb29jB/lGrCyAI1zT2FOl98ufbo 4ImYgVLEXYpSFDtX/SqAhFyZPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMGmoTHx jXz+Q42YcCfhjhanMJgrMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgxv315eCm59IHvbZE+efOcs4jACniUZApPSS++CfayDwIUW93+MH/yNISwk2 T2XdxMvBJ7JCX+EIwb9XU0nI122RsnCSxxVkQqHr6CQb4uTF+XtXwsEKWMyWXj4r 1ORWZaDb8fYOmzx53+P8Qw+FTq20dx0SWWeihE/CN36f9ox39g0x0m5ppvcuolI4 ArhZIGZAI1nYykK4dCglZTQ9M7lXIGs1LFkZFbemgAbD3cliJwufTNdsSc3cQHDW 7H2G24SnDQAzv46mlNafJPaxdTFdIfGVcF0WumlxFfOGYyOKfJ4RmTJHF7/nmNKE qFDTs4p1qN56UF+wgz/G54/I2Q== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:03 2026 by rpki-client