$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: rz1nk+zJqSU9yZbAkokcSpzo1eOsg34Fce8Mzsj9jSk= Subject key identifier: F5:14:37:EF:64:A1:61:C9:E3:82:2D:20:11:8C:DF:20:A7:0B:61:8D Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 0142 Signing time: Thu 07 Aug 2025 04:50:00 +0000 Manifest this update: Thu 07 Aug 2025 04:49:59 +0000 Manifest next update: Thu 14 Aug 2025 04:49:59 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: SPXiEHFBgh7G6ZI7wnmy7G5dq0c7zeOyqO7XQu3W678=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Aug 7 04:49:59 2025 GMT Not After : Aug 14 04:49:59 2025 GMT Subject: CN=68943077-11ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:5c:d6:6a:76:65:66:30:b6:c0:83:f2:03: 12:7f:6f:9b:f3:57:f8:6e:35:d0:84:15:d7:ba:a0: 63:2d:dc:7c:99:f0:5b:dd:95:f6:16:bf:27:38:69: 84:60:4a:96:ac:3f:f3:03:aa:43:06:e5:bb:b1:7b: df:ec:0c:e1:08:55:37:09:a2:c0:0c:e2:4d:9b:0d: e3:46:a6:57:ec:9f:a1:47:c8:93:5c:29:cf:bb:62: 7d:5c:81:02:22:05:b8:56:26:a6:15:b3:c6:42:b9: db:59:78:77:c7:7d:3d:50:44:ea:42:54:d2:aa:0c: ba:cb:ca:18:19:6b:1e:bd:a0:b9:19:61:19:24:30: fa:ac:2f:d5:ab:17:97:cf:f4:c9:7a:db:64:6d:52: 02:ea:e9:c2:c9:71:92:9a:3a:5c:a9:06:1f:b4:df: 6e:df:6b:82:b6:13:29:94:d9:db:ab:26:83:23:d1: 79:bf:5f:94:30:b0:a4:49:9e:ed:19:48:06:12:98: ca:b2:81:e1:1e:82:c7:a4:9f:c6:db:25:c9:75:58: ce:2d:0a:46:08:b4:2d:99:35:46:0a:6e:68:8d:38: 40:18:f8:51:1d:8d:d2:56:c0:df:32:b8:13:ed:92: ed:17:62:34:6c:6f:4f:4b:e9:30:76:3f:35:b3:ec: f8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:14:37:EF:64:A1:61:C9:E3:82:2D:20:11:8C:DF:20:A7:0B:61:8D X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:5a:be:a3:68:84:df:d4:22:b4:93:ab:62:a8:b5:10:87:f6: ca:5e:88:9e:33:d0:cf:ff:97:36:05:b2:a9:c6:77:25:ce:36: 40:17:fe:ba:6e:68:fb:fa:52:f7:87:7f:3e:ef:bb:6d:3f:e9: 7d:cf:2a:ed:31:b2:04:c6:9d:09:07:dd:34:2f:f1:31:66:18: 5c:7c:7d:09:43:fe:88:fd:2e:ec:6f:42:6c:86:9c:af:17:9c: 4f:8e:1a:22:fb:64:17:07:ae:8b:65:85:06:cd:cb:a4:c2:49: 9c:a5:ae:5e:57:5b:f2:11:c1:50:36:9d:71:3a:b6:20:16:16: 01:3d:95:b7:d7:2b:d2:e5:04:73:80:89:5a:11:46:0a:2d:ce: 9d:03:81:d6:e4:bd:54:6a:0a:25:ba:e8:6f:1c:ef:c7:b4:3b: a6:f8:19:42:3c:73:e5:1b:91:dd:44:5a:16:d0:ef:d9:9c:43: ae:46:d0:43:bd:2d:24:4c:9a:06:61:4b:b0:78:08:f6:89:b0: bd:a8:9c:79:0e:61:53:42:65:5f:a1:1e:52:1b:30:df:02:cd: e0:b8:b6:82:c4:af:9e:ff:7e:5e:4b:6f:90:03:0f:f1:0e:d3: 35:e7:1f:aa:f7:e5:b9:c8:23:40:61:ad:f8:45:bb:77:72:44: ea:df:69:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwODA3MDQ0OTU5WhcNMjUwODE0MDQ0OTU5WjAYMRYwFAYD VQQDEw02ODk0MzA3Ny0xMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxNc1mp2ZWYwtsCD8gMSf2+b81f4bjXQhBXXuqBjLdx8mfBb3ZX2Fr8nOGmE YEqWrD/zA6pDBuW7sXvf7AzhCFU3CaLADOJNmw3jRqZX7J+hR8iTXCnPu2J9XIEC IgW4ViamFbPGQrnbWXh3x309UETqQlTSqgy6y8oYGWsevaC5GWEZJDD6rC/VqxeX z/TJettkbVIC6unCyXGSmjpcqQYftN9u32uCthMplNnbqyaDI9F5v1+UMLCkSZ7t GUgGEpjKsoHhHoLHpJ/G2yXJdVjOLQpGCLQtmTVGCm5ojThAGPhRHY3SVsDfMrgT 7ZLtF2I0bG9PS+kwdj81s+z4qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUUN+9k oWHJ44ItIBGM3yCnC2GNMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Wr6jaITf1CK0k6tiqLUQh/bKXoieM9DP/5c2BbKpxnclzjZAF/66 bmj7+lL3h38+77ttP+l9zyrtMbIExp0JB900L/ExZhhcfH0JQ/6I/S7sb0Jshpyv F5xPjhoi+2QXB66LZYUGzcukwkmcpa5eV1vyEcFQNp1xOrYgFhYBPZW31yvS5QRz gIlaEUYKLc6dA4HW5L1UagoluuhvHO/HtDum+BlCPHPlG5HdRFoW0O/ZnEOuRtBD vS0kTJoGYUuweAj2ibC9qJx5DmFTQmVfoR5SGzDfAs3guLaCxK+e/35eS2+QAw/x DtM15x+q9+W5yCNAYa34Rbt3ckTq32nx -----END CERTIFICATE-----Generated at Sat Aug 9 05:52:14 2025 by rpki-client