$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft File: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft (raw, json) Hash identifier: D8zYBHiHFhnlz91NU7fepi4+Ov0vxiFu+LBt5yXOcBg= Subject key identifier: 9F:6A:8B:0D:E8:88:93:57:6C:EE:37:70:4B:77:75:BE:FD:18:F4:C8 Authority key identifier: D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 Certificate issuer: /CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft Manifest number: 7D Signing time: Tue 01 Jul 2025 07:27:51 +0000 Manifest this update: Tue 01 Jul 2025 07:27:51 +0000 Manifest next update: Tue 08 Jul 2025 07:27:51 +0000 Files and hashes: 1: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl (hash: 6LQuV/RxLGfEg9pMTlbnznZg2wPqk+iJ0jJNVQQimmE=) 2: EB2858349B4B11EF86A11C85C4F9AE02.roa (hash: BH8r4wcRvODYc1YiRCd6qM+1RNm98aDQL1IFKl5rQ2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Validity Not Before: Jul 1 07:27:51 2025 GMT Not After : Jul 8 07:27:51 2025 GMT Subject: CN=68638df7-3deb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f8:b2:39:82:66:ba:00:33:52:c1:df:a0:a0: de:93:19:ca:54:06:1b:b1:26:ae:ab:55:f3:16:cd: a6:6a:6b:34:5c:d0:c7:f0:c1:93:ec:f9:72:65:6e: 69:12:b8:18:91:70:51:4c:cd:45:f1:1a:4d:85:a2: 98:dc:b8:de:8d:55:10:83:e4:f0:4d:69:ac:10:0a: 87:7f:c5:e2:1e:d9:f3:f7:1b:ef:ab:6a:29:3a:a3: b9:20:b6:19:d0:15:90:16:94:53:56:6b:ee:e2:8f: de:a6:ca:4b:1b:f9:29:03:77:97:44:05:61:66:6e: c9:02:c4:b8:2e:08:44:2f:0a:e3:cc:6e:f1:f9:66: 2f:4a:54:67:4f:c0:7a:df:a5:93:fd:06:ad:e7:02: f7:73:a7:27:d6:54:6c:b0:fa:0c:d3:60:13:1e:34: 0f:ee:c1:7b:df:1a:d3:69:02:a5:1b:2b:c6:37:6a: 7e:2c:e5:b3:b1:a3:7e:bf:57:7c:70:a6:0e:10:03: e9:9b:ab:a3:29:33:9b:ee:8e:43:c1:8e:d4:52:f8: c0:cb:64:6c:1b:12:e4:5b:b8:2b:05:49:9e:1c:ce: 3b:5f:80:78:0e:d5:d0:56:ad:0d:8f:93:86:3f:01: eb:5b:86:9f:0a:6c:29:ad:06:72:02:a2:ce:30:b6: 09:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6A:8B:0D:E8:88:93:57:6C:EE:37:70:4B:77:75:BE:FD:18:F4:C8 X509v3 Authority Key Identifier: keyid:D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9c:df:2e:42:6c:89:c2:d9:a8:24:25:e0:30:4b:a1:e0:c2: a3:58:36:04:b2:4d:cc:41:02:bf:c4:fb:6e:8f:56:72:60:dc: dc:92:08:61:f1:0b:01:53:63:96:88:1a:e0:ed:46:f3:25:f6: 75:46:c2:d9:08:e5:b7:36:c8:d1:a3:36:8f:98:6e:2b:60:da: bd:87:3f:09:f0:5a:c0:8d:06:50:ec:27:bb:87:b0:29:96:c7: 5f:df:2b:f0:a7:db:34:bc:27:71:46:c0:3c:2c:4d:0d:82:86: f2:c2:68:08:63:5c:e1:f9:6b:e2:25:20:b3:3c:0d:05:af:15: 90:9e:4a:cb:d5:fc:ad:f2:02:76:a0:14:e9:8b:95:6d:8d:5b: 9a:ac:1b:82:bd:43:7c:1d:2a:c5:d8:e7:14:8a:86:cc:c3:5c: 41:15:1e:81:f1:8c:40:3d:e1:4e:79:2a:18:e0:89:ea:84:ca: 1f:5a:db:aa:c5:df:34:16:ef:ce:ad:3c:45:66:ec:82:bc:b7: 73:04:60:c3:93:3e:6c:a9:ec:ad:e9:84:76:d1:40:16:bf:36: de:2d:2c:6a:cf:8f:b0:39:b1:52:c6:f8:54:4d:55:70:e9:04: a3:01:b4:07:93:24:ed:69:a1:ea:56:3f:e8:3c:d2:59:24:a7: 10:a5:d5:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEYxMTExMC8GA1UEBRMoRDQ2OTY0RjlGMzczMUYyRjYzRTY3MDA4QzkxRTU5QzdE Q0M3ODU1NzAeFw0yNTA3MDEwNzI3NTFaFw0yNTA3MDgwNzI3NTFaMBgxFjAUBgNV BAMTDTY4NjM4ZGY3LTNkZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6+LI5gma6ADNSwd+goN6TGcpUBhuxJq6rVfMWzaZqazRc0MfwwZPs+XJlbmkS uBiRcFFMzUXxGk2FopjcuN6NVRCD5PBNaawQCod/xeIe2fP3G++raik6o7kgthnQ FZAWlFNWa+7ij96myksb+SkDd5dEBWFmbskCxLguCEQvCuPMbvH5Zi9KVGdPwHrf pZP9Bq3nAvdzpyfWVGyw+gzTYBMeNA/uwXvfGtNpAqUbK8Y3an4s5bOxo36/V3xw pg4QA+mbq6MpM5vujkPBjtRS+MDLZGwbEuRbuCsFSZ4czjtfgHgO1dBWrQ2Pk4Y/ Aetbhp8KbCmtBnICos4wtgl/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUn2qLDeiI k1ds7jdwS3d1vv0Y9MgwHwYDVR0jBBgwFoAU1Glk+fNzHy9j5nAIyR5Zx9zHhVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRjExL0U5MjZFOTEyOUE3 QzExRUY4NDk1MEQzM0M0RjlBRTAyLzFHbGstZk56SHk5ajVuQUl5UjVaeDl6SGhW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUdsay1mTnpIeTlqNW5BSXlSNVp4OXpIaFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RjExL0U5MjZFOTEyOUE3QzExRUY4NDk1MEQzM0M0RjlBRTAyLzFHbGstZk56SHk5 ajVuQUl5UjVaeDl6SGhWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJqc3y5CbInC2agkJeAwS6HgwqNYNgSyTcxBAr/E+26PVnJg3NySCGHx CwFTY5aIGuDtRvMl9nVGwtkI5bc2yNGjNo+Ybitg2r2HPwnwWsCNBlDsJ7uHsCmW x1/fK/Cn2zS8J3FGwDwsTQ2ChvLCaAhjXOH5a+IlILM8DQWvFZCeSsvV/K3yAnag FOmLlW2NW5qsG4K9Q3wdKsXY5xSKhszDXEEVHoHxjEA94U55KhjgieqEyh9a26rF 3zQW786tPEVm7IK8t3MEYMOTPmyp7K3phHbRQBa/Nt4tLGrPj7A5sVLG+FRNVXDp BKMBtAeTJO1poepWP+g80lkkpxCl1RI= -----END CERTIFICATE-----Generated at Thu Jul 3 02:54:29 2025 by rpki-client