$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft File: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft (raw, json) Hash identifier: VbgQodWfPU+dRXZLLVMQ9137pjmQ80cu/hH9Fg+Wefk= Subject key identifier: 0C:7E:17:F7:7A:9A:86:8F:06:D9:AC:3F:E3:B8:D0:FF:92:70:7B:28 Authority key identifier: D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 Certificate issuer: /CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft Manifest number: 98 Signing time: Sat 23 Aug 2025 06:36:58 +0000 Manifest this update: Sat 23 Aug 2025 06:36:57 +0000 Manifest next update: Sat 30 Aug 2025 06:36:57 +0000 Files and hashes: 1: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl (hash: I9SWxkbkf/Yw3OAWxFeMUWPmH4LEhemF1bSumsBwM3E=) 2: EB2858349B4B11EF86A11C85C4F9AE02.roa (hash: BH8r4wcRvODYc1YiRCd6qM+1RNm98aDQL1IFKl5rQ2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Validity Not Before: Aug 23 06:36:57 2025 GMT Not After : Aug 30 06:36:57 2025 GMT Subject: CN=68a96189-9c88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c8:99:1a:59:d6:27:5d:5d:b0:38:16:1f:68: f0:2c:f4:8d:70:9b:fd:57:e4:9a:cd:b9:96:e0:21: 29:c1:7b:78:75:b1:98:8c:41:93:05:49:d6:b9:2a: f3:f1:f3:e5:db:a0:61:6e:c3:7b:40:c7:60:5d:25: a1:5b:56:25:bc:88:a6:84:1f:3b:0b:c6:d7:50:ca: fe:01:18:9d:c2:4a:f8:50:81:cc:da:cb:f3:9f:d2: 77:9e:f1:0a:75:d9:a0:fc:2e:53:5b:e3:59:72:15: ad:32:a8:86:08:9a:16:ff:5a:96:f9:f5:51:22:d3: 47:98:1b:61:96:c3:01:d5:03:47:ae:52:fc:43:49: ff:22:5a:c8:e6:8a:a7:ca:98:91:8d:aa:25:da:19: 47:a5:9c:e7:a5:6f:fc:b1:dc:1a:c4:3d:dd:93:bf: 44:65:d7:3a:a7:b0:22:29:e9:eb:bc:06:c7:d7:5e: e5:b3:9c:5f:ee:d8:05:90:37:e3:70:a4:2e:47:3e: 17:49:a2:bb:24:53:4e:6e:7d:dc:35:4a:67:e2:26: 5d:14:30:1c:b2:d2:34:e2:21:bb:5b:3e:ea:c4:e5: 7f:99:02:98:0a:7f:d5:c6:3f:66:75:b6:5b:14:56: 71:88:d4:1c:3c:e3:b4:66:31:b3:c0:ea:fb:30:14: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:7E:17:F7:7A:9A:86:8F:06:D9:AC:3F:E3:B8:D0:FF:92:70:7B:28 X509v3 Authority Key Identifier: keyid:D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ad:83:3d:5f:71:ea:21:d8:52:cc:77:c7:c0:f7:8b:c1:24: f4:d5:b3:d1:27:b3:ae:fd:85:2d:0b:c7:7d:22:26:67:c8:1a: 22:57:fb:c8:0f:41:ea:6d:ea:1c:b9:84:9e:2e:c2:d5:e9:07: f2:01:14:cf:78:ce:4b:f9:6b:a9:ec:78:4d:53:e4:2e:d3:58: bf:f2:cf:dc:82:23:c5:50:a8:13:8e:72:23:d8:01:6a:2b:cb: fb:e7:f4:b1:ec:75:cc:d6:42:ae:97:d5:6b:42:59:dc:4c:c1: fd:8a:ef:3d:1e:08:96:f9:b7:1e:32:b3:74:45:a1:be:57:06: 25:7d:50:eb:93:a1:cf:5d:18:a7:0b:ba:4f:37:1b:15:98:b3: 5e:cc:d1:45:88:67:69:36:3a:d4:40:53:8d:a7:2c:e7:bc:0c: ff:5f:af:52:5e:54:af:cd:19:10:b2:33:9c:1b:60:83:d3:0c: 84:46:3e:d1:8b:75:7c:cd:b2:72:92:92:12:42:1d:e1:e3:b1: 6e:9a:8f:a7:9e:cf:9d:82:d0:26:ac:63:f0:7e:17:0b:47:30: 79:e2:da:45:70:50:9d:5f:89:93:48:11:9e:85:d1:a5:b5:a1: a9:74:80:eb:cc:ef:45:00:ed:5b:88:3d:14:35:8e:1d:26:5b: bc:f2:e3:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKEQ0Njk2NEY5RjM3MzFGMkY2M0U2NzAwOEM5MUU1OUM3 RENDNzg1NTcwHhcNMjUwODIzMDYzNjU3WhcNMjUwODMwMDYzNjU3WjAYMRYwFAYD VQQDEw02OGE5NjE4OS05Yzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysiZGlnWJ11dsDgWH2jwLPSNcJv9V+SazbmW4CEpwXt4dbGYjEGTBUnWuSrz 8fPl26BhbsN7QMdgXSWhW1YlvIimhB87C8bXUMr+ARidwkr4UIHM2svzn9J3nvEK ddmg/C5TW+NZchWtMqiGCJoW/1qW+fVRItNHmBthlsMB1QNHrlL8Q0n/IlrI5oqn ypiRjaol2hlHpZznpW/8sdwaxD3dk79EZdc6p7AiKenrvAbH117ls5xf7tgFkDfj cKQuRz4XSaK7JFNObn3cNUpn4iZdFDAcstI04iG7Wz7qxOV/mQKYCn/Vxj9mdbZb FFZxiNQcPOO0ZjGzwOr7MBTVBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAx+F/d6 moaPBtmsP+O40P+ScHsoMB8GA1UdIwQYMBaAFNRpZPnzcx8vY+ZwCMkeWcfcx4VX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FOTI2RTkxMjlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi8xR2xrLWZOekh5OWo1bkFJeVI1Wng5ekho VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFHbGstZk56SHk5ajVuQUl5UjVaeDl6SGhWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FOTI2RTkxMjlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi8xR2xrLWZOekh5 OWo1bkFJeVI1Wng5ekhoVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4rYM9X3HqIdhSzHfHwPeLwST01bPRJ7Ou/YUtC8d9IiZnyBoiV/vI D0HqbeocuYSeLsLV6QfyARTPeM5L+Wup7HhNU+Qu01i/8s/cgiPFUKgTjnIj2AFq K8v75/Sx7HXM1kKul9VrQlncTMH9iu89HgiW+bceMrN0RaG+VwYlfVDrk6HPXRin C7pPNxsVmLNezNFFiGdpNjrUQFONpyznvAz/X69SXlSvzRkQsjOcG2CD0wyERj7R i3V8zbJykpISQh3h47Fumo+nns+dgtAmrGPwfhcLRzB54tpFcFCdX4mTSBGehdGl taGpdIDrzO9FAO1biD0UNY4dJlu88uNt -----END CERTIFICATE-----Generated at Sun Aug 24 00:43:29 2025 by rpki-client