$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft File: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft (raw, json) Hash identifier: oc3O3aiX95uK0HQv4JYmpdy5JCxobs//ZfnzsbTGPTw= Subject key identifier: CB:2A:C7:EC:9C:AE:E9:32:FA:E8:A2:DC:62:C4:52:70:7C:C3:CE:DD Authority key identifier: D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 Certificate issuer: /CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft Manifest number: 66 Signing time: Thu 15 May 2025 06:16:58 +0000 Manifest this update: Thu 15 May 2025 06:16:58 +0000 Manifest next update: Thu 22 May 2025 06:16:58 +0000 Files and hashes: 1: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl (hash: xu3rmBR+ugtXSNeL8LTrYjDCcxMWAnj7lf4rE08UmlQ=) 2: EB2858349B4B11EF86A11C85C4F9AE02.roa (hash: BH8r4wcRvODYc1YiRCd6qM+1RNm98aDQL1IFKl5rQ2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Validity Not Before: May 15 06:16:58 2025 GMT Not After : May 22 06:16:58 2025 GMT Subject: CN=682586da-95ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8d:25:01:ac:c9:e2:83:66:8e:d8:ee:8d:29: 7e:d0:1e:42:2d:6b:46:13:41:9b:8a:31:7e:03:d6: ef:11:b2:4c:dd:50:b0:3e:15:2a:59:67:b5:04:ad: 61:db:e3:a8:9f:c1:2c:64:af:0d:31:03:25:3f:e5: 55:4a:e1:0c:0b:96:6b:3b:7d:9f:b3:b0:a8:d0:ca: 3c:97:53:e8:fa:fc:d2:3b:fa:7a:38:be:ea:a2:a3: 04:4b:90:ea:70:e1:a4:2e:81:39:0b:ae:b3:18:8c: ab:b1:95:6f:c6:c1:b3:f1:e7:ce:9e:a5:72:0f:86: bf:c9:63:9f:d0:ef:ec:11:cc:f4:c1:96:ff:fa:89: 55:75:96:71:9a:69:67:53:09:9e:13:20:49:da:9e: a9:61:a5:32:fe:47:25:ba:4c:a5:d3:89:25:be:82: ec:30:36:2e:e8:5a:68:cf:8a:9e:f7:b8:5b:c6:58: 8b:3b:bf:e3:20:e9:48:3c:af:e1:e6:6b:99:95:08: 6b:4a:b9:12:b1:39:f3:55:46:03:51:90:0b:ab:e3: 9e:7a:ec:79:bc:a2:11:93:51:4b:bb:0b:4b:bc:16: c7:79:bd:34:4b:b2:82:4b:71:ec:ea:4a:53:c3:48: 3d:21:49:cd:52:7c:00:a2:45:7f:2c:7c:f6:55:a3: 8d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2A:C7:EC:9C:AE:E9:32:FA:E8:A2:DC:62:C4:52:70:7C:C3:CE:DD X509v3 Authority Key Identifier: keyid:D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:ff:3e:f2:9f:ff:1e:de:b3:fe:40:b6:a3:d1:56:44:ba:1b: 31:27:16:2b:88:da:8f:75:a4:08:48:ae:94:db:36:51:ea:f4: 81:34:ba:25:5b:5d:58:47:51:32:28:ad:41:3a:53:04:f9:6b: 36:93:0d:56:75:ab:ec:62:26:dc:90:7a:43:bf:02:1f:16:10: 29:da:1b:55:8b:7d:87:01:e0:7d:46:b0:50:a6:f4:95:20:37: 73:13:61:9f:9e:92:34:28:26:2e:62:4c:fc:e5:6d:51:03:d1: 76:da:56:a1:ee:35:33:fd:01:92:b6:02:2d:8d:57:b0:69:ba: bf:39:00:c4:e4:3a:fb:2c:ee:f7:48:d5:01:04:58:09:51:1d: 0d:26:39:97:49:3a:37:56:ac:7f:65:13:c0:f4:e9:05:60:e2: 90:90:6d:ae:fc:1b:2f:f9:92:94:eb:89:31:2f:cb:5e:f8:ec: cc:98:7d:29:31:78:28:31:ce:3e:b8:5a:fa:19:5e:a1:60:2c: c2:c5:35:d3:c1:0d:ba:cd:88:83:ff:ec:ad:89:14:25:da:d1: 96:d6:e2:ea:2d:82:41:58:7d:f0:c8:3f:fd:13:39:d1:c8:30: c0:47:4b:82:a7:ac:d2:78:ab:76:89:0d:ed:ed:02:c6:cf:a5: 36:e7:26:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEYxMTExMC8GA1UEBRMoRDQ2OTY0RjlGMzczMUYyRjYzRTY3MDA4QzkxRTU5QzdE Q0M3ODU1NzAeFw0yNTA1MTUwNjE2NThaFw0yNTA1MjIwNjE2NThaMBgxFjAUBgNV BAMTDTY4MjU4NmRhLTk1Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQjSUBrMnig2aO2O6NKX7QHkIta0YTQZuKMX4D1u8RskzdULA+FSpZZ7UErWHb 46ifwSxkrw0xAyU/5VVK4QwLlms7fZ+zsKjQyjyXU+j6/NI7+no4vuqiowRLkOpw 4aQugTkLrrMYjKuxlW/GwbPx586epXIPhr/JY5/Q7+wRzPTBlv/6iVV1lnGaaWdT CZ4TIEnanqlhpTL+RyW6TKXTiSW+guwwNi7oWmjPip73uFvGWIs7v+Mg6Ug8r+Hm a5mVCGtKuRKxOfNVRgNRkAur45567Hm8ohGTUUu7C0u8Fsd5vTRLsoJLcezqSlPD SD0hSc1SfACiRX8sfPZVo40JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyyrH7Jyu 6TL66KLcYsRScHzDzt0wHwYDVR0jBBgwFoAU1Glk+fNzHy9j5nAIyR5Zx9zHhVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRjExL0U5MjZFOTEyOUE3 QzExRUY4NDk1MEQzM0M0RjlBRTAyLzFHbGstZk56SHk5ajVuQUl5UjVaeDl6SGhW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUdsay1mTnpIeTlqNW5BSXlSNVp4OXpIaFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RjExL0U5MjZFOTEyOUE3QzExRUY4NDk1MEQzM0M0RjlBRTAyLzFHbGstZk56SHk5 ajVuQUl5UjVaeDl6SGhWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB//PvKf/x7es/5AtqPRVkS6GzEnFiuI2o91pAhIrpTbNlHq9IE0uiVb XVhHUTIorUE6UwT5azaTDVZ1q+xiJtyQekO/Ah8WECnaG1WLfYcB4H1GsFCm9JUg N3MTYZ+ekjQoJi5iTPzlbVED0XbaVqHuNTP9AZK2Ai2NV7Bpur85AMTkOvss7vdI 1QEEWAlRHQ0mOZdJOjdWrH9lE8D06QVg4pCQba78Gy/5kpTriTEvy1747MyYfSkx eCgxzj64WvoZXqFgLMLFNdPBDbrNiIP/7K2JFCXa0ZbW4uotgkFYffDIP/0TOdHI MMBHS4KnrNJ4q3aJDe3tAsbPpTbnJtw= -----END CERTIFICATE-----Generated at Thu May 15 18:31:47 2025 by rpki-client