$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft File: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft (raw, json) Hash identifier: DgBRIJ6pCrGw2bZMFt5hWbnZRJwHslBU/Yvcse5jsWo= Subject key identifier: 49:96:AA:8C:A7:72:51:AF:28:12:F3:B7:B7:2A:C6:24:CE:06:36:17 Authority key identifier: D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 Certificate issuer: /CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft Manifest number: B5 Signing time: Sun 19 Oct 2025 09:11:23 +0000 Manifest this update: Sun 19 Oct 2025 09:11:23 +0000 Manifest next update: Sun 26 Oct 2025 09:11:22 +0000 Files and hashes: 1: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl (hash: No8RuGqCDNLfrmZYOnC4o3yiEy0+MQRHof5PLntu5jU=) 2: EB2858349B4B11EF86A11C85C4F9AE02.roa (hash: BH8r4wcRvODYc1YiRCd6qM+1RNm98aDQL1IFKl5rQ2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Validity Not Before: Oct 19 09:11:23 2025 GMT Not After : Oct 26 09:11:22 2025 GMT Subject: CN=68f4ab3b-cf0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ac:a6:2f:ec:40:53:20:44:82:7d:f0:09:aa: 1d:db:ed:51:f9:74:7a:f3:8d:36:e2:7d:8a:1e:a2: 3a:b2:f8:11:45:bf:8d:21:16:10:e1:22:5c:95:37: 36:70:9b:6d:11:eb:d1:a0:8a:bd:3f:e0:92:11:d3: b6:4d:da:97:af:70:12:75:f1:11:d9:52:84:56:5a: d4:08:be:35:a2:3c:11:0d:3f:3e:9d:a5:37:f3:be: f2:bb:4c:ce:3e:b3:60:12:0e:20:fd:4a:67:9e:78: 62:df:99:25:a6:c0:b2:6f:87:56:49:7f:83:dc:8d: 0a:67:da:b5:96:89:4f:59:50:29:8f:50:b5:db:54: 31:95:fd:9f:67:6c:71:b1:e7:b2:1d:b2:63:b6:d4: 8d:db:65:b1:1f:1b:12:6a:17:a3:3d:6a:a8:41:36: 4d:9d:97:5f:e1:35:1a:f0:21:5d:55:12:01:10:12: 7e:69:86:65:52:10:ee:04:39:2e:1b:f2:c0:6e:d8: f3:38:ca:2a:d7:c4:e0:ec:c9:4f:60:9d:8a:e5:22: 5b:e9:41:6a:a8:1b:6d:dd:91:a9:f4:ea:75:7b:a8: 2d:2f:45:35:5b:63:52:69:f2:93:68:75:b9:7f:1e: 77:d1:18:84:b2:56:16:6b:69:9c:ee:c7:2c:af:19: a6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:96:AA:8C:A7:72:51:AF:28:12:F3:B7:B7:2A:C6:24:CE:06:36:17 X509v3 Authority Key Identifier: keyid:D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e9:58:b9:6a:b6:b2:5d:bf:b3:b7:ef:c2:80:8b:bc:2e:04: 1a:04:88:0c:7d:18:2a:4d:9c:4f:7c:ab:b3:af:c1:76:27:79: 68:fe:54:79:d0:c0:ed:89:c7:1a:37:7d:0e:6b:19:62:5c:c5: 56:ef:af:a7:dc:ab:43:cc:e7:65:17:92:57:aa:48:fb:ab:5a: a1:37:c2:45:c1:b5:94:d4:ab:d0:99:37:28:40:9f:19:e0:93: 0e:aa:93:32:cc:ea:96:44:17:2e:d8:65:1c:df:ee:d9:35:22: 6c:0b:e2:12:ed:9b:ce:60:84:43:6c:ce:c8:e3:00:76:72:e7: 87:74:c3:57:e4:e0:c3:ab:fa:c9:35:8b:a4:c4:5b:68:08:3f: a2:f1:7c:fa:64:cf:fe:80:a8:de:09:2a:ee:3e:52:2f:6f:51: 24:09:70:6e:95:37:de:b7:06:34:ec:cc:ab:4b:22:03:ae:d7: d4:9a:8a:db:a9:36:b6:24:7d:e0:d2:ab:54:d0:fe:56:92:86: 84:78:53:e5:79:90:9f:1c:ac:31:b2:3b:2d:32:17:67:60:88: de:b3:75:42:73:dc:65:6a:eb:66:32:15:19:f5:e0:f7:ff:ac: 8b:93:41:d8:51:be:65:8f:04:7c:60:f7:57:54:02:21:57:32: c6:ac:fb:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKEQ0Njk2NEY5RjM3MzFGMkY2M0U2NzAwOEM5MUU1OUM3 RENDNzg1NTcwHhcNMjUxMDE5MDkxMTIzWhcNMjUxMDI2MDkxMTIyWjAYMRYwFAYD VQQDEw02OGY0YWIzYi1jZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6ymL+xAUyBEgn3wCaod2+1R+XR684024n2KHqI6svgRRb+NIRYQ4SJclTc2 cJttEevRoIq9P+CSEdO2TdqXr3ASdfER2VKEVlrUCL41ojwRDT8+naU3877yu0zO PrNgEg4g/Upnnnhi35klpsCyb4dWSX+D3I0KZ9q1lolPWVApj1C121Qxlf2fZ2xx seeyHbJjttSN22WxHxsSahejPWqoQTZNnZdf4TUa8CFdVRIBEBJ+aYZlUhDuBDku G/LAbtjzOMoq18Tg7MlPYJ2K5SJb6UFqqBtt3ZGp9Op1e6gtL0U1W2NSafKTaHW5 fx530RiEslYWa2mc7scsrxmmcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmWqoyn clGvKBLzt7cqxiTOBjYXMB8GA1UdIwQYMBaAFNRpZPnzcx8vY+ZwCMkeWcfcx4VX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FOTI2RTkxMjlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi8xR2xrLWZOekh5OWo1bkFJeVI1Wng5ekho VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFHbGstZk56SHk5ajVuQUl5UjVaeDl6SGhWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FOTI2RTkxMjlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi8xR2xrLWZOekh5 OWo1bkFJeVI1Wng5ekhoVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA86Vi5arayXb+zt+/CgIu8LgQaBIgMfRgqTZxPfKuzr8F2J3lo/lR5 0MDticcaN30OaxliXMVW76+n3KtDzOdlF5JXqkj7q1qhN8JFwbWU1KvQmTcoQJ8Z 4JMOqpMyzOqWRBcu2GUc3+7ZNSJsC+IS7ZvOYIRDbM7I4wB2cueHdMNX5ODDq/rJ NYukxFtoCD+i8Xz6ZM/+gKjeCSruPlIvb1EkCXBulTfetwY07MyrSyIDrtfUmorb qTa2JH3g0qtU0P5WkoaEeFPleZCfHKwxsjstMhdnYIjes3VCc9xlautmMhUZ9eD3 /6yLk0HYUb5ljwR8YPdXVAIhVzLGrPsv -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:56 2025 by rpki-client