$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: 0p5uXes4YwcZQTwI8v1YtIVOvHV+fQ1sIJB0ujpf7dE= Subject key identifier: 91:86:31:2E:9F:1E:8C:97:8F:04:DF:87:25:72:7F:0F:6F:67:DB:64 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 063A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0631 Signing time: Sat 12 Apr 2025 22:20:28 +0000 Manifest this update: Sat 12 Apr 2025 22:20:28 +0000 Manifest next update: Sat 19 Apr 2025 22:20:28 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: 5Lnu4enh4PwuDkuvX0HExKBlUp1TF/x0QcBWa8c9NDI=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: Ef/n9FoPzBDkjpMc9XUOPJVBpNPzwyhkP30323HeIr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Apr 12 22:20:28 2025 GMT Not After : Apr 19 22:20:28 2025 GMT Subject: CN=67fae72c-4248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a5:4a:25:77:e8:59:70:cb:88:7e:2e:20:17: 69:68:f5:a5:77:0d:38:70:72:d2:45:75:9a:22:0c: 6f:de:85:9f:60:50:5e:01:b0:36:08:4b:46:a3:de: ba:ea:e2:2e:90:8c:3d:7f:e3:fe:95:fe:10:5e:1d: e4:7c:90:eb:40:13:69:25:be:28:d3:b0:bc:17:1f: 54:bd:54:e1:38:1e:ff:4b:70:8f:ea:59:02:5d:4a: d4:59:9c:00:65:d1:20:05:d2:49:7b:e7:b7:ce:b0: a7:23:97:97:1e:07:b2:fd:a2:28:08:9c:87:52:2e: 68:77:14:ed:b8:42:f2:1c:e3:74:6e:f7:e1:7a:0c: 71:d2:13:d5:8e:83:59:9c:88:64:c7:f0:9c:44:56: 6d:9e:de:08:7c:12:29:ea:b1:b6:03:59:94:27:bd: 86:17:3d:3a:d4:81:c0:2e:3e:a3:fc:d3:66:a1:cd: 03:22:fd:3b:8e:3e:95:0a:81:81:da:3e:7f:05:11: 68:1a:af:28:0c:a0:b1:f6:b0:45:4d:c1:15:4b:f4: 9d:04:17:65:d8:5e:b9:57:bb:a4:92:e4:73:2d:7b: 6e:57:77:e2:6a:a6:6b:64:f8:b4:b2:c5:50:88:f0: 6c:4e:ff:49:fc:84:5f:de:e8:19:d5:7e:88:ee:64: 63:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:86:31:2E:9F:1E:8C:97:8F:04:DF:87:25:72:7F:0F:6F:67:DB:64 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:4c:50:1c:46:20:29:2f:74:b1:56:36:d8:b8:84:9d:db:df: ac:a5:51:c3:b1:17:ef:f3:23:85:c6:72:1b:98:8b:d7:97:4c: dd:5d:a4:9b:ca:80:1b:b3:23:b2:5e:1b:c5:a1:8b:19:21:eb: 12:3b:41:c7:35:39:a9:6e:09:bc:2e:04:79:18:ad:23:24:79: 49:3d:fe:4a:10:b3:33:30:d3:ec:80:c3:a6:d0:2a:ab:d0:21: 8e:58:86:40:c3:1a:23:33:56:ed:71:4c:74:76:70:c4:f3:85: 36:1a:c3:d7:d5:c9:38:4b:e4:cf:35:c4:c0:87:1d:57:b6:0f: cc:92:af:08:bc:0f:8f:ea:a7:fb:47:7e:c9:b2:89:d4:f2:f9: d5:43:ff:6a:0d:ec:02:6b:5c:50:b3:da:ed:8d:82:3e:a9:a3: 60:f1:f7:df:d8:04:c5:9f:a2:2c:41:c6:2c:35:af:c2:de:ef: f7:52:e5:ef:b1:4c:75:2b:7c:f0:91:39:bd:48:b5:3a:f9:42: 77:40:a2:a1:f0:f9:c1:78:29:02:26:2a:1e:7b:61:5d:bc:66: f3:23:67:b6:45:0a:af:14:e6:0e:6e:e0:e5:df:9d:38:fb:75: 58:08:94:08:05:01:08:d8:f0:00:70:95:88:a6:22:89:18:ba: 60:22:6e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwNDEyMjIyMDI4WhcNMjUwNDE5MjIyMDI4WjAYMRYwFAYD VQQDEw02N2ZhZTcyYy00MjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaVKJXfoWXDLiH4uIBdpaPWldw04cHLSRXWaIgxv3oWfYFBeAbA2CEtGo966 6uIukIw9f+P+lf4QXh3kfJDrQBNpJb4o07C8Fx9UvVThOB7/S3CP6lkCXUrUWZwA ZdEgBdJJe+e3zrCnI5eXHgey/aIoCJyHUi5odxTtuELyHON0bvfhegxx0hPVjoNZ nIhkx/CcRFZtnt4IfBIp6rG2A1mUJ72GFz061IHALj6j/NNmoc0DIv07jj6VCoGB 2j5/BRFoGq8oDKCx9rBFTcEVS/SdBBdl2F65V7ukkuRzLXtuV3fiaqZrZPi0ssVQ iPBsTv9J/IRf3ugZ1X6I7mRjxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGGMS6f HoyXjwTfhyVyfw9vZ9tkMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoTFAcRiApL3SxVjbYuISd29+spVHDsRfv8yOFxnIbmIvXl0zdXaSb yoAbsyOyXhvFoYsZIesSO0HHNTmpbgm8LgR5GK0jJHlJPf5KELMzMNPsgMOm0Cqr 0CGOWIZAwxojM1btcUx0dnDE84U2GsPX1ck4S+TPNcTAhx1Xtg/Mkq8IvA+P6qf7 R37JsonU8vnVQ/9qDewCa1xQs9rtjYI+qaNg8fff2ATFn6IsQcYsNa/C3u/3UuXv sUx1K3zwkTm9SLU6+UJ3QKKh8PnBeCkCJioee2FdvGbzI2e2RQqvFOYObuDl3504 +3VYCJQIBQEI2PAAcJWIpiKJGLpgIm51 -----END CERTIFICATE-----Generated at Sun Apr 13 05:57:48 2025 by rpki-client