$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: Be/+ZDEmX1TMKRgFS7QmTB9cgU7pJMkzsf5gKM/ekFw= Subject key identifier: 16:71:13:35:71:EA:40:E6:17:53:25:F1:0E:3C:96:CB:FF:04:E6:26 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0663 Signing time: Fri 18 Jul 2025 22:50:20 +0000 Manifest this update: Fri 18 Jul 2025 22:50:20 +0000 Manifest next update: Fri 25 Jul 2025 22:50:20 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: PBhUSVCGtp79IT4DxHtKy46urwJWu4eFnpEd6NIvETQ=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: NEghmZK6SR0tR3ZI4129y+/95/Ec7cMoQlur8P+TYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Jul 18 22:50:20 2025 GMT Not After : Jul 25 22:50:20 2025 GMT Subject: CN=687acfac-910f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:25:48:1a:32:4d:33:11:8e:54:bd:3c:5d: 62:66:77:c7:85:a3:29:70:22:5d:bb:ee:46:65:84: c3:a5:87:22:cc:bd:95:33:9a:3a:b9:19:39:dd:13: 4a:57:0b:c5:31:12:05:b2:7e:9a:96:7c:da:53:56: 87:b2:6f:2e:b1:28:b6:28:34:04:8f:14:a4:78:56: 1d:a9:f9:d7:a4:49:e8:40:c7:ed:b6:00:f9:0c:eb: 7b:44:f6:bd:30:87:cd:47:7a:f9:7e:8a:86:1a:fa: a6:90:c9:0f:7f:48:b9:f0:dd:45:ad:d3:1b:ba:7a: 7b:22:1e:35:24:eb:25:a5:84:b7:f9:12:22:3f:dc: 19:fc:98:a2:15:e7:cf:ab:81:4b:6a:63:37:38:6a: d0:42:40:61:b1:52:98:44:e8:38:75:83:f2:dd:6b: ab:bc:40:b5:8e:e6:ce:bf:0c:82:7f:0e:70:28:e0: cc:26:a7:09:4e:6d:8d:46:e4:24:21:9f:ff:03:48: 5d:a6:18:60:0b:19:87:c2:27:45:4b:36:4a:9b:43: d9:68:24:30:87:e2:17:76:99:2f:64:92:ee:c4:05: 44:1c:4a:73:a0:79:34:cc:1b:9f:59:cd:43:6f:0e: ff:a4:3c:6a:b5:ce:f2:5b:1f:46:6a:b5:de:40:7f: 34:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:71:13:35:71:EA:40:E6:17:53:25:F1:0E:3C:96:CB:FF:04:E6:26 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:44:06:45:f8:c5:7a:18:da:46:5e:70:95:7f:2c:9f:93:86: 8e:bf:13:73:43:25:b8:d5:07:e7:f0:f9:b9:80:e6:e0:4e:3e: 39:49:89:4e:2c:f5:ad:83:8c:9e:b8:94:96:ac:b3:c2:de:2d: d6:52:93:9e:31:dd:d7:63:e4:32:38:40:b7:fa:89:bc:c9:55: 9a:ec:11:ef:a8:96:d5:1c:26:08:58:8d:ef:ba:89:cd:48:16: 9b:e6:d9:3d:5a:c1:9d:dc:e9:c3:9d:af:2f:66:78:fb:59:9f: 8b:28:d0:04:b6:f2:88:c4:5d:cd:85:0b:d7:d1:f8:f6:2d:bd: 67:4e:88:61:3f:22:55:99:63:3e:42:75:77:d0:85:c0:ae:31: 3c:ce:f5:19:df:37:6d:64:7b:1c:d5:cb:a6:8f:3a:b4:b3:12: 45:77:18:1e:78:07:e9:0a:02:c7:c6:7d:78:27:3c:bb:05:d0: 22:8b:42:dd:0b:d3:4c:72:9a:53:6c:0c:f4:8a:5e:0a:69:c1: 5e:a6:03:f9:60:9f:90:ab:93:77:97:05:38:cd:61:8c:de:0c: 80:fd:c5:a5:45:1e:6b:53:98:4c:b4:75:cc:33:4a:af:ab:77: 39:ec:90:ab:b0:3c:fa:55:7e:82:42:91:85:52:12:75:5e:d3: 04:1d:21:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwNzE4MjI1MDIwWhcNMjUwNzI1MjI1MDIwWjAYMRYwFAYD VQQDEw02ODdhY2ZhYy05MTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv0lSBoyTTMRjlS9PF1iZnfHhaMpcCJdu+5GZYTDpYcizL2VM5o6uRk53RNK VwvFMRIFsn6alnzaU1aHsm8usSi2KDQEjxSkeFYdqfnXpEnoQMfttgD5DOt7RPa9 MIfNR3r5foqGGvqmkMkPf0i58N1FrdMbunp7Ih41JOslpYS3+RIiP9wZ/JiiFefP q4FLamM3OGrQQkBhsVKYROg4dYPy3WurvEC1jubOvwyCfw5wKODMJqcJTm2NRuQk IZ//A0hdphhgCxmHwidFSzZKm0PZaCQwh+IXdpkvZJLuxAVEHEpzoHk0zBufWc1D bw7/pDxqtc7yWx9GarXeQH80yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZxEzVx 6kDmF1Ml8Q48lsv/BOYmMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6RAZF+MV6GNpGXnCVfyyfk4aOvxNzQyW41Qfn8Pm5gObgTj45SYlO LPWtg4yeuJSWrLPC3i3WUpOeMd3XY+QyOEC3+om8yVWa7BHvqJbVHCYIWI3vuonN SBab5tk9WsGd3OnDna8vZnj7WZ+LKNAEtvKIxF3NhQvX0fj2Lb1nTohhPyJVmWM+ QnV30IXArjE8zvUZ3zdtZHsc1cumjzq0sxJFdxgeeAfpCgLHxn14Jzy7BdAii0Ld C9NMcppTbAz0il4KacFepgP5YJ+Qq5N3lwU4zWGM3gyA/cWlRR5rU5hMtHXMM0qv q3c57JCrsDz6VX6CQpGFUhJ1XtMEHSH0 -----END CERTIFICATE-----Generated at Sun Jul 20 10:59:19 2025 by rpki-client