$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: WqnqJ5Agq/4g0U/6k22qRqyd+isL5ogXXT5/ZAjC4g8= Subject key identifier: F7:E1:06:5D:0D:88:8A:E5:CA:3A:3D:25:74:05:8C:97:88:47:D0:C1 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 067F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0675 Signing time: Fri 22 Aug 2025 22:38:50 +0000 Manifest this update: Fri 22 Aug 2025 22:38:50 +0000 Manifest next update: Fri 29 Aug 2025 22:38:50 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: g9zIug03N2l2gvlqWMjSa0hdIHo36SMmuTYD280sPZs=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: NEghmZK6SR0tR3ZI4129y+/95/Ec7cMoQlur8P+TYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Aug 22 22:38:50 2025 GMT Not After : Aug 29 22:38:50 2025 GMT Subject: CN=68a8f17a-fbe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:19:5d:c4:0d:15:8e:af:5c:6b:5d:61:cd:28: b4:dd:26:a9:c1:6b:7a:71:14:14:26:cc:db:6e:91: 30:f0:a4:83:32:5b:fa:3d:bc:29:5c:b5:a1:f4:50: 50:24:db:d1:96:37:d5:d6:6b:6d:00:48:f1:e1:bc: 7c:dc:2f:47:3e:c2:be:51:99:c2:f9:e0:b6:6d:27: 9a:e2:12:9b:06:6b:54:f7:c6:46:8e:40:c7:84:31: ab:d3:22:a7:7c:6d:36:c2:d3:cd:bc:30:80:6e:58: e2:4e:b0:67:21:07:61:ac:f5:39:0d:ff:fc:c8:05: ec:f5:ff:5e:bd:71:77:7e:a7:e3:c8:f3:45:21:26: d5:aa:3a:7f:8b:65:1a:48:1e:b7:b5:c8:d0:35:93: 1e:29:8d:55:e8:30:a9:6c:61:24:4b:1b:bd:bd:fa: 17:32:06:1e:3c:f3:d2:e8:8a:e9:2d:b5:9d:2b:7b: 05:9a:48:61:92:f6:1b:e9:a2:52:39:cc:13:99:f6: 9e:3b:a1:ba:b5:37:48:17:20:bf:bd:b3:08:c1:65: 82:8b:b2:c0:ec:c4:ae:f2:4e:db:f4:de:64:d9:22: b2:78:df:83:57:9b:e1:45:d1:50:9b:53:ae:26:63: 65:35:32:86:33:3f:3b:1e:d5:a6:7b:f6:99:3b:dd: d3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E1:06:5D:0D:88:8A:E5:CA:3A:3D:25:74:05:8C:97:88:47:D0:C1 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:f0:5c:87:e7:71:8b:df:4a:e3:3d:69:1a:6c:eb:42:be:53: 02:6d:34:93:29:e3:d4:8d:af:1d:57:c5:0e:e0:6d:a0:ae:7d: c2:8f:65:ea:1b:22:f1:84:cb:7d:de:06:5a:e6:7b:5e:25:58: 3e:22:5f:cc:a4:92:9a:d5:0b:c8:ef:75:da:80:03:00:04:e9: e5:14:d9:b7:81:3a:98:6b:f9:fc:85:30:5b:56:bc:14:92:80: 22:ad:06:a2:66:bd:8d:c4:4d:44:c6:19:a1:da:20:72:d6:8e: b7:d3:9d:be:f6:d6:dc:d4:a0:74:c8:87:3d:ee:c4:f3:89:35: 7c:ee:ca:0c:43:36:1e:1a:96:bb:9d:d1:e7:90:ad:68:48:e2: d8:2a:9f:58:86:30:6e:69:6c:a3:b8:e1:82:b4:5e:29:c6:0e: 88:fb:5a:43:ce:89:c4:ec:0e:43:fd:5d:86:3a:46:f3:0b:ed: 08:4f:f9:9f:5c:93:b7:2a:06:08:1c:10:88:4f:32:12:36:c5: 6a:7f:de:d3:a7:1c:26:fd:6d:b7:fc:d5:0e:4a:12:95:65:62: c1:1c:54:fd:65:b2:6e:fc:96:8f:7a:f9:5e:8b:7b:7b:31:72: e0:f6:5b:45:7e:de:a4:d0:fc:72:ce:ee:7d:62:b4:17:44:70: 55:e6:2d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwODIyMjIzODUwWhcNMjUwODI5MjIzODUwWjAYMRYwFAYD VQQDEw02OGE4ZjE3YS1mYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RldxA0Vjq9ca11hzSi03SapwWt6cRQUJszbbpEw8KSDMlv6PbwpXLWh9FBQ JNvRljfV1mttAEjx4bx83C9HPsK+UZnC+eC2bSea4hKbBmtU98ZGjkDHhDGr0yKn fG02wtPNvDCAbljiTrBnIQdhrPU5Df/8yAXs9f9evXF3fqfjyPNFISbVqjp/i2Ua SB63tcjQNZMeKY1V6DCpbGEkSxu9vfoXMgYePPPS6IrpLbWdK3sFmkhhkvYb6aJS OcwTmfaeO6G6tTdIFyC/vbMIwWWCi7LA7MSu8k7b9N5k2SKyeN+DV5vhRdFQm1Ou JmNlNTKGMz87HtWme/aZO93TuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfhBl0N iIrlyjo9JXQFjJeIR9DBMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL8FyH53GL30rjPWkabOtCvlMCbTSTKePUja8dV8UO4G2grn3Cj2Xq GyLxhMt93gZa5nteJVg+Il/MpJKa1QvI73XagAMABOnlFNm3gTqYa/n8hTBbVrwU koAirQaiZr2NxE1Exhmh2iBy1o63052+9tbc1KB0yIc97sTziTV87soMQzYeGpa7 ndHnkK1oSOLYKp9YhjBuaWyjuOGCtF4pxg6I+1pDzonE7A5D/V2GOkbzC+0IT/mf XJO3KgYIHBCITzISNsVqf97Tpxwm/W23/NUOShKVZWLBHFT9ZbJu/JaPevlei3t7 MXLg9ltFft6k0Pxyzu59YrQXRHBV5i2c -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:32 2025 by rpki-client