$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: jm6m133BvyuMdP+nQgHyGykiaTCykF52bmq53P+68C0= Subject key identifier: 13:65:2B:79:D7:13:12:F7:E1:E1:70:C3:AA:A1:53:1C:E3:D6:D9:C8 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0692 Signing time: Sat 18 Oct 2025 23:54:42 +0000 Manifest this update: Sat 18 Oct 2025 23:54:42 +0000 Manifest next update: Sat 25 Oct 2025 23:54:42 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: wvsPTK45bXY8tpDml1a6Kn2gIvYy+gccdIwyluwspio=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: NEghmZK6SR0tR3ZI4129y+/95/Ec7cMoQlur8P+TYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Oct 18 23:54:42 2025 GMT Not After : Oct 25 23:54:42 2025 GMT Subject: CN=68f428c2-5d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:99:f0:5b:f2:13:59:fe:f6:97:87:ff:c4:9c: 94:8a:78:3c:25:f3:a3:18:b6:34:e5:7f:b8:be:39: 9c:9a:11:6c:52:d8:3a:e2:dd:2b:13:6a:87:3c:86: 9d:30:e8:84:01:15:98:9c:b5:25:05:78:e3:50:69: cb:db:1f:cb:f0:fd:5b:b4:c7:c1:2f:8e:a0:87:2a: d7:e7:fa:1f:40:4d:33:9c:12:c2:a9:ab:86:f9:79: 2e:a9:ed:77:aa:de:65:6e:2d:a2:0e:20:05:8e:75: b8:ef:45:16:22:54:ad:bd:c9:fc:28:70:69:5f:14: 84:d1:ef:3a:88:63:1a:ec:3d:3f:bb:63:d4:0c:e3: 64:1f:52:0c:3b:9e:9d:bf:af:4b:32:b5:67:1d:05: e6:75:24:26:08:cc:21:24:97:3b:a1:c7:e6:01:39: bc:93:1e:5c:86:1e:e2:96:b2:b8:07:c0:d7:57:ef: d2:c3:c4:0f:62:d4:63:5d:31:dc:14:89:ff:ad:de: 77:79:67:f8:46:c5:76:c0:2c:77:f2:23:db:51:b6: b2:2b:d3:dc:cb:d0:92:a1:89:c8:fb:44:d3:bf:f7: 26:af:5b:67:78:f7:d9:77:76:22:87:29:41:a0:18: 55:bb:86:94:15:e1:b0:cb:85:c1:3c:80:b7:12:ce: 9e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:65:2B:79:D7:13:12:F7:E1:E1:70:C3:AA:A1:53:1C:E3:D6:D9:C8 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ba:7b:eb:41:7e:5d:17:35:4d:8a:85:2c:38:f6:e7:bc:1c: 39:d0:fb:6b:60:cd:7b:65:70:89:e9:d6:4c:7b:bd:0a:9d:79: 20:1d:b1:35:ad:ea:75:28:36:80:7c:db:30:46:d0:a7:4b:f2: e7:0b:c1:2e:e3:4e:4f:e0:d0:10:f8:03:f5:f7:5a:e7:d7:60: 71:39:7b:c5:8c:82:71:2b:b0:12:3c:34:4a:d5:18:d9:8a:05: 53:1b:f7:50:ab:7b:ab:e0:29:f8:fe:df:cd:87:3c:d2:44:ae: b7:ad:00:3a:b8:c8:d6:56:a4:a5:bb:15:9f:66:19:02:80:27: 7c:76:da:c4:4f:61:82:55:3b:d1:28:52:fa:4a:99:e0:f8:08: b6:11:69:80:e7:3b:a9:eb:ff:88:88:d9:03:ea:62:32:b5:da: 65:3f:f0:6e:e7:a0:ef:f2:47:09:45:cb:4a:1d:e6:8a:9e:da: b9:3e:eb:e5:f8:52:25:1d:ab:4f:82:d7:8d:31:2b:bf:03:0c: 74:52:82:f3:4b:a5:b7:ec:38:d7:67:c6:f5:46:98:95:16:12: 1c:93:d5:ca:5b:1a:eb:9b:46:df:4f:03:ba:d9:c7:90:d1:ee: 4c:0f:26:89:12:b3:89:6d:63:eb:0b:a6:5b:90:be:22:44:7c: 05:25:9f:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUxMDE4MjM1NDQyWhcNMjUxMDI1MjM1NDQyWjAYMRYwFAYD VQQDEw02OGY0MjhjMi01ZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypnwW/ITWf72l4f/xJyUing8JfOjGLY05X+4vjmcmhFsUtg64t0rE2qHPIad MOiEARWYnLUlBXjjUGnL2x/L8P1btMfBL46ghyrX5/ofQE0znBLCqauG+Xkuqe13 qt5lbi2iDiAFjnW470UWIlStvcn8KHBpXxSE0e86iGMa7D0/u2PUDONkH1IMO56d v69LMrVnHQXmdSQmCMwhJJc7ocfmATm8kx5chh7ilrK4B8DXV+/Sw8QPYtRjXTHc FIn/rd53eWf4RsV2wCx38iPbUbayK9Pcy9CSoYnI+0TTv/cmr1tnePfZd3YihylB oBhVu4aUFeGwy4XBPIC3Es6epQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNlK3nX ExL34eFww6qhUxzj1tnIMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrunvrQX5dFzVNioUsOPbnvBw50PtrYM17ZXCJ6dZMe70KnXkgHbE1 rep1KDaAfNswRtCnS/LnC8Eu405P4NAQ+AP191rn12BxOXvFjIJxK7ASPDRK1RjZ igVTG/dQq3ur4Cn4/t/NhzzSRK63rQA6uMjWVqSluxWfZhkCgCd8dtrET2GCVTvR KFL6Spng+Ai2EWmA5zup6/+IiNkD6mIytdplP/Bu56Dv8kcJRctKHeaKntq5Puvl +FIlHatPgteNMSu/Awx0UoLzS6W37DjXZ8b1RpiVFhIck9XKWxrrm0bfTwO62ceQ 0e5MDyaJErOJbWPrC6ZbkL4iRHwFJZ/r -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:45 2025 by rpki-client