$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: t3TIZm8oYS9Q2wg3Z9+MFVQ3fD6wEdQS6eiamgN/YL4= Subject key identifier: 37:27:43:06:63:0C:EE:78:43:14:4D:C6:20:9E:D2:A1:B7:32:00:2F Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 065B Signing time: Wed 02 Jul 2025 22:51:37 +0000 Manifest this update: Wed 02 Jul 2025 22:51:36 +0000 Manifest next update: Wed 09 Jul 2025 22:51:36 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: bkCTDYSNoWZN3lV9BFleG9jWFwcoJ4toO8xTSAw2ww8=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: NEghmZK6SR0tR3ZI4129y+/95/Ec7cMoQlur8P+TYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Jul 2 22:51:36 2025 GMT Not After : Jul 9 22:51:36 2025 GMT Subject: CN=6865b7f8-0195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:43:aa:05:48:6c:74:08:8a:d6:8f:94:12:14: 72:7d:ea:d7:58:b2:ab:7c:e7:ff:70:44:17:d0:ae: 33:d9:35:21:e6:94:7c:d6:fa:d1:cf:59:18:87:7b: 67:70:52:24:f5:9c:69:6a:e4:b4:85:b7:a0:fe:b6: 1c:80:20:88:a6:7c:0f:bb:ea:9a:fc:25:40:41:3c: 2d:68:62:b7:55:a8:78:19:f8:5e:e9:ed:fc:4a:de: 65:60:e7:b0:3c:17:e8:27:80:ff:a9:09:6d:23:01: 05:e0:c2:17:75:40:4a:0a:67:dd:a1:ac:e3:16:22: d9:5f:f5:a1:cf:85:67:ea:95:8f:d1:d9:9a:f8:ba: cd:5c:54:23:18:88:79:c6:26:67:0f:b9:82:8c:85: c5:a5:13:d6:61:75:66:4b:ab:94:ec:59:e9:02:49: 08:cb:cd:f1:0f:8b:75:c5:20:80:07:b8:50:5c:75: 5b:75:52:ba:f2:0b:0b:f2:19:01:bd:8b:99:88:0c: 8d:db:9d:2d:30:56:2d:0d:28:6a:2e:90:fe:af:44: 4c:ae:dd:1f:b6:9f:60:ee:dd:e8:c0:fa:34:4b:6e: 43:d8:4d:40:79:45:3f:d7:ff:e9:a4:29:c4:b5:df: a0:0d:b6:83:64:33:79:7b:02:dd:b4:fc:10:bd:99: aa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:27:43:06:63:0C:EE:78:43:14:4D:C6:20:9E:D2:A1:B7:32:00:2F X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c2:17:82:4b:e7:a8:b2:c5:94:40:a6:be:a3:41:d4:a8:92: c4:8d:82:6a:24:79:f1:ab:c0:28:d6:fa:af:d7:6d:b1:e0:e3: a2:14:8a:fe:e4:c1:db:87:c5:d9:30:e8:58:a8:ec:f8:5d:99: ca:c6:dd:f6:ad:08:28:d9:a3:b5:d6:61:0c:f0:f8:96:0b:51: 9a:73:b6:f6:b5:92:2e:b4:28:2b:74:40:cc:62:59:ba:14:c4: 7b:8e:6d:29:35:de:8f:ff:cc:ab:b1:75:69:01:63:80:7f:e0: b6:8e:18:0e:f2:bd:55:05:38:05:cc:b9:7b:04:46:c3:cb:a2: 3f:26:2a:fc:4d:3a:67:26:1b:7f:de:2d:67:1c:0a:70:af:72: 2d:8e:a4:5c:c9:6c:a7:54:2c:28:9c:ef:46:c6:31:8a:82:59: b4:b9:5c:c4:4a:9a:ef:74:56:07:f4:54:08:f2:74:72:4a:0f: 4d:da:54:ca:f9:ae:a9:e6:5d:e5:9c:c2:b9:2b:02:d7:68:7e: 87:0a:e6:92:af:ba:78:82:ef:3a:06:58:fe:53:14:80:45:0a: 4b:e8:ed:d3:0e:78:22:cc:a5:06:43:27:7a:54:0f:7e:29:2d: 83:d6:68:26:4d:0e:9b:61:29:e8:10:b1:f3:52:b4:bc:16:c7: a8:09:2c:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwNzAyMjI1MTM2WhcNMjUwNzA5MjI1MTM2WjAYMRYwFAYD VQQDEw02ODY1YjdmOC0wMTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUOqBUhsdAiK1o+UEhRyferXWLKrfOf/cEQX0K4z2TUh5pR81vrRz1kYh3tn cFIk9ZxpauS0hbeg/rYcgCCIpnwPu+qa/CVAQTwtaGK3Vah4Gfhe6e38St5lYOew PBfoJ4D/qQltIwEF4MIXdUBKCmfdoazjFiLZX/Whz4Vn6pWP0dma+LrNXFQjGIh5 xiZnD7mCjIXFpRPWYXVmS6uU7FnpAkkIy83xD4t1xSCAB7hQXHVbdVK68gsL8hkB vYuZiAyN250tMFYtDShqLpD+r0RMrt0ftp9g7t3owPo0S25D2E1AeUU/1//ppCnE td+gDbaDZDN5ewLdtPwQvZmqZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcnQwZj DO54QxRNxiCe0qG3MgAvMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCwheCS+eossWUQKa+o0HUqJLEjYJqJHnxq8Ao1vqv122x4OOiFIr+ 5MHbh8XZMOhYqOz4XZnKxt32rQgo2aO11mEM8PiWC1Gac7b2tZIutCgrdEDMYlm6 FMR7jm0pNd6P/8yrsXVpAWOAf+C2jhgO8r1VBTgFzLl7BEbDy6I/Jir8TTpnJht/ 3i1nHApwr3ItjqRcyWynVCwonO9GxjGKglm0uVzESprvdFYH9FQI8nRySg9N2lTK +a6p5l3lnMK5KwLXaH6HCuaSr7p4gu86Blj+UxSARQpL6O3TDngizKUGQyd6VA9+ KS2D1mgmTQ6bYSnoELHzUrS8FseoCSy+ -----END CERTIFICATE-----Generated at Thu Jul 3 09:10:19 2025 by rpki-client