$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: Ji+Y7YK7pTm8PEAF7FQf1Ai62g+i/AxaNG36yKqPYlc= Subject key identifier: 9D:75:66:8C:D7:01:7D:EC:A8:60:E3:CA:56:67:DB:B5:A7:4D:67:B6 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0651 Signing time: Thu 12 Jun 2025 22:13:47 +0000 Manifest this update: Thu 12 Jun 2025 22:13:46 +0000 Manifest next update: Thu 19 Jun 2025 22:13:46 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: IrTaR9PbwI9x7ykDSNWBtZQNZhAYrXiD0VPvCPLh5uo=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: NEghmZK6SR0tR3ZI4129y+/95/Ec7cMoQlur8P+TYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Jun 12 22:13:46 2025 GMT Not After : Jun 19 22:13:46 2025 GMT Subject: CN=684b511b-8f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:a8:7d:cf:b2:06:4f:0f:a1:fc:7f:31:74: cd:fa:e2:dd:64:e9:a3:2e:b7:82:dc:79:94:4c:be: 72:1d:26:3e:74:cc:a7:fb:84:31:78:38:05:ad:8a: 7c:40:3e:56:d6:ec:cd:df:aa:f4:a7:bc:ff:53:bf: 47:9e:a8:ae:91:3d:95:91:1a:29:2f:75:39:c6:56: 16:c6:9f:53:9d:f4:a5:97:c8:78:93:0d:f3:b9:e0: fe:cb:d4:02:6d:c3:78:5d:77:51:d0:93:c2:36:27: c6:73:fe:bd:b5:f3:4a:7a:e2:72:31:55:c0:c7:2f: d6:aa:b7:b2:df:43:bd:54:2b:fb:4e:0f:ca:10:8e: ad:4c:f7:6e:0f:64:37:e8:f2:ca:5f:1c:51:a9:56: d2:ed:58:40:4e:2e:c9:5f:1c:7a:78:f9:39:1f:5b: 52:91:3b:a2:47:cc:a9:d6:49:3b:ad:b2:56:db:3b: 52:7f:44:91:64:c1:88:4d:44:20:cc:91:c2:4e:d5: 6a:c7:2c:28:1c:72:75:48:0d:dd:1e:4e:bc:58:4f: c0:7f:e3:5c:ca:81:aa:38:6c:ff:ff:93:b7:2c:dc: 87:47:15:26:ff:54:e8:5a:ad:11:f1:42:1c:25:b8: f0:c5:83:1f:70:36:b8:ec:22:66:1c:c3:ee:f1:ff: f7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:75:66:8C:D7:01:7D:EC:A8:60:E3:CA:56:67:DB:B5:A7:4D:67:B6 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:80:75:68:2c:6f:eb:9a:f6:3f:f2:c8:b7:e6:dc:dc:87:50: a5:7d:cd:66:6c:f3:b3:d2:d5:b0:10:f8:ba:35:7b:6c:0a:6f: e1:c7:f4:71:04:32:51:10:a0:9d:15:c1:d9:dd:be:6e:58:67: e3:37:41:3a:64:10:83:79:c4:9c:ae:c5:c3:49:5c:3a:2e:94: d0:45:01:77:da:03:e4:80:07:6a:23:31:5e:66:ae:1a:75:20: 91:36:77:85:01:fb:b5:12:ef:a2:b4:e6:ee:04:d2:6b:e1:46: 39:ba:34:88:9b:d8:7b:d4:5f:23:f3:de:ac:fc:40:e9:99:fd: c3:16:ef:a1:b2:f4:6c:c6:8f:13:ca:98:94:3a:9d:3c:07:e9: bc:39:4d:f3:f7:05:09:f3:ff:cb:84:e1:c4:1a:bc:a0:81:82: fa:0a:73:44:d5:90:d3:ec:00:ec:14:f8:df:ab:5f:b5:d9:29: 1e:c1:6b:ad:a0:5b:d8:8a:0d:9d:f4:9e:b2:f0:e0:6c:31:84: b7:81:4e:a4:47:bb:e4:42:a9:3d:bb:ac:9b:c2:91:b0:2f:a1: 68:2a:89:7c:ab:72:af:7a:76:8a:ea:8e:ba:9d:87:08:14:b1: 86:b8:ee:52:4d:c7:ce:79:06:c8:a1:2b:d9:d8:68:78:d5:8c: f6:af:15:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwNjEyMjIxMzQ2WhcNMjUwNjE5MjIxMzQ2WjAYMRYwFAYD VQQDEw02ODRiNTExYi04Zjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutOofc+yBk8Pofx/MXTN+uLdZOmjLreC3HmUTL5yHSY+dMyn+4QxeDgFrYp8 QD5W1uzN36r0p7z/U79HnqiukT2VkRopL3U5xlYWxp9TnfSll8h4kw3zueD+y9QC bcN4XXdR0JPCNifGc/69tfNKeuJyMVXAxy/Wqrey30O9VCv7Tg/KEI6tTPduD2Q3 6PLKXxxRqVbS7VhATi7JXxx6ePk5H1tSkTuiR8yp1kk7rbJW2ztSf0SRZMGITUQg zJHCTtVqxywoHHJ1SA3dHk68WE/Af+NcyoGqOGz//5O3LNyHRxUm/1ToWq0R8UIc JbjwxYMfcDa47CJmHMPu8f/39QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ11ZozX AX3sqGDjylZn27WnTWe2MB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzgHVoLG/rmvY/8si35tzch1Clfc1mbPOz0tWwEPi6NXtsCm/hx/Rx BDJREKCdFcHZ3b5uWGfjN0E6ZBCDecScrsXDSVw6LpTQRQF32gPkgAdqIzFeZq4a dSCRNneFAfu1Eu+itObuBNJr4UY5ujSIm9h71F8j896s/EDpmf3DFu+hsvRsxo8T ypiUOp08B+m8OU3z9wUJ8//LhOHEGryggYL6CnNE1ZDT7ADsFPjfq1+12SkewWut oFvYig2d9J6y8OBsMYS3gU6kR7vkQqk9u6ybwpGwL6FoKol8q3KvenaK6o66nYcI FLGGuO5STcfOeQbIoSvZ2Gh41Yz2rxV8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:31:32 2025 by rpki-client