$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: jQw42ial6iHmznvJ4dDKX6EzKy1hB7KWs3L40G47C2g= Subject key identifier: C6:26:09:03:45:74:D1:19:C5:54:D2:AF:2C:7E:A5:05:21:91:A6:E5 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0670 Signing time: Tue 12 Aug 2025 22:52:44 +0000 Manifest this update: Tue 12 Aug 2025 22:52:44 +0000 Manifest next update: Tue 19 Aug 2025 22:52:44 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: A3TKXBFw5nggRgZhKuyqIxOKQ8TA5ATcEEBarO8swi0=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: NEghmZK6SR0tR3ZI4129y+/95/Ec7cMoQlur8P+TYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Aug 12 22:52:44 2025 GMT Not After : Aug 19 22:52:44 2025 GMT Subject: CN=689bc5bc-76c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b0:d2:f8:df:6a:d2:24:db:c6:be:0a:92:57: ec:f2:bf:2d:69:7d:d1:b4:b8:44:e9:91:79:67:a4: c5:1a:b6:cf:e2:a3:f4:7d:05:f9:a3:c8:58:88:51: 7b:6e:ac:3a:c4:76:81:69:0c:d2:e0:2f:ff:c4:10: 37:0a:78:03:6a:1c:fd:8e:10:b1:4f:6f:14:4a:c9: e1:9a:5e:d0:cb:0d:56:2c:03:99:85:39:98:51:94: e0:cd:1a:de:65:99:61:bf:5d:74:57:43:b3:0b:1b: e8:43:5f:73:11:e4:f5:ec:f0:8e:a9:15:e3:25:bc: 3f:dc:1b:c0:9b:cb:a9:68:c9:82:2a:91:21:6a:f5: 05:4d:fd:13:35:a2:02:82:d7:bc:d7:f5:bd:d1:5b: f9:e3:6e:14:f8:e1:26:2b:33:df:d9:50:db:69:4a: ab:23:61:01:77:98:75:b2:33:d1:4b:d6:ad:f4:bc: 34:c9:2a:b5:f1:6e:06:a1:be:34:e6:0c:33:15:c1: 53:f0:5e:9b:b9:ab:63:b1:f8:7e:5e:39:fe:80:b9: d6:71:cc:73:85:ca:c9:98:9c:d8:b5:f1:88:cc:d2: da:d6:1c:82:65:e7:44:75:cf:b3:0f:fd:13:bf:7b: 4a:4c:58:99:0c:ec:15:d7:6f:41:27:eb:a0:32:2d: 67:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:26:09:03:45:74:D1:19:C5:54:D2:AF:2C:7E:A5:05:21:91:A6:E5 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:c6:a5:f8:f6:ca:43:2e:ca:16:06:25:25:21:6c:2a:27:3a: 50:f3:62:f4:6b:ec:a5:0d:f8:f8:f5:cd:72:b5:56:2a:4d:b7: 75:78:95:70:f9:66:30:d9:9d:3b:9a:4b:05:70:f8:01:80:c7: 74:69:97:61:71:c4:1f:2b:28:ab:04:6d:09:62:7a:11:c2:a4: 06:3c:ee:19:8e:6e:20:a4:f8:65:71:06:41:b0:07:c4:db:8c: fd:4c:7a:b1:05:0b:9d:67:19:1d:8f:aa:e5:8e:e9:df:9c:c9: 3c:e6:0e:aa:7c:03:76:42:e6:de:13:33:5c:9b:ef:26:2e:91: 42:fe:8f:48:e8:5a:6c:47:73:f1:28:2b:00:d4:98:b8:45:64: 9e:1b:78:a7:2a:3a:05:3c:b9:c6:b5:1a:54:66:b5:db:ad:40: 83:39:14:f1:3d:54:71:2e:d1:e2:a3:79:76:ac:6f:10:ed:d7: 0e:ed:4d:0d:0a:30:59:88:1c:14:fc:f4:84:3e:d5:f5:c8:67: 77:d8:c2:ac:4a:ee:d6:5b:c3:21:81:bc:5b:29:06:ae:53:fc: d2:48:77:04:5c:f5:80:1a:ce:e6:ef:48:14:ad:3e:7c:41:eb: f9:d7:e8:75:2e:e1:05:72:fc:65:75:ff:55:87:80:50:03:61: 02:9d:80:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwODEyMjI1MjQ0WhcNMjUwODE5MjI1MjQ0WjAYMRYwFAYD VQQDEw02ODliYzViYy03NmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LDS+N9q0iTbxr4Kklfs8r8taX3RtLhE6ZF5Z6TFGrbP4qP0fQX5o8hYiFF7 bqw6xHaBaQzS4C//xBA3CngDahz9jhCxT28USsnhml7Qyw1WLAOZhTmYUZTgzRre ZZlhv110V0OzCxvoQ19zEeT17PCOqRXjJbw/3BvAm8upaMmCKpEhavUFTf0TNaIC gte81/W90Vv5424U+OEmKzPf2VDbaUqrI2EBd5h1sjPRS9at9Lw0ySq18W4Gob40 5gwzFcFT8F6buatjsfh+Xjn+gLnWccxzhcrJmJzYtfGIzNLa1hyCZedEdc+zD/0T v3tKTFiZDOwV129BJ+ugMi1n1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYmCQNF dNEZxVTSryx+pQUhkablMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJxqX49spDLsoWBiUlIWwqJzpQ82L0a+ylDfj49c1ytVYqTbd1eJVw +WYw2Z07mksFcPgBgMd0aZdhccQfKyirBG0JYnoRwqQGPO4Zjm4gpPhlcQZBsAfE 24z9THqxBQudZxkdj6rljunfnMk85g6qfAN2QubeEzNcm+8mLpFC/o9I6FpsR3Px KCsA1Ji4RWSeG3inKjoFPLnGtRpUZrXbrUCDORTxPVRxLtHio3l2rG8Q7dcO7U0N CjBZiBwU/PSEPtX1yGd32MKsSu7WW8MhgbxbKQauU/zSSHcEXPWAGs7m70gUrT58 Qev51+h1LuEFcvxldf9Vh4BQA2ECnYB+ -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:03 2025 by rpki-client