$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: 33jdHSpXDBCpZqo7sOoYNzOMJH+f/zgILCd2JWcGWN0= Subject key identifier: 21:E7:57:68:92:BD:C6:65:78:01:D6:79:56:5E:D3:DD:15:AF:20:37 Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0637 Signing time: Thu 24 Apr 2025 22:27:20 +0000 Manifest this update: Thu 24 Apr 2025 22:27:20 +0000 Manifest next update: Thu 01 May 2025 22:27:20 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: HsmTtjJINGaWi8nrslKbIA4/NYEkFoe5XoRF6JBofQk=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: Ef/n9FoPzBDkjpMc9XUOPJVBpNPzwyhkP30323HeIr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E, serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Apr 24 22:27:20 2025 GMT Not After : May 1 22:27:20 2025 GMT Subject: CN=680abac8-f5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6d:c0:37:21:cd:85:87:67:5b:6c:d8:9b:5b: c4:15:40:5c:c0:4e:d6:7d:a4:e7:8d:e5:3d:ea:d6: 0b:f8:20:9d:08:98:27:c9:c6:27:87:e3:a9:72:91: 39:f4:7a:f3:cf:45:2e:ff:ee:da:13:03:dc:f1:6e: 5f:f1:d6:27:aa:31:df:cc:fd:93:4b:bb:43:8c:3e: 47:52:2d:c5:fe:31:ec:14:0f:26:3b:59:2e:fb:6b: 65:36:4f:a4:02:61:75:da:0f:bf:18:cd:ed:c1:d6: 32:6c:fe:0b:6e:17:67:56:35:82:bf:ab:6f:69:2e: 18:e1:a7:ba:e4:ab:05:6c:f5:c4:bd:b4:f1:8f:ac: e2:36:63:1e:e0:0a:3d:0d:15:82:ed:b5:0d:08:66: 2e:d5:fe:18:9d:9c:4c:cf:a7:62:8f:5e:5e:ef:a4: a8:3c:59:12:fe:8a:51:4a:9f:26:61:7f:3f:c3:8d: b1:4a:eb:15:88:d2:dc:ec:22:bd:ca:b8:77:87:96: cf:85:41:46:82:54:a0:19:54:70:67:e1:2b:57:78: 80:06:75:43:e6:1e:e7:32:48:7e:42:b8:36:61:f6: 68:9d:79:76:ae:e1:ce:4a:a0:ea:0a:5d:2d:24:06: 8b:65:71:76:76:49:81:61:77:59:f9:d6:a9:39:7b: 8f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E7:57:68:92:BD:C6:65:78:01:D6:79:56:5E:D3:DD:15:AF:20:37 X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:18:b3:a0:3d:4f:b5:3f:e8:12:60:73:8d:19:0f:1c:e1:6e: 6b:5d:d2:b8:54:59:06:98:e3:69:b4:50:c1:e8:ed:5b:41:89: 4a:ca:b5:d0:f0:32:aa:88:94:bd:ba:d9:7e:0c:b4:13:5a:6f: f2:e4:8d:e0:e1:d2:4b:0f:f9:df:c9:b0:47:0d:20:17:d5:c6: a9:70:71:8d:4d:7a:66:bd:2f:b9:7d:86:3a:6f:8e:1d:7e:7b: 77:cb:ba:d3:43:a4:9e:02:6a:15:d5:c5:f9:ac:e5:4c:f1:96: 9d:9e:c3:14:9d:67:e8:23:41:46:fe:b8:2f:00:e7:69:68:ed: 87:e9:cc:b0:ae:25:a1:b3:40:51:50:fe:cc:48:18:9f:1d:c8: 7a:1a:2b:b3:dc:32:f0:c5:23:02:ca:ae:27:51:ca:6f:f7:f6: 6c:cd:3c:48:ff:69:cf:b9:1f:7a:d3:24:ae:9d:f1:f8:ef:ee: fc:66:2b:bb:1e:d9:14:fb:f5:ff:13:53:f6:e5:87:b2:c5:fe: 44:a7:51:9a:42:c2:d9:86:22:97:34:eb:c7:a3:db:f5:77:fc: 58:ea:45:57:00:02:f7:7c:e7:43:49:ec:5e:65:5f:be:6b:da: a8:cb:34:5a:a9:ba:b0:1c:4b:30:39:38:aa:a4:5b:d3:bb:fa: 7a:c6:98:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjUwNDI0MjIyNzIwWhcNMjUwNTAxMjIyNzIwWjAYMRYwFAYD VQQDEw02ODBhYmFjOC1mNWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG3ANyHNhYdnW2zYm1vEFUBcwE7WfaTnjeU96tYL+CCdCJgnycYnh+OpcpE5 9Hrzz0Uu/+7aEwPc8W5f8dYnqjHfzP2TS7tDjD5HUi3F/jHsFA8mO1ku+2tlNk+k AmF12g+/GM3twdYybP4LbhdnVjWCv6tvaS4Y4ae65KsFbPXEvbTxj6ziNmMe4Ao9 DRWC7bUNCGYu1f4YnZxMz6dij15e76SoPFkS/opRSp8mYX8/w42xSusViNLc7CK9 yrh3h5bPhUFGglSgGVRwZ+ErV3iABnVD5h7nMkh+Qrg2YfZonXl2ruHOSqDqCl0t JAaLZXF2dkmBYXdZ+dapOXuPcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHnV2iS vcZleAHWeVZe090VryA3MB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZGLOgPU+1P+gSYHONGQ8c4W5rXdK4VFkGmONptFDB6O1bQYlKyrXQ 8DKqiJS9utl+DLQTWm/y5I3g4dJLD/nfybBHDSAX1capcHGNTXpmvS+5fYY6b44d fnt3y7rTQ6SeAmoV1cX5rOVM8ZadnsMUnWfoI0FG/rgvAOdpaO2H6cywriWhs0BR UP7MSBifHch6Giuz3DLwxSMCyq4nUcpv9/ZszTxI/2nPuR960ySunfH47+78Ziu7 HtkU+/X/E1P25Yeyxf5Ep1GaQsLZhiKXNOvHo9v1d/xY6kVXAAL3fOdDSexeZV++ a9qoyzRaqbqwHEswOTiqpFvTu/p6xpjt -----END CERTIFICATE-----Generated at Sat Apr 26 15:08:59 2025 by rpki-client