$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: biOUE5nkCouBb8xD6bMYgNmPbFzrGt9fo791TXKawaQ= Subject key identifier: EB:68:5F:D4:40:D0:63:87:56:C7:63:2D:7E:F7:A6:8C:DA:D1:86:31 Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: A8 Signing time: Mon 21 Jul 2025 06:20:24 +0000 Manifest this update: Mon 21 Jul 2025 06:20:23 +0000 Manifest next update: Mon 28 Jul 2025 06:20:23 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: MilpPz25yVlUcYj+glooy9XMctOURYC8p9BTZsDwTBQ=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: nmm+UaDTVZk1W14gJbVOSNyGWuVq3wHsOrXGhKoBHSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501, serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Validity Not Before: Jul 21 06:20:23 2025 GMT Not After : Jul 28 06:20:23 2025 GMT Subject: CN=687ddc27-1244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:af:2a:06:17:81:35:13:b2:88:23:27:4e:e7: 1c:04:5e:37:0b:1b:c9:f5:97:47:cf:24:97:b8:42: b7:16:d9:ac:17:c8:e1:8d:12:06:20:f5:d5:61:92: cb:41:a8:7a:0b:4a:74:40:d8:f7:a4:c1:c5:70:8c: 39:05:af:6d:57:5b:e6:43:d3:81:e2:10:09:6d:8f: 79:a8:8f:1b:15:bb:dc:bc:bf:83:c2:8e:78:07:6e: 24:8d:b0:02:92:bb:78:4a:84:77:71:dd:e8:3a:63: 80:be:2e:5f:b9:2c:ae:55:25:6f:63:90:5e:f4:bb: 86:f1:72:41:fa:a6:7f:86:78:e8:8d:2c:26:1c:50: 8e:c6:74:90:c2:6c:f8:2c:75:98:33:90:0c:f0:63: b5:32:6a:8f:88:29:6a:ca:3a:f1:16:f9:98:13:07: d6:b2:f3:1e:8c:fb:c5:11:17:23:7c:56:3f:16:54: 4b:4c:41:3f:20:75:35:46:57:33:f9:af:0e:95:25: f4:8c:08:42:c3:62:fe:fe:c8:4b:42:e1:1d:7b:7e: 4c:a7:6e:8f:9c:17:dd:48:ed:78:58:e5:49:ab:59: 5d:95:11:ac:c4:9b:b3:fa:55:15:b9:f9:da:9f:da: 46:e2:66:53:02:d6:7e:b7:1c:9e:7d:f1:62:c2:63: 13:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:68:5F:D4:40:D0:63:87:56:C7:63:2D:7E:F7:A6:8C:DA:D1:86:31 X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:bb:a3:7d:07:fc:9c:b0:10:af:e5:6e:c2:52:57:e8:34:14: 60:36:87:d5:05:d1:57:e8:c2:68:57:9c:0e:c7:ac:45:c8:e5: d9:aa:ba:38:bb:e7:b7:a1:2b:52:fd:40:6a:d8:20:8a:59:5b: 77:db:40:46:33:67:53:ea:90:0a:c1:ef:44:2c:88:a4:66:91: 59:14:e8:dd:fe:04:14:8a:8a:31:b5:4f:d6:79:3b:81:cd:41: 81:c5:14:fc:27:63:a4:86:66:fa:2f:dc:cd:d5:fd:e6:91:b3: 0e:db:98:60:95:26:35:b9:c2:02:bd:fb:51:da:c5:12:c2:53: f2:de:77:52:4a:e9:84:5f:69:ae:63:78:98:49:90:d0:2c:91: cd:b7:5c:b3:4d:79:e0:1e:08:8a:2a:87:c0:82:4f:24:5b:ba: 1a:24:1f:5b:67:05:40:49:74:f2:ca:6e:8f:8c:b3:68:3a:7c: b6:5c:2e:fc:ab:90:60:9b:f8:16:91:fe:80:09:73:e2:ca:52: 80:4c:f7:91:14:9f:5e:71:40:fb:71:1f:fa:cd:0c:d0:fc:06: cb:6d:3b:f4:26:d1:5d:7f:a6:c4:37:b6:c4:35:55:82:79:0d: 24:61:26:7e:fa:1e:57:ac:7c:45:73:29:9e:6f:03:dd:e0:51: 94:55:1a:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1MDExMTAvBgNVBAUTKDk5QTc2NkQ0Q0ZBNDVBOUY5RTM3NzgyNTA0OThCMTI3 NjhDNDFFMUEwHhcNMjUwNzIxMDYyMDIzWhcNMjUwNzI4MDYyMDIzWjAYMRYwFAYD VQQDEw02ODdkZGMyNy0xMjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1K8qBheBNROyiCMnTuccBF43CxvJ9ZdHzySXuEK3FtmsF8jhjRIGIPXVYZLL Qah6C0p0QNj3pMHFcIw5Ba9tV1vmQ9OB4hAJbY95qI8bFbvcvL+Dwo54B24kjbAC krt4SoR3cd3oOmOAvi5fuSyuVSVvY5Be9LuG8XJB+qZ/hnjojSwmHFCOxnSQwmz4 LHWYM5AM8GO1MmqPiClqyjrxFvmYEwfWsvMejPvFERcjfFY/FlRLTEE/IHU1Rlcz +a8OlSX0jAhCw2L+/shLQuEde35Mp26PnBfdSO14WOVJq1ldlRGsxJuz+lUVufna n9pG4mZTAtZ+txyeffFiwmMTnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtoX9RA 0GOHVsdjLX73poza0YYxMB8GA1UdIwQYMBaAFJmnZtTPpFqfnjd4JQSYsSdoxB4a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTUwMS8yNjg4RTMwMjY4 REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dwLWVOM2dsQkppeEoyakVI aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUhoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTUwMS8yNjg4RTMwMjY4REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dw LWVOM2dsQkppeEoyakVIaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfu6N9B/ycsBCv5W7CUlfoNBRgNofVBdFX6MJoV5wOx6xFyOXZqro4 u+e3oStS/UBq2CCKWVt320BGM2dT6pAKwe9ELIikZpFZFOjd/gQUiooxtU/WeTuB zUGBxRT8J2Okhmb6L9zN1f3mkbMO25hglSY1ucICvftR2sUSwlPy3ndSSumEX2mu Y3iYSZDQLJHNt1yzTXngHgiKKofAgk8kW7oaJB9bZwVASXTyym6PjLNoOny2XC78 q5Bgm/gWkf6ACXPiylKATPeRFJ9ecUD7cR/6zQzQ/AbLbTv0JtFdf6bEN7bENVWC eQ0kYSZ++h5XrHxFcymebwPd4FGUVRpb -----END CERTIFICATE-----Generated at Mon Jul 21 07:53:57 2025 by rpki-client