$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: RrqA+rzY79IXQw6L2IPJuOq61wqmM6t3uOwZZcM9HBw= Subject key identifier: AF:F8:D2:C8:8B:6B:5C:2A:B9:4C:B8:C0:29:EC:F4:27:57:DB:EA:57 Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: 6F Signing time: Sat 29 Mar 2025 06:12:35 +0000 Manifest this update: Sat 29 Mar 2025 06:12:35 +0000 Manifest next update: Sat 05 Apr 2025 06:12:35 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: RlvSPNS+uapbHg91e5f7FIoMoEmeM4Ax9pl8wvS/13Y=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: nmm+UaDTVZk1W14gJbVOSNyGWuVq3wHsOrXGhKoBHSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501 Validity Not Before: Mar 29 06:12:35 2025 GMT Not After : Apr 5 06:12:35 2025 GMT Subject: CN=67e78f53-07e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:d9:17:22:32:af:15:4a:45:95:88:fa:84: 47:14:eb:af:00:75:d3:98:e5:04:38:46:70:d8:76: a9:71:88:ba:db:0e:0b:b1:26:18:fb:a0:84:3b:af: a5:a5:c7:71:18:51:e3:5f:41:24:b8:2e:f9:6c:7f: d8:fd:ac:6a:28:7f:62:d2:1d:fa:bc:6d:72:08:35: 9f:6c:03:38:44:be:94:32:e5:97:ff:d0:42:11:08: 86:31:94:1a:bc:15:a9:33:af:11:72:43:f8:e1:36: 7d:34:57:9b:a3:09:ab:4b:a2:eb:c6:73:de:c6:a3: ba:de:29:d3:9c:5c:aa:ce:92:49:6b:ae:06:8e:b4: 39:9e:04:70:f0:a2:43:a1:91:25:7f:cd:2f:ca:1e: 3c:25:7f:c1:4d:80:2c:5b:8e:6e:d7:21:66:72:bf: ca:84:f3:8e:2d:0e:c3:80:bb:95:a2:13:7e:f5:ce: 40:91:bd:e4:09:85:95:56:91:68:ac:35:49:85:e6: 10:13:fa:0a:30:9f:a3:34:b7:07:e0:ae:5f:b7:e3: 50:13:43:82:92:6f:16:81:17:ac:5c:89:0e:91:63: 07:8e:0e:96:e6:29:8a:7b:fb:f4:68:99:c9:7b:8f: a8:59:e8:cd:d0:6b:b8:ee:93:a4:8e:a7:5d:13:ef: 29:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F8:D2:C8:8B:6B:5C:2A:B9:4C:B8:C0:29:EC:F4:27:57:DB:EA:57 X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e7:cc:c8:19:fa:9e:68:55:c7:7d:f0:45:7c:56:ec:ff:80: a2:9a:62:45:77:b8:86:e5:eb:d3:13:02:8b:36:9b:73:19:25: f9:0f:32:c2:4a:55:c8:95:ff:b3:f5:d0:ba:c2:4a:1b:f4:a6: 5a:85:41:18:4a:7c:9b:76:81:20:d0:9f:81:f9:9e:3b:bb:85: 31:f4:e1:02:94:c8:97:e5:b9:2d:49:69:34:74:5d:6e:fd:73: 66:e3:37:e3:4d:34:1c:84:fe:64:82:15:cf:1d:04:22:33:c6: bb:7f:72:d4:e4:31:6a:73:09:93:d1:ef:ac:ec:f7:9a:6b:9b: ee:d3:ec:f3:75:0e:58:c7:6f:90:76:4b:7e:06:54:29:9e:c1: 58:9a:33:36:62:78:6c:84:be:7a:6a:61:b7:f5:9b:36:cb:98: 7c:e4:1a:de:2c:d1:21:15:d2:62:77:a9:86:cf:64:6c:b3:50: ae:5b:5f:af:24:b6:76:81:27:a4:c7:85:47:f4:c2:7c:be:33: 13:16:09:6a:a8:4f:fc:a7:d8:c7:1c:df:5d:16:8e:51:8d:f8: 42:c9:79:55:c8:14:d8:8c:8b:2c:51:03:a0:bc:4d:c3:22:70: c2:8e:4f:2e:91:38:2c:bd:57:28:02:36:55:e9:1e:a3:82:03: 29:c0:44:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTUwMTExMC8GA1UEBRMoOTlBNzY2RDRDRkE0NUE5RjlFMzc3ODI1MDQ5OEIxMjc2 OEM0MUUxQTAeFw0yNTAzMjkwNjEyMzVaFw0yNTA0MDUwNjEyMzVaMBgxFjAUBgNV BAMTDTY3ZTc4ZjUzLTA3ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/PdkXIjKvFUpFlYj6hEcU668AddOY5QQ4RnDYdqlxiLrbDguxJhj7oIQ7r6Wl x3EYUeNfQSS4Lvlsf9j9rGoof2LSHfq8bXIINZ9sAzhEvpQy5Zf/0EIRCIYxlBq8 FakzrxFyQ/jhNn00V5ujCatLouvGc97Go7reKdOcXKrOkklrrgaOtDmeBHDwokOh kSV/zS/KHjwlf8FNgCxbjm7XIWZyv8qE844tDsOAu5WiE371zkCRveQJhZVWkWis NUmF5hAT+gown6M0twfgrl+341ATQ4KSbxaBF6xciQ6RYweODpbmKYp7+/Romcl7 j6hZ6M3Qa7juk6SOp10T7ylPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr/jSyItr XCq5TLjAKez0J1fb6lcwHwYDVR0jBBgwFoAUmadm1M+kWp+eN3glBJixJ2jEHhow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NTAxLzI2ODhFMzAyNjhE RjExRUY4MzA4OUUwQkM0RjlBRTAyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUho by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWFkbTFNLWtXcC1lTjNnbEJKaXhKMmpFSGhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NTAxLzI2ODhFMzAyNjhERjExRUY4MzA4OUUwQkM0RjlBRTAyL21hZG0xTS1rV3At ZU4zZ2xCSml4SjJqRUhoby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAITnzMgZ+p5oVcd98EV8Vuz/gKKaYkV3uIbl69MTAos2m3MZJfkPMsJK VciV/7P10LrCShv0plqFQRhKfJt2gSDQn4H5nju7hTH04QKUyJfluS1JaTR0XW79 c2bjN+NNNByE/mSCFc8dBCIzxrt/ctTkMWpzCZPR76zs95prm+7T7PN1DljHb5B2 S34GVCmewViaMzZieGyEvnpqYbf1mzbLmHzkGt4s0SEV0mJ3qYbPZGyzUK5bX68k tnaBJ6THhUf0wny+MxMWCWqoT/yn2Mcc310WjlGN+ELJeVXIFNiMiyxRA6C8TcMi cMKOTy6ROCy9VygCNlXpHqOCAynAREQ= -----END CERTIFICATE-----Generated at Fri Apr 4 18:28:30 2025 by rpki-client