$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: FTYg0PXqB+buE14QGdGJcylag/PZnQ5dBeQkhtV+u4o= Subject key identifier: 68:25:67:16:14:B5:CF:91:BB:70:38:CA:74:9B:D0:29:83:20:C2:67 Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: DD Signing time: Mon 03 Nov 2025 05:32:01 +0000 Manifest this update: Mon 03 Nov 2025 05:32:01 +0000 Manifest next update: Mon 10 Nov 2025 05:32:01 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: v6JfmkxoIthTvrZHFDCTquH2Ud3zPjgc5kPvL9tcuYk=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: nmm+UaDTVZk1W14gJbVOSNyGWuVq3wHsOrXGhKoBHSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501, serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Validity Not Before: Nov 3 05:32:01 2025 GMT Not After : Nov 10 05:32:01 2025 GMT Subject: CN=69083e51-cad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:52:3d:7e:68:58:1c:33:57:54:6a:19:b7:e1: cb:f2:6c:5f:6e:fc:89:84:92:7e:22:e0:1a:5f:90: db:2c:d7:52:84:97:b1:04:08:aa:4c:fc:bb:04:d3: 44:3d:86:74:9f:01:cc:4e:48:e9:48:b2:2f:25:99: 6e:e0:5a:59:ae:bb:08:b9:fb:f0:05:fe:76:4c:46: 40:3c:7e:5f:2c:62:fe:d1:79:57:07:51:e6:9f:e0: f7:be:30:bd:10:62:f9:eb:27:c4:c7:03:62:ed:fb: 38:19:17:8f:57:31:db:23:f0:db:e4:f7:8a:4b:fd: ee:ed:69:ca:f6:cb:90:6b:3d:f8:7e:f8:3f:a6:d2: cb:51:53:2a:6d:b8:a1:e8:0e:06:fb:f0:a3:1b:10: de:3a:71:3e:64:c1:60:79:42:d4:9b:1b:76:b8:e3: d3:a1:e7:3b:e3:84:09:e1:e4:8d:66:90:e7:1c:86: b8:9a:4d:96:af:9c:88:52:de:ca:b0:b1:5c:cc:62: 66:52:67:76:19:39:56:85:b1:30:40:79:66:d5:20: 88:25:36:34:9c:96:6a:ca:68:51:e3:3c:6d:0f:fc: 3e:fa:4a:d3:0c:cd:5d:a0:bb:ce:8d:d7:4b:cb:9f: 74:d3:a1:63:a6:84:02:e8:56:4d:bd:68:d8:3a:f2: e0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:25:67:16:14:B5:CF:91:BB:70:38:CA:74:9B:D0:29:83:20:C2:67 X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:0d:68:63:ba:fa:6d:20:b9:3b:b0:81:7d:01:3f:c1:a0:7a: 7e:fa:9b:e1:5d:1b:d0:3b:8e:26:42:bf:7d:75:83:15:fc:5d: 60:6a:2e:2a:80:15:79:fc:b0:8c:16:dd:e6:60:12:f1:f8:c5: 70:1b:bf:59:33:6e:9e:2c:24:dc:46:53:9e:8c:36:65:5f:d1: 99:03:65:d4:3f:50:6d:68:4f:ba:93:92:29:3e:c1:2e:c1:6f: 76:17:44:39:6e:cd:76:a1:78:7d:99:d2:b8:c3:7f:c7:55:2f: fc:2a:f5:dc:07:bd:b6:0f:d2:b0:09:03:99:e5:80:98:f0:08: 63:49:52:65:68:ef:a9:a8:73:83:ba:44:c6:76:52:b9:04:20: 7b:c7:2e:38:41:8e:de:9f:46:4f:99:df:4b:bd:8c:73:15:b8: c0:59:24:bd:d1:3b:bf:c0:9d:6e:ff:7d:f7:03:2c:d0:26:24: b6:bc:b6:60:e3:4e:af:7b:e3:bf:3b:38:c0:80:21:5f:42:7b: 14:3f:a7:f9:94:f2:4c:8f:fe:6f:6c:68:5a:c8:21:d8:eb:79: 1b:73:f1:2c:76:a4:03:35:89:68:5c:33:56:6e:7b:ff:a4:6f: 1b:37:0d:59:53:0d:7d:27:ac:72:23:bc:a6:f7:3a:1e:08:d7: d0:f5:54:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1MDExMTAvBgNVBAUTKDk5QTc2NkQ0Q0ZBNDVBOUY5RTM3NzgyNTA0OThCMTI3 NjhDNDFFMUEwHhcNMjUxMTAzMDUzMjAxWhcNMjUxMTEwMDUzMjAxWjAYMRYwFAYD VQQDEw02OTA4M2U1MS1jYWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFI9fmhYHDNXVGoZt+HL8mxfbvyJhJJ+IuAaX5DbLNdShJexBAiqTPy7BNNE PYZ0nwHMTkjpSLIvJZlu4FpZrrsIufvwBf52TEZAPH5fLGL+0XlXB1Hmn+D3vjC9 EGL56yfExwNi7fs4GRePVzHbI/Db5PeKS/3u7WnK9suQaz34fvg/ptLLUVMqbbih 6A4G+/CjGxDeOnE+ZMFgeULUmxt2uOPToec744QJ4eSNZpDnHIa4mk2Wr5yIUt7K sLFczGJmUmd2GTlWhbEwQHlm1SCIJTY0nJZqymhR4zxtD/w++krTDM1doLvOjddL y59006FjpoQC6FZNvWjYOvLg5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGglZxYU tc+Ru3A4ynSb0CmDIMJnMB8GA1UdIwQYMBaAFJmnZtTPpFqfnjd4JQSYsSdoxB4a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTUwMS8yNjg4RTMwMjY4 REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dwLWVOM2dsQkppeEoyakVI aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUhoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTUwMS8yNjg4RTMwMjY4REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dw LWVOM2dsQkppeEoyakVIaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNDWhjuvptILk7sIF9AT/BoHp++pvhXRvQO44mQr99dYMV/F1gai4q gBV5/LCMFt3mYBLx+MVwG79ZM26eLCTcRlOejDZlX9GZA2XUP1BtaE+6k5IpPsEu wW92F0Q5bs12oXh9mdK4w3/HVS/8KvXcB722D9KwCQOZ5YCY8AhjSVJlaO+pqHOD ukTGdlK5BCB7xy44QY7en0ZPmd9LvYxzFbjAWSS90Tu/wJ1u/333AyzQJiS2vLZg 406ve+O/OzjAgCFfQnsUP6f5lPJMj/5vbGhayCHY63kbc/EsdqQDNYloXDNWbnv/ pG8bNw1ZUw19J6xyI7ym9zoeCNfQ9VT9 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:34 2025 by rpki-client