$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: 4AfY7ifUYjqrSLxUSckGv3RCE5S/BPfxypy0OmrEKZs= Subject key identifier: 38:80:86:B6:D0:99:BF:BE:1E:7D:C2:9E:09:18:CB:27:7C:6D:49:59 Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: 8E Signing time: Sat 31 May 2025 06:03:55 +0000 Manifest this update: Sat 31 May 2025 06:03:54 +0000 Manifest next update: Sat 07 Jun 2025 06:03:54 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: 8GhpAMKDqD4MKkXdufyXhQfnre26TljC0t1k0Up3WX8=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: nmm+UaDTVZk1W14gJbVOSNyGWuVq3wHsOrXGhKoBHSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501, serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Validity Not Before: May 31 06:03:54 2025 GMT Not After : Jun 7 06:03:54 2025 GMT Subject: CN=683a9bca-07e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:88:dd:b5:21:cc:ed:4c:d8:82:6f:a2:75:33: 0d:d6:20:f4:e7:05:e7:13:d2:f3:c5:3a:9c:b6:08: 98:ae:cf:9b:38:84:b6:27:3c:6a:df:22:0a:7c:3a: 95:b8:37:19:e0:7c:73:8b:d3:47:68:9b:9a:cc:08: e9:cd:1f:a3:14:15:3e:b7:ae:8f:e2:84:db:b1:bb: 66:f4:15:55:79:65:08:78:54:76:ae:47:d4:3f:95: 29:ad:62:10:94:c4:c6:75:d8:00:f7:ed:4e:bf:e1: 13:b4:dd:59:2a:c1:6f:08:a0:b1:59:f3:d1:e5:12: d8:68:00:07:9d:f2:2f:8c:44:ef:2d:44:f3:20:7b: b2:35:bb:0d:1d:93:46:99:9f:e7:71:63:5f:b1:47: 6c:88:d0:46:f8:3d:63:49:90:e0:cf:d3:67:11:b9: 60:bd:e4:5d:b2:55:63:3d:67:71:38:e2:14:4a:65: e3:9f:16:97:27:bc:90:22:bd:60:c8:b0:c0:ef:19: 2f:ad:ae:10:b1:52:75:32:1a:03:55:07:a9:6d:cf: 3f:d8:e4:64:7f:3c:84:b8:97:83:c8:61:66:1a:eb: b8:24:2b:d3:bd:2e:13:c3:bb:2b:93:5f:ba:59:55: 16:80:82:7f:fb:fa:f1:98:5e:fa:59:35:bf:e6:7d: 0c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:80:86:B6:D0:99:BF:BE:1E:7D:C2:9E:09:18:CB:27:7C:6D:49:59 X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:01:8e:ed:20:17:fa:6d:ff:6e:83:c4:f2:79:24:d5:a8:9d: 3a:02:fe:37:88:29:ff:bc:43:24:6e:47:c1:15:52:03:2a:e7: 34:5b:a3:3b:1f:23:f2:71:76:bd:6b:e9:0f:99:38:25:17:93: 7b:12:0d:47:cc:c2:b4:a8:98:23:9b:2e:e2:e4:53:75:eb:52: 5c:1c:97:89:57:63:c2:74:04:ac:bf:41:a6:aa:d6:64:06:45: 20:6d:ff:e1:3c:78:1e:a6:b1:89:36:6c:44:f9:d4:cc:23:87: 6a:3b:2c:c1:37:87:51:c8:5a:a6:8b:4a:ab:c6:98:06:8e:bd: cf:6b:d3:0b:b8:c0:05:9f:5b:4a:70:3e:8f:3d:a6:77:4b:22: ae:a5:e4:ca:1a:68:e5:05:fd:9a:69:19:4d:3c:2f:6d:db:e0: eb:5a:c7:39:87:0b:e5:8d:de:50:bd:80:9b:50:06:58:bf:2c: 41:9e:3f:5d:b4:d6:f0:eb:bd:81:2b:65:a7:d4:90:27:52:ac: 18:e2:2a:46:96:09:33:0f:ef:4e:a5:07:46:0f:97:db:e2:e2: 48:c8:18:45:d7:00:87:e8:d7:ac:07:ac:0d:d6:eb:33:7a:cc: e0:8b:36:fb:0c:e2:42:54:33:e3:74:65:21:3e:25:38:5a:c8: da:49:f2:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1MDExMTAvBgNVBAUTKDk5QTc2NkQ0Q0ZBNDVBOUY5RTM3NzgyNTA0OThCMTI3 NjhDNDFFMUEwHhcNMjUwNTMxMDYwMzU0WhcNMjUwNjA3MDYwMzU0WjAYMRYwFAYD VQQDEw02ODNhOWJjYS0wN2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYjdtSHM7UzYgm+idTMN1iD05wXnE9LzxTqctgiYrs+bOIS2Jzxq3yIKfDqV uDcZ4Hxzi9NHaJuazAjpzR+jFBU+t66P4oTbsbtm9BVVeWUIeFR2rkfUP5UprWIQ lMTGddgA9+1Ov+ETtN1ZKsFvCKCxWfPR5RLYaAAHnfIvjETvLUTzIHuyNbsNHZNG mZ/ncWNfsUdsiNBG+D1jSZDgz9NnEblgveRdslVjPWdxOOIUSmXjnxaXJ7yQIr1g yLDA7xkvra4QsVJ1MhoDVQepbc8/2ORkfzyEuJeDyGFmGuu4JCvTvS4Tw7srk1+6 WVUWgIJ/+/rxmF76WTW/5n0MMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiAhrbQ mb++Hn3CngkYyyd8bUlZMB8GA1UdIwQYMBaAFJmnZtTPpFqfnjd4JQSYsSdoxB4a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTUwMS8yNjg4RTMwMjY4 REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dwLWVOM2dsQkppeEoyakVI aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUhoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTUwMS8yNjg4RTMwMjY4REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dw LWVOM2dsQkppeEoyakVIaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxAY7tIBf6bf9ug8TyeSTVqJ06Av43iCn/vEMkbkfBFVIDKuc0W6M7 HyPycXa9a+kPmTglF5N7Eg1HzMK0qJgjmy7i5FN161JcHJeJV2PCdASsv0GmqtZk BkUgbf/hPHgeprGJNmxE+dTMI4dqOyzBN4dRyFqmi0qrxpgGjr3Pa9MLuMAFn1tK cD6PPaZ3SyKupeTKGmjlBf2aaRlNPC9t2+DrWsc5hwvljd5QvYCbUAZYvyxBnj9d tNbw672BK2Wn1JAnUqwY4ipGlgkzD+9OpQdGD5fb4uJIyBhF1wCH6NesB6wN1usz eszgizb7DOJCVDPjdGUhPiU4WsjaSfLY -----END CERTIFICATE-----Generated at Sat May 31 17:41:05 2025 by rpki-client