$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: jYPSmtd1D4hvDcddP+lHBwpet5JqyW0yToknvOhGw8E= Subject key identifier: 69:BD:FC:CF:89:6B:A2:0A:F4:56:93:40:BA:D1:52:0A:C6:1C:FF:5B Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: C6 Signing time: Wed 17 Sep 2025 06:28:28 +0000 Manifest this update: Wed 17 Sep 2025 06:28:27 +0000 Manifest next update: Wed 24 Sep 2025 06:28:27 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: L0FWMsonVOpHjrNfBWQUH/6ArTRUebbreRAje28yxCI=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: nmm+UaDTVZk1W14gJbVOSNyGWuVq3wHsOrXGhKoBHSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501, serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Validity Not Before: Sep 17 06:28:27 2025 GMT Not After : Sep 24 06:28:27 2025 GMT Subject: CN=68ca550b-76f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ca:48:4a:0d:84:c4:9b:16:18:34:c4:c1:e6: f0:48:1d:66:24:cd:2a:20:bc:52:a2:55:0d:33:5c: 5f:d1:67:44:47:85:6a:df:22:d3:9c:3c:96:5e:cf: f1:79:6e:0d:92:8a:3e:6f:e1:1c:1c:04:8a:88:dc: 15:63:50:f9:36:37:98:6a:77:15:e4:48:98:60:3b: fa:fa:b0:49:01:65:86:c3:76:ee:96:00:c4:07:b4: e8:12:92:29:77:e9:5e:ba:e4:ae:33:04:86:b4:3d: f3:3e:98:5e:b6:55:be:f4:e2:61:27:c6:86:10:24: d8:de:1c:b3:11:dd:0e:68:23:11:14:68:9c:21:63: ab:7d:86:4f:22:23:ee:1c:b5:e4:fe:16:68:13:24: de:ad:1c:84:16:b1:df:ef:b6:18:73:31:e4:60:2f: da:3b:d2:24:0d:93:ff:cd:55:b4:71:a8:7f:9d:d5: 01:21:78:3e:21:da:5d:36:b5:73:89:b7:73:ad:68: 80:3d:ff:ab:d2:80:e7:33:f0:7d:8d:00:c7:6a:2f: 23:88:0c:3c:68:91:eb:16:f9:b4:c7:8e:b8:b4:b9: 88:12:a9:08:cb:2d:c1:79:cb:07:2b:9e:40:34:e2: 17:29:58:65:c8:aa:4d:cf:9c:c1:43:1e:f7:f6:cf: 0a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BD:FC:CF:89:6B:A2:0A:F4:56:93:40:BA:D1:52:0A:C6:1C:FF:5B X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:dc:02:b4:ed:d6:7a:58:f4:d8:f2:e1:30:33:23:bc:f8:9b: c2:29:f7:0e:58:b3:00:3c:15:6e:5a:ca:d1:b0:df:13:db:e1: 5f:ed:69:3e:32:79:c9:b4:ea:a1:e7:f1:ad:63:99:41:f0:8c: db:96:cb:36:9b:60:3f:66:e6:67:27:8d:69:40:5b:98:8c:9e: bc:c5:11:0d:36:23:26:47:26:ce:84:64:64:e9:4c:a9:c8:3d: 0b:62:b6:ff:81:f6:cd:f9:c9:10:c3:33:55:a4:be:d8:ef:23: dc:0b:fb:22:a7:93:ac:83:c6:43:87:ac:dc:0e:5c:1a:69:ec: df:9e:a5:86:61:27:63:30:70:ac:d6:d5:65:c2:fb:d1:b8:68: 90:fa:5d:a0:05:ea:f2:c5:53:a5:db:4e:39:6d:cc:f9:83:3b: f2:df:f5:96:9c:d5:47:48:f4:98:99:cc:f6:8c:17:24:f2:58: f0:96:9b:28:9a:fc:74:c3:fa:06:ad:47:66:05:f3:94:e2:74: 22:b0:38:94:28:c5:b1:fa:fd:4c:40:a6:53:af:60:ba:b7:71: 5f:2a:68:46:2c:50:1b:2b:71:ca:92:0d:1a:74:fe:0a:5a:e1: 33:44:58:31:63:ba:fc:24:58:65:41:ae:96:82:eb:8e:f1:16: db:bd:10:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1MDExMTAvBgNVBAUTKDk5QTc2NkQ0Q0ZBNDVBOUY5RTM3NzgyNTA0OThCMTI3 NjhDNDFFMUEwHhcNMjUwOTE3MDYyODI3WhcNMjUwOTI0MDYyODI3WjAYMRYwFAYD VQQDEw02OGNhNTUwYi03NmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8pISg2ExJsWGDTEwebwSB1mJM0qILxSolUNM1xf0WdER4Vq3yLTnDyWXs/x eW4Nkoo+b+EcHASKiNwVY1D5NjeYancV5EiYYDv6+rBJAWWGw3bulgDEB7ToEpIp d+leuuSuMwSGtD3zPphetlW+9OJhJ8aGECTY3hyzEd0OaCMRFGicIWOrfYZPIiPu HLXk/hZoEyTerRyEFrHf77YYczHkYC/aO9IkDZP/zVW0cah/ndUBIXg+IdpdNrVz ibdzrWiAPf+r0oDnM/B9jQDHai8jiAw8aJHrFvm0x464tLmIEqkIyy3BecsHK55A NOIXKVhlyKpNz5zBQx739s8K/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGm9/M+J a6IK9FaTQLrRUgrGHP9bMB8GA1UdIwQYMBaAFJmnZtTPpFqfnjd4JQSYsSdoxB4a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTUwMS8yNjg4RTMwMjY4 REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dwLWVOM2dsQkppeEoyakVI aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUhoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTUwMS8yNjg4RTMwMjY4REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dw LWVOM2dsQkppeEoyakVIaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW3AK07dZ6WPTY8uEwMyO8+JvCKfcOWLMAPBVuWsrRsN8T2+Ff7Wk+ MnnJtOqh5/GtY5lB8Izblss2m2A/ZuZnJ41pQFuYjJ68xRENNiMmRybOhGRk6Uyp yD0LYrb/gfbN+ckQwzNVpL7Y7yPcC/sip5Osg8ZDh6zcDlwaaezfnqWGYSdjMHCs 1tVlwvvRuGiQ+l2gBeryxVOl2045bcz5gzvy3/WWnNVHSPSYmcz2jBck8ljwlpso mvx0w/oGrUdmBfOU4nQisDiUKMWx+v1MQKZTr2C6t3FfKmhGLFAbK3HKkg0adP4K WuEzRFgxY7r8JFhlQa6WguuO8RbbvRDX -----END CERTIFICATE-----Generated at Fri Sep 19 01:01:44 2025 by rpki-client