$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft File: MMBAdim7T5_NgVSJo3jcGjU9r-w.mft (raw, json) Hash identifier: WtR9UflztsXqE20B4q+z9VPrco4CfaOf/g4+ySAvATM= Subject key identifier: 29:B4:01:EA:01:0C:FC:A0:6F:A7:FF:D9:50:33:7D:29:DA:0F:9B:0D Authority key identifier: 30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC Certificate issuer: /CN=A91DC5E3/serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Certificate serial: 1908 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft Manifest number: 18FE Signing time: Mon 12 May 2025 16:23:00 +0000 Manifest this update: Mon 12 May 2025 16:23:00 +0000 Manifest next update: Mon 19 May 2025 16:23:00 +0000 Files and hashes: 1: MMBAdim7T5_NgVSJo3jcGjU9r-w.crl (hash: bOrfPoiGrTX3eeZyoRMpkEeMu0OPwRe7r8he0ZlIJ4g=) 2: AE929D88823711E782F9A440C4F9AE02.roa (hash: sKS3rMJ6It6/rpeTWZ/r67AylRsKXL//6e7PLZw6fXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6408 (0x1908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5E3, serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Validity Not Before: May 12 16:23:00 2025 GMT Not After : May 19 16:23:00 2025 GMT Subject: CN=68222064-9c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c1:82:31:ff:43:62:a6:4c:1d:91:f9:ee:76: 86:4c:80:62:cb:64:1b:5f:c9:14:91:13:50:73:ef: b0:7c:60:23:81:3f:9f:58:4d:08:09:78:81:85:55: 58:99:1d:e6:84:1f:6e:84:6a:40:56:43:e8:2f:69: ed:0c:c3:f0:58:c0:6f:94:95:24:ba:97:a2:aa:02: 34:da:2c:cc:a6:28:df:b2:3e:cd:83:0e:22:d1:aa: 90:0e:48:99:df:44:ec:7d:94:66:a9:ef:53:91:e2: 58:97:d3:6b:5f:3e:16:d2:2b:11:80:86:ef:06:87: 07:20:d3:ae:b0:1b:42:58:64:d1:72:bb:a5:2a:5d: 58:76:32:eb:4c:de:e0:17:09:89:28:54:b1:e9:b8: 44:73:d5:2b:78:8b:0e:be:c0:3c:31:b3:50:2a:62: 13:bb:45:20:66:74:db:4e:ad:61:ea:ce:78:44:29: 2f:22:48:f4:04:fd:c7:f5:56:68:2f:2e:52:0e:57: db:3e:cc:ed:5d:cb:9d:21:eb:29:db:04:3f:c4:24: 2f:f7:3a:02:1b:71:90:5c:8c:3e:98:22:7f:92:5c: 83:d0:ad:c6:46:bd:fe:c0:31:cc:c6:93:f5:68:2a: 68:50:5b:33:70:a1:9d:c9:d7:76:6d:c2:dd:8f:98: 52:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B4:01:EA:01:0C:FC:A0:6F:A7:FF:D9:50:33:7D:29:DA:0F:9B:0D X509v3 Authority Key Identifier: keyid:30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ae:fd:b3:8c:44:92:ca:14:76:bb:48:4f:a8:a2:56:42:b4: af:52:1a:ca:4f:56:fc:a8:7e:d0:b3:58:ae:55:1f:6b:4f:74: bb:c3:f6:8d:fa:c0:ae:32:da:3e:61:ea:df:d1:d5:de:f2:75: 21:81:c9:fa:b4:64:f3:29:27:40:6c:da:80:19:96:1b:44:e8: 53:3a:16:77:a5:ad:02:61:d8:5a:f4:bd:8f:2d:6b:69:d5:7b: 44:6e:fa:da:00:1d:c2:d5:f3:ab:7b:51:c9:92:23:40:84:54: 80:cc:f6:d1:fc:79:b9:3a:40:19:3c:95:1e:31:53:52:e6:f7: 83:36:e2:85:0f:cb:4f:c8:e6:16:1e:cd:af:d0:6b:e6:dc:93: e7:61:d3:30:9a:2d:8e:b2:53:b9:09:01:8f:67:b9:69:25:90: 83:0c:fb:16:bb:2f:9f:92:de:a8:a3:97:16:c8:ac:45:89:33: 79:37:6c:1f:f7:7d:d5:6d:10:b1:96:85:50:24:a5:a7:34:d1: ff:ba:5b:80:ca:d5:7d:ff:2a:76:4e:e4:de:64:02:19:d1:fd: 1b:46:b3:b9:48:35:a7:71:a0:e2:98:02:49:30:eb:fc:e8:29: 77:d0:aa:cb:91:28:3b:96:17:d6:08:a9:0b:42:3a:ff:37:4c: ec:c3:6b:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1RTMxMTAvBgNVBAUTKDMwQzA0MDc2MjlCQjRGOUZDRDgxNTQ4OUEzNzhEQzFB MzUzREFGRUMwHhcNMjUwNTEyMTYyMzAwWhcNMjUwNTE5MTYyMzAwWjAYMRYwFAYD VQQDEw02ODIyMjA2NC05YzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8GCMf9DYqZMHZH57naGTIBiy2QbX8kUkRNQc++wfGAjgT+fWE0ICXiBhVVY mR3mhB9uhGpAVkPoL2ntDMPwWMBvlJUkupeiqgI02izMpijfsj7Ngw4i0aqQDkiZ 30TsfZRmqe9TkeJYl9NrXz4W0isRgIbvBocHINOusBtCWGTRcrulKl1YdjLrTN7g FwmJKFSx6bhEc9UreIsOvsA8MbNQKmITu0UgZnTbTq1h6s54RCkvIkj0BP3H9VZo Ly5SDlfbPsztXcudIesp2wQ/xCQv9zoCG3GQXIw+mCJ/klyD0K3GRr3+wDHMxpP1 aCpoUFszcKGdydd2bcLdj5hSLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm0AeoB DPygb6f/2VAzfSnaD5sNMB8GA1UdIwQYMBaAFDDAQHYpu0+fzYFUiaN43Bo1Pa/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVFMy9CNzA5QTVEQTgy MzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1X05nVlNKbzNqY0dqVTly LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NQkFkaW03VDVfTmdWU0pvM2pjR2pVOXItdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVFMy9CNzA5QTVEQTgyMzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1 X05nVlNKbzNqY0dqVTlyLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxrv2zjESSyhR2u0hPqKJWQrSvUhrKT1b8qH7Qs1iuVR9rT3S7w/aN +sCuMto+Yerf0dXe8nUhgcn6tGTzKSdAbNqAGZYbROhTOhZ3pa0CYdha9L2PLWtp 1XtEbvraAB3C1fOre1HJkiNAhFSAzPbR/Hm5OkAZPJUeMVNS5veDNuKFD8tPyOYW Hs2v0Gvm3JPnYdMwmi2OslO5CQGPZ7lpJZCDDPsWuy+fkt6oo5cWyKxFiTN5N2wf 933VbRCxloVQJKWnNNH/uluAytV9/yp2TuTeZAIZ0f0bRrO5SDWncaDimAJJMOv8 6Cl30KrLkSg7lhfWCKkLQjr/N0zsw2tw -----END CERTIFICATE-----Generated at Wed May 14 09:14:25 2025 by rpki-client