$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft File: MMBAdim7T5_NgVSJo3jcGjU9r-w.mft (raw, json) Hash identifier: Zg2IGgE5g9sOkxbtikBr5a0iktOSsoVMfIdBcQ3ddok= Subject key identifier: 9B:03:90:69:9B:B9:A9:25:C4:64:2B:57:20:4B:C9:C4:E4:AF:0D:97 Authority key identifier: 30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC Certificate issuer: /CN=A91DC5E3/serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Certificate serial: 195C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft Manifest number: 1951 Signing time: Sat 18 Oct 2025 16:46:52 +0000 Manifest this update: Sat 18 Oct 2025 16:46:52 +0000 Manifest next update: Sat 25 Oct 2025 16:46:52 +0000 Files and hashes: 1: MMBAdim7T5_NgVSJo3jcGjU9r-w.crl (hash: xpU+zOSYQG2IUCHNzsBhccJ0VT+KvfULZ9PdQTt3VII=) 2: AE929D88823711E782F9A440C4F9AE02.roa (hash: E6UpldRotsggXgn0nl1/UsRHEfM+J1lVtu1dNLHwKlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6492 (0x195c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5E3, serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Validity Not Before: Oct 18 16:46:52 2025 GMT Not After : Oct 25 16:46:52 2025 GMT Subject: CN=68f3c47c-22d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2a:ba:20:19:88:b3:9d:67:98:7a:54:4f:d1: 3d:2c:7b:91:1b:47:0e:1f:02:cd:9f:e2:49:68:a2: 46:cc:52:fd:f8:3c:2e:7f:a9:e7:15:3a:b0:63:d0: 49:27:c0:0e:4c:ab:0a:58:c1:42:d3:10:68:87:b1: 51:8f:cb:81:63:0c:69:3c:5d:f4:a4:e7:09:07:81: 11:16:59:76:c2:92:56:32:03:ce:7d:65:17:40:c3: cb:0f:82:66:6e:7d:f1:a3:76:4f:6f:52:49:44:90: 50:0c:e9:52:55:4a:54:51:96:3f:94:85:69:bc:3d: 13:dc:40:32:72:92:14:46:a5:5c:40:e1:a8:91:89: da:52:03:88:87:62:50:6e:d3:e2:91:fe:02:1b:46: ff:a4:05:f8:63:7e:c7:b8:3d:dd:5d:a6:14:c1:dd: be:00:0c:ab:31:d9:f5:27:16:dd:e4:5d:d1:32:2a: 67:b7:bf:c0:17:33:27:54:df:e6:7f:aa:13:d9:ca: 67:3d:d5:d8:ec:31:e1:dd:69:dc:93:76:fd:24:02: ed:4b:75:eb:90:5a:b2:0a:73:c1:62:21:e9:b3:af: ed:98:dc:89:7d:e2:83:ac:7b:12:8d:76:a4:99:15: 57:a3:bf:24:55:65:16:b1:17:0f:3a:e9:09:96:63: 7c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:03:90:69:9B:B9:A9:25:C4:64:2B:57:20:4B:C9:C4:E4:AF:0D:97 X509v3 Authority Key Identifier: keyid:30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a2:8e:59:e5:ef:e5:c7:2f:16:7c:fb:25:5c:b4:cb:6b:23: b0:8e:9b:e5:45:14:c4:e0:4f:c5:3a:57:e7:55:9f:66:c0:f3: eb:70:dc:67:08:61:cb:de:3b:74:ce:77:d1:46:15:d5:0b:94: 62:de:4d:ba:43:5d:5f:da:32:76:ef:e1:01:77:09:43:94:f3: 63:68:4d:a1:38:67:c9:e5:ea:2a:78:33:98:fd:d8:a4:65:4b: a7:c7:dd:cd:82:1c:34:07:f9:c7:92:24:71:7a:94:73:31:04: 82:d7:53:f2:66:d0:c7:4f:ec:45:6d:19:66:80:4c:a8:7e:0a: 1a:e7:85:7e:aa:9e:e4:87:8e:63:9e:0a:82:77:98:9f:89:a2: 65:c7:b1:1e:cd:99:cd:15:98:09:14:40:ca:59:3c:92:22:20: cb:ba:c9:5b:24:de:92:1a:64:13:29:ff:29:44:f8:b9:6c:58: b6:0c:80:0b:28:c2:08:8e:3d:1c:72:f4:a7:1b:bb:b5:21:e7: 90:ac:3e:8d:63:4a:a1:11:6d:c1:35:f9:55:7b:aa:ba:9f:76: 5e:75:ae:3e:a4:d2:e5:81:71:66:03:83:5f:28:38:63:b7:21: b6:38:c8:a9:5c:16:23:44:c4:1e:70:b8:47:58:d4:61:0b:ec: 16:6a:05:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1RTMxMTAvBgNVBAUTKDMwQzA0MDc2MjlCQjRGOUZDRDgxNTQ4OUEzNzhEQzFB MzUzREFGRUMwHhcNMjUxMDE4MTY0NjUyWhcNMjUxMDI1MTY0NjUyWjAYMRYwFAYD VQQDEw02OGYzYzQ3Yy0yMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSq6IBmIs51nmHpUT9E9LHuRG0cOHwLNn+JJaKJGzFL9+Dwuf6nnFTqwY9BJ J8AOTKsKWMFC0xBoh7FRj8uBYwxpPF30pOcJB4ERFll2wpJWMgPOfWUXQMPLD4Jm bn3xo3ZPb1JJRJBQDOlSVUpUUZY/lIVpvD0T3EAycpIURqVcQOGokYnaUgOIh2JQ btPikf4CG0b/pAX4Y37HuD3dXaYUwd2+AAyrMdn1Jxbd5F3RMipnt7/AFzMnVN/m f6oT2cpnPdXY7DHh3Wnck3b9JALtS3XrkFqyCnPBYiHps6/tmNyJfeKDrHsSjXak mRVXo78kVWUWsRcPOukJlmN8sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsDkGmb uaklxGQrVyBLycTkrw2XMB8GA1UdIwQYMBaAFDDAQHYpu0+fzYFUiaN43Bo1Pa/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVFMy9CNzA5QTVEQTgy MzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1X05nVlNKbzNqY0dqVTly LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NQkFkaW03VDVfTmdWU0pvM2pjR2pVOXItdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVFMy9CNzA5QTVEQTgyMzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1 X05nVlNKbzNqY0dqVTlyLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmoo5Z5e/lxy8WfPslXLTLayOwjpvlRRTE4E/FOlfnVZ9mwPPrcNxn CGHL3jt0znfRRhXVC5Ri3k26Q11f2jJ27+EBdwlDlPNjaE2hOGfJ5eoqeDOY/dik ZUunx93Nghw0B/nHkiRxepRzMQSC11PyZtDHT+xFbRlmgEyofgoa54V+qp7kh45j ngqCd5ifiaJlx7EezZnNFZgJFEDKWTySIiDLuslbJN6SGmQTKf8pRPi5bFi2DIAL KMIIjj0ccvSnG7u1IeeQrD6NY0qhEW3BNflVe6q6n3Zeda4+pNLlgXFmA4NfKDhj tyG2OMipXBYjRMQecLhHWNRhC+wWagX0 -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:56 2025 by rpki-client