$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft File: MMBAdim7T5_NgVSJo3jcGjU9r-w.mft (raw, json) Hash identifier: t5SoFt30Vm0j/XCQ1RctIuea4oeuRc/P0rtbTUw0N8Q= Subject key identifier: 24:18:C4:51:52:29:F9:10:1B:5D:1D:10:60:DD:54:75:84:98:3A:4C Authority key identifier: 30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC Certificate issuer: /CN=A91DC5E3/serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Certificate serial: 1921 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft Manifest number: 1917 Signing time: Mon 30 Jun 2025 16:35:45 +0000 Manifest this update: Mon 30 Jun 2025 16:35:44 +0000 Manifest next update: Mon 07 Jul 2025 16:35:44 +0000 Files and hashes: 1: MMBAdim7T5_NgVSJo3jcGjU9r-w.crl (hash: PGdPAaeTIiMNyTW3VP+fE4dXeFXkFOt7r2TBhcsYMlY=) 2: AE929D88823711E782F9A440C4F9AE02.roa (hash: sKS3rMJ6It6/rpeTWZ/r67AylRsKXL//6e7PLZw6fXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6433 (0x1921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5E3, serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Validity Not Before: Jun 30 16:35:44 2025 GMT Not After : Jul 7 16:35:44 2025 GMT Subject: CN=6862bce1-869e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:dc:e4:a4:be:29:0d:85:42:58:b5:51:69: a8:47:4d:0b:dd:2d:e0:fe:56:b7:ae:e9:38:5c:3c: 6e:d2:72:cf:92:f6:85:01:91:72:9b:d3:c2:8b:ed: 97:13:75:83:4f:36:aa:3d:86:28:65:c8:90:65:20: c6:d1:56:84:26:bf:0f:8f:fa:8e:0d:77:a8:10:7b: 55:61:f4:0d:79:c3:b7:c2:32:ca:c0:86:69:92:a8: 8a:66:ea:18:91:58:23:97:ee:78:c2:ce:05:32:75: 4f:63:87:0c:cd:a4:73:d6:5d:87:7a:b2:56:74:6f: 30:2c:9a:62:b9:13:46:fc:7b:13:2c:50:e3:91:55: 33:bc:88:8f:b2:e0:84:a9:2d:2d:7b:41:07:7c:1f: a2:b3:90:0c:ff:32:25:a9:70:a2:d0:26:ba:9e:a3: 95:ce:50:8a:e8:cf:31:29:42:71:93:38:8e:0d:33: 3c:96:46:43:69:d0:19:6c:f6:9a:bf:de:97:5b:b1: 28:82:e7:7b:bc:68:45:39:aa:17:91:31:87:07:41: df:9e:5c:4f:45:3e:18:a1:4d:86:6c:10:41:fb:e4: 7a:6a:bd:87:51:a6:98:a7:fc:1d:e8:e1:8c:03:2d: b8:bd:f3:b4:35:6a:fe:9b:0d:cb:ee:d2:8c:8d:3c: 79:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:18:C4:51:52:29:F9:10:1B:5D:1D:10:60:DD:54:75:84:98:3A:4C X509v3 Authority Key Identifier: keyid:30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:f1:55:c1:8a:b8:05:e0:87:67:9b:37:3f:b9:a1:5d:10:cd: 59:fb:df:4c:17:ca:10:ac:e2:f3:d6:23:ba:aa:03:9e:a7:45: b9:47:66:18:29:a5:c7:75:7a:9c:4a:06:76:72:7e:ed:63:0c: eb:93:e9:a8:49:e0:f6:51:2d:77:94:e3:46:1c:9c:77:c9:35: 96:f3:dc:5a:2d:7c:d3:5e:1c:b1:d8:95:27:a7:b3:f5:ad:c8: 4d:54:7f:73:be:8b:95:5f:57:f0:b7:be:ae:5a:db:8a:dc:78: 75:d2:e0:40:4c:f0:b4:0c:37:65:ac:74:39:a2:43:0d:99:56: af:6a:29:8c:0b:75:ba:09:03:cc:28:71:3d:33:58:c4:be:aa: b5:9f:76:4e:95:95:c1:07:73:33:69:af:d5:76:eb:2d:ae:b6: 41:cb:89:7e:5b:f2:12:fd:5e:cd:53:99:e1:df:46:91:71:fd: 34:57:8c:ec:04:5d:38:76:3f:18:6c:35:2f:c9:09:d9:c7:e8: 8f:f2:a3:e8:63:79:19:ce:ac:12:77:84:b7:70:7f:d3:4a:93: 98:6a:84:a2:af:8d:3e:fb:56:7d:bd:b8:a0:e9:98:6e:9b:61: 1d:0e:66:5a:f6:70:bf:69:49:53:77:3d:da:e5:a4:a0:c1:88: 19:31:cb:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1RTMxMTAvBgNVBAUTKDMwQzA0MDc2MjlCQjRGOUZDRDgxNTQ4OUEzNzhEQzFB MzUzREFGRUMwHhcNMjUwNjMwMTYzNTQ0WhcNMjUwNzA3MTYzNTQ0WjAYMRYwFAYD VQQDEw02ODYyYmNlMS04NjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vbc5KS+KQ2FQli1UWmoR00L3S3g/la3ruk4XDxu0nLPkvaFAZFym9PCi+2X E3WDTzaqPYYoZciQZSDG0VaEJr8Pj/qODXeoEHtVYfQNecO3wjLKwIZpkqiKZuoY kVgjl+54ws4FMnVPY4cMzaRz1l2HerJWdG8wLJpiuRNG/HsTLFDjkVUzvIiPsuCE qS0te0EHfB+is5AM/zIlqXCi0Ca6nqOVzlCK6M8xKUJxkziODTM8lkZDadAZbPaa v96XW7Eogud7vGhFOaoXkTGHB0HfnlxPRT4YoU2GbBBB++R6ar2HUaaYp/wd6OGM Ay24vfO0NWr+mw3L7tKMjTx50wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQYxFFS KfkQG10dEGDdVHWEmDpMMB8GA1UdIwQYMBaAFDDAQHYpu0+fzYFUiaN43Bo1Pa/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVFMy9CNzA5QTVEQTgy MzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1X05nVlNKbzNqY0dqVTly LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NQkFkaW03VDVfTmdWU0pvM2pjR2pVOXItdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVFMy9CNzA5QTVEQTgyMzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1 X05nVlNKbzNqY0dqVTlyLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa8VXBirgF4Idnmzc/uaFdEM1Z+99MF8oQrOLz1iO6qgOep0W5R2YY KaXHdXqcSgZ2cn7tYwzrk+moSeD2US13lONGHJx3yTWW89xaLXzTXhyx2JUnp7P1 rchNVH9zvouVX1fwt76uWtuK3Hh10uBATPC0DDdlrHQ5okMNmVavaimMC3W6CQPM KHE9M1jEvqq1n3ZOlZXBB3Mzaa/VdustrrZBy4l+W/IS/V7NU5nh30aRcf00V4zs BF04dj8YbDUvyQnZx+iP8qPoY3kZzqwSd4S3cH/TSpOYaoSir40++1Z9vbig6Zhu m2EdDmZa9nC/aUlTdz3a5aSgwYgZMcui -----END CERTIFICATE-----Generated at Wed Jul 2 11:45:01 2025 by rpki-client