$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: EYOvhXFvFs7KwS0sjYI4m1s+6fC11irAA3G3U0ZxuZU= Subject key identifier: FC:B8:3A:B4:03:58:02:E4:7D:AB:D3:B1:81:D1:79:9E:75:90:FA:CD Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 04AB Signing time: Sat 23 Aug 2025 00:07:18 +0000 Manifest this update: Sat 23 Aug 2025 00:07:18 +0000 Manifest next update: Sat 30 Aug 2025 00:07:18 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: MfAvVrw/dsvvMv7eEwGU/lSKG/ln2xCdAGdUKNb3E+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Aug 23 00:07:18 2025 GMT Not After : Aug 30 00:07:18 2025 GMT Subject: CN=68a90636-8e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5f:df:c3:81:e5:74:6c:20:11:d3:bd:b0:7c: e0:ef:8d:09:72:bc:91:e2:d8:1d:12:7d:27:36:4c: 23:20:35:1f:e9:1c:f8:42:3f:9f:0c:c8:51:6b:7d: 32:0b:ec:22:9e:c8:e0:80:0f:30:bd:aa:49:a8:ba: 0f:1c:69:13:57:12:be:9b:1a:5e:04:4e:a4:2b:30: 83:7e:b1:cf:25:9a:7b:be:de:37:b4:28:43:04:11: 46:97:6c:df:1b:19:f4:b4:05:57:a1:19:92:3b:ce: 09:55:cc:88:bc:80:1b:14:d9:c2:00:9a:22:35:ee: 96:3b:49:6c:62:01:11:88:6e:4e:48:e7:56:38:c8: ca:08:f7:e8:55:76:a3:41:96:dc:0f:7d:84:23:bf: 31:18:50:b6:84:85:e0:ce:a9:94:85:f3:f5:05:52: 98:cc:4b:e2:5b:be:b7:06:ba:df:2d:9c:99:2b:24: 82:00:b1:e0:01:2e:45:35:b3:bb:d9:ee:95:73:d6: a3:7e:74:50:e3:83:a8:ce:90:03:45:a9:f9:46:b5: e6:4b:8b:fe:72:84:75:76:89:9e:52:4b:d4:0f:4e: 83:f2:0b:e3:b3:16:d5:5d:b0:80:b2:68:81:07:b6: 09:33:9d:19:20:5d:d6:64:18:eb:7f:11:71:e4:bc: a7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B8:3A:B4:03:58:02:E4:7D:AB:D3:B1:81:D1:79:9E:75:90:FA:CD X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:26:3e:57:41:43:8f:c4:65:f0:0a:51:a5:a2:95:31:78:79: cf:1d:dd:ad:cc:fb:04:86:d6:9d:49:39:92:c4:ca:87:c7:6a: 29:f1:40:93:1d:03:4a:7e:47:07:49:29:3b:bf:c8:2b:31:f6: 75:a7:8f:8d:a8:9a:b8:e0:56:23:22:fe:91:b8:9e:f1:4c:08: 51:81:98:2e:ff:5a:ec:f8:2b:49:1a:ba:cd:51:2b:17:c0:dc: 85:d7:f2:b6:a8:36:10:da:12:05:7f:a8:85:1c:09:32:53:cd: 45:92:f9:24:aa:51:01:97:a0:d3:f7:bb:82:80:b6:05:6f:5d: a7:27:dd:6c:9d:20:44:46:4f:da:ea:92:80:3f:ff:38:cf:07: 7c:98:0e:3a:68:4d:0f:b7:8f:ff:69:c1:85:89:9c:d8:b7:4c: 33:d1:c9:c3:f6:c3:67:17:29:28:f5:5f:b8:6a:df:85:c8:50: 90:02:18:5d:6d:3b:4d:a3:4e:35:80:4b:d3:36:b8:0a:80:8a: 8e:37:d8:fe:0e:f3:c9:d1:1f:d8:5f:6c:84:ae:06:0e:68:27: e3:97:92:80:fe:a8:2d:07:7a:6c:fe:3b:59:48:21:4c:3b:8d: cc:26:08:7b:5f:25:d5:f7:65:40:23:c7:4a:25:25:25:90:36: 72:67:13:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUwODIzMDAwNzE4WhcNMjUwODMwMDAwNzE4WjAYMRYwFAYD VQQDEw02OGE5MDYzNi04ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41/fw4HldGwgEdO9sHzg740JcryR4tgdEn0nNkwjIDUf6Rz4Qj+fDMhRa30y C+winsjggA8wvapJqLoPHGkTVxK+mxpeBE6kKzCDfrHPJZp7vt43tChDBBFGl2zf Gxn0tAVXoRmSO84JVcyIvIAbFNnCAJoiNe6WO0lsYgERiG5OSOdWOMjKCPfoVXaj QZbcD32EI78xGFC2hIXgzqmUhfP1BVKYzEviW763BrrfLZyZKySCALHgAS5FNbO7 2e6Vc9ajfnRQ44OozpADRan5RrXmS4v+coR1domeUkvUD06D8gvjsxbVXbCAsmiB B7YJM50ZIF3WZBjrfxFx5LynaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPy4OrQD WALkfavTsYHReZ51kPrNMB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmJj5XQUOPxGXwClGlopUxeHnPHd2tzPsEhtadSTmSxMqHx2op8UCT HQNKfkcHSSk7v8grMfZ1p4+NqJq44FYjIv6RuJ7xTAhRgZgu/1rs+CtJGrrNUSsX wNyF1/K2qDYQ2hIFf6iFHAkyU81FkvkkqlEBl6DT97uCgLYFb12nJ91snSBERk/a 6pKAP/84zwd8mA46aE0Pt4//acGFiZzYt0wz0cnD9sNnFyko9V+4at+FyFCQAhhd bTtNo041gEvTNrgKgIqON9j+DvPJ0R/YX2yErgYOaCfjl5KA/qgtB3ps/jtZSCFM O43MJgh7XyXV92VAI8dKJSUlkDZyZxNZ -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:20 2025 by rpki-client