$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: t480P+DiB9dUaxaArbblv/D+EEN68WZUU9aI/vIrjw8= Subject key identifier: F4:63:3F:8B:A2:48:18:17:7A:5A:D4:59:64:93:25:56:22:9B:50:EC Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 04C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 04C8 Signing time: Sun 19 Oct 2025 01:37:29 +0000 Manifest this update: Sun 19 Oct 2025 01:37:28 +0000 Manifest next update: Sun 26 Oct 2025 01:37:28 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: 5SmNqsAiV6Ab6ZZ6S6N4S+9FlNDpU0f64mfWWQ1mtSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1224 (0x4c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Oct 19 01:37:28 2025 GMT Not After : Oct 26 01:37:28 2025 GMT Subject: CN=68f440d9-680e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:be:58:95:bb:a0:a0:b5:a1:c0:1c:21:f4:87: 1b:45:71:3f:47:a2:d6:d7:8a:a5:c7:1a:e4:1b:01: 75:09:8f:af:05:af:50:61:ab:7b:3a:e9:e5:52:8c: 51:f4:40:aa:6a:a9:65:ff:4b:b5:4f:d0:b4:41:be: e7:04:dc:dd:9a:9f:26:79:5c:9b:2c:ed:4f:30:42: 50:f3:cc:46:7b:6a:d8:76:6d:2c:56:51:52:e2:6e: 86:95:a6:e6:65:d8:e0:d9:dd:70:72:e4:9e:7e:75: c2:41:a0:19:b6:41:99:4e:27:e1:87:87:bf:08:3e: 8d:f1:a9:2a:43:c6:43:11:e9:6d:2d:04:a0:c1:18: 5f:24:2b:e6:3d:79:d8:ae:c4:c6:8f:78:88:ab:8a: 05:1f:b0:6d:be:c1:c8:a8:6f:53:ad:0c:a0:ca:e7: 23:b7:4d:04:82:fd:b5:24:4c:32:4e:ff:d3:60:70: d0:a2:a5:b3:75:35:c5:84:b5:75:e9:72:3f:cc:47: a8:41:d8:e1:19:7d:6f:35:09:73:46:f3:ce:f6:ea: 2e:be:ba:db:c1:17:a9:b0:24:35:2f:df:91:11:91: e9:3d:6c:73:16:ea:14:58:4f:39:17:45:68:12:17: 32:0b:df:b5:2b:b3:1d:0f:28:c8:db:64:db:6f:af: e8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:63:3F:8B:A2:48:18:17:7A:5A:D4:59:64:93:25:56:22:9B:50:EC X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:2c:00:5b:4d:64:94:b7:e1:28:b3:74:eb:00:61:54:d3:0d: 6c:16:bc:bc:25:e0:b3:27:9e:70:ff:eb:82:4c:bf:e8:15:51: 90:f4:4e:e0:b6:4a:7a:02:ba:bd:ab:ad:8b:a3:ef:05:e1:3c: 09:3c:33:68:0d:3b:9a:47:e5:ef:c0:3a:97:24:44:75:06:86: 0a:34:48:26:3b:a2:69:2e:14:fe:e8:45:ea:6d:6a:31:f9:39: 59:a9:20:69:d7:70:06:52:50:f1:4d:6b:24:1a:1f:07:e7:21: a6:21:e8:24:7f:0a:3e:e6:4f:6c:ce:ea:f7:0d:5a:f5:ae:57: 0e:22:b0:c9:84:9e:d2:02:eb:e3:13:2a:7e:19:f2:83:58:af: d4:8e:f5:02:8f:c6:4c:ab:1d:1c:b5:74:9c:d3:46:39:0b:3c: 70:6b:31:87:92:80:72:b3:52:aa:83:8b:7e:0d:a9:00:e9:68: ea:99:ca:52:c6:75:e1:97:cf:cf:32:09:c5:7f:dc:bc:e8:fa: 73:e0:25:da:6b:d5:b8:1d:f8:59:a3:34:b6:57:ac:ea:09:0d: 68:9e:bd:a9:d6:b9:e9:a4:b0:f6:65:b0:21:0c:9d:c2:7c:92: 1f:ed:8d:97:a5:15:0c:1b:3f:d7:2d:ee:4b:b3:d8:d2:d7:80: 66:98:08:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUxMDE5MDEzNzI4WhcNMjUxMDI2MDEzNzI4WjAYMRYwFAYD VQQDEw02OGY0NDBkOS02ODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub5YlbugoLWhwBwh9IcbRXE/R6LW14qlxxrkGwF1CY+vBa9QYat7OunlUoxR 9ECqaqll/0u1T9C0Qb7nBNzdmp8meVybLO1PMEJQ88xGe2rYdm0sVlFS4m6Glabm Zdjg2d1wcuSefnXCQaAZtkGZTifhh4e/CD6N8akqQ8ZDEeltLQSgwRhfJCvmPXnY rsTGj3iIq4oFH7BtvsHIqG9TrQygyucjt00Egv21JEwyTv/TYHDQoqWzdTXFhLV1 6XI/zEeoQdjhGX1vNQlzRvPO9uouvrrbwRepsCQ1L9+REZHpPWxzFuoUWE85F0Vo EhcyC9+1K7MdDyjI22Tbb6/oUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRjP4ui SBgXelrUWWSTJVYim1DsMB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtLABbTWSUt+Eos3TrAGFU0w1sFry8JeCzJ55w/+uCTL/oFVGQ9E7g tkp6Arq9q62Lo+8F4TwJPDNoDTuaR+XvwDqXJER1BoYKNEgmO6JpLhT+6EXqbWox +TlZqSBp13AGUlDxTWskGh8H5yGmIegkfwo+5k9szur3DVr1rlcOIrDJhJ7SAuvj Eyp+GfKDWK/UjvUCj8ZMqx0ctXSc00Y5CzxwazGHkoBys1Kqg4t+DakA6WjqmcpS xnXhl8/PMgnFf9y86Ppz4CXaa9W4HfhZozS2V6zqCQ1onr2p1rnppLD2ZbAhDJ3C fJIf7Y2XpRUMGz/XLe5Ls9jS14BmmAhO -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:10 2025 by rpki-client