$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: Wc3rPWpZZf7s1p7NceYXpyiAakCWWhZDP1hbtRmGW3o= Subject key identifier: 7B:48:D2:CC:EC:5F:89:D7:38:43:B4:E5:DB:90:3C:21:FA:91:E6:F0 Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 0492 Signing time: Sat 05 Jul 2025 00:27:59 +0000 Manifest this update: Sat 05 Jul 2025 00:27:59 +0000 Manifest next update: Sat 12 Jul 2025 00:27:59 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: 3+zJsjDCmWr6Vj9ggO4eGNbHhu6d7V31YpVfE9tNFGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Jul 5 00:27:59 2025 GMT Not After : Jul 12 00:27:59 2025 GMT Subject: CN=6868718f-69c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fb:9b:0c:7b:43:8c:32:93:94:24:05:cb:07: 83:01:18:29:d8:74:dc:b0:af:08:19:b8:65:2d:5e: c5:e5:7d:d5:4f:9f:ad:90:1e:56:49:34:d0:b5:34: 09:5b:54:53:22:af:31:ff:5f:e5:c7:2f:6b:ca:31: 0d:a1:5c:5c:ad:1f:88:a4:65:78:1a:44:6b:2a:2e: 22:5c:1a:5e:bf:44:4a:64:a5:93:58:4b:df:9a:87: f0:d0:4f:a5:ae:ba:3f:20:fa:42:af:c2:84:99:e7: 3d:fa:85:da:77:52:27:86:13:09:9d:24:04:bf:45: 22:9b:02:1b:41:cc:e9:2c:f3:df:c4:59:a2:2b:9f: f1:a9:85:82:82:50:85:fa:7a:1d:9e:60:00:0a:70: b8:8b:fa:4a:b2:0e:b5:b0:b9:bc:02:04:d9:08:74: 9e:50:1d:9b:15:03:f1:92:5a:34:db:08:ae:1b:eb: 0b:72:46:cb:be:f3:39:17:70:68:83:5e:1c:f0:f7: 97:77:03:bc:6d:68:e5:23:8e:13:f5:73:ce:4d:5a: 2f:8d:ab:92:4f:03:4e:07:d5:cf:4e:a7:15:10:55: 9c:f5:c4:2e:c9:b2:af:db:23:40:ea:67:0b:f8:7a: d9:37:f9:11:44:64:15:50:93:f1:89:1b:bd:41:61: a4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:48:D2:CC:EC:5F:89:D7:38:43:B4:E5:DB:90:3C:21:FA:91:E6:F0 X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:51:80:b2:6a:e8:37:0b:66:c9:c7:01:65:67:62:07:ee:d5: b5:40:17:52:49:ea:89:94:9f:96:0a:b8:55:36:6b:68:51:f1: f6:85:89:90:67:83:e6:a9:ca:5c:c1:89:e8:b0:71:c6:f2:0c: f9:e2:89:a8:67:fe:a4:4a:6d:56:bf:24:4e:00:d5:6c:ca:92: 49:d0:04:62:f0:c2:06:23:b5:4c:28:ba:99:8e:1b:79:0b:21: 45:de:f5:9a:15:cf:25:87:13:30:d8:00:65:d3:9c:7e:7b:3d: dc:d1:3a:0b:76:ca:1d:27:12:c5:48:95:6f:8e:45:64:99:6d: c4:69:a2:2c:29:7e:03:af:73:e6:37:9a:0e:de:df:b7:3e:1a: dd:75:b0:d1:17:31:1d:a0:29:8f:8c:24:6f:1e:f4:1f:65:9b: 5e:b5:f6:5f:2e:99:01:1c:91:ca:f8:78:12:b4:e1:db:d8:65: 6e:e2:c9:e0:04:d2:ea:be:21:ad:23:f3:ea:d4:21:c1:58:e6: 47:f7:71:02:57:51:22:9b:e0:a7:2d:15:64:b8:31:f5:3f:44: c5:0f:de:b0:8b:66:84:73:1f:77:5c:6b:91:08:54:2b:bb:31: 05:e4:28:01:f9:f7:64:2a:a8:1c:fd:fd:43:9c:a2:24:f0:74: 14:71:8f:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUwNzA1MDAyNzU5WhcNMjUwNzEyMDAyNzU5WjAYMRYwFAYD VQQDEw02ODY4NzE4Zi02OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfubDHtDjDKTlCQFyweDARgp2HTcsK8IGbhlLV7F5X3VT5+tkB5WSTTQtTQJ W1RTIq8x/1/lxy9ryjENoVxcrR+IpGV4GkRrKi4iXBpev0RKZKWTWEvfmofw0E+l rro/IPpCr8KEmec9+oXad1InhhMJnSQEv0UimwIbQczpLPPfxFmiK5/xqYWCglCF +nodnmAACnC4i/pKsg61sLm8AgTZCHSeUB2bFQPxklo02wiuG+sLckbLvvM5F3Bo g14c8PeXdwO8bWjlI44T9XPOTVovjauSTwNOB9XPTqcVEFWc9cQuybKv2yNA6mcL +HrZN/kRRGQVUJPxiRu9QWGkTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtI0szs X4nXOEO05duQPCH6kebwMB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4UYCyaug3C2bJxwFlZ2IH7tW1QBdSSeqJlJ+WCrhVNmtoUfH2hYmQ Z4PmqcpcwYnosHHG8gz54omoZ/6kSm1WvyROANVsypJJ0ARi8MIGI7VMKLqZjht5 CyFF3vWaFc8lhxMw2ABl05x+ez3c0ToLdsodJxLFSJVvjkVkmW3EaaIsKX4Dr3Pm N5oO3t+3PhrddbDRFzEdoCmPjCRvHvQfZZtetfZfLpkBHJHK+HgStOHb2GVu4sng BNLqviGtI/Pq1CHBWOZH93ECV1Eim+CnLRVkuDH1P0TFD96wi2aEcx93XGuRCFQr uzEF5CgB+fdkKqgc/f1DnKIk8HQUcY/V -----END CERTIFICATE-----Generated at Sat Jul 5 08:11:35 2025 by rpki-client