$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: 7ScEkhV3iTXYawShgFkggPyoe7aUGNtqjd7EWJsh0No= Subject key identifier: AA:F8:10:82:1B:BA:74:A6:63:83:6D:44:81:D8:1E:80:C9:88:BC:57 Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 04CF Signing time: Sun 02 Nov 2025 23:45:53 +0000 Manifest this update: Sun 02 Nov 2025 23:45:53 +0000 Manifest next update: Sun 09 Nov 2025 23:45:53 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: PecP4p1VgVYV8O0ItGr4xnFMN9jYRZ00wuZOk0/tVAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Nov 2 23:45:53 2025 GMT Not After : Nov 9 23:45:53 2025 GMT Subject: CN=6907ed31-01a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:47:0e:fa:b9:33:ff:11:90:b4:25:52:61:76: 2c:9f:69:90:3f:c1:4b:2e:e0:ca:bb:00:07:6a:a2: cb:24:00:b2:4f:f5:fc:f3:1a:fb:6b:57:bc:ae:68: 0c:03:5e:e4:19:54:a0:0d:da:eb:d3:1d:29:fc:7e: 3c:ec:b0:ff:8e:5c:12:3e:e5:c7:39:ac:f5:07:0d: 17:81:e3:fe:8e:4c:31:54:1c:2f:b2:c9:a0:1e:95: 03:97:d5:d3:76:be:1b:43:a2:3b:53:8d:c4:2f:8b: a8:a3:e1:7f:af:5d:c1:59:a5:91:0d:a8:e0:1a:a1: de:19:55:6c:4f:1c:af:0b:2d:85:5f:97:63:50:4b: 1a:9d:52:f4:4b:00:5e:48:2f:94:a9:0c:b5:bd:b3: 06:32:a4:28:ea:ed:63:89:e3:b0:79:90:f0:87:f6: a6:62:5e:13:15:cc:60:00:70:43:34:d6:2d:c5:40: 8b:5a:8f:8d:4f:19:09:06:ce:b7:4a:df:33:a6:a4: 5d:90:af:18:75:2f:13:cb:a5:cd:61:c9:57:8f:02: e6:cd:b8:4c:20:50:71:6f:9e:4e:2c:1a:d7:c4:1b: 31:22:5b:6d:2d:be:8f:4b:a8:d2:45:56:94:92:2d: e2:45:8a:63:04:9d:c1:1e:1e:f6:e9:04:1b:12:16: 58:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:F8:10:82:1B:BA:74:A6:63:83:6D:44:81:D8:1E:80:C9:88:BC:57 X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:d2:0b:53:ef:e0:8b:2b:0c:cb:69:e2:db:8e:e2:bd:38:7b: cd:2c:fe:f4:31:c3:c4:0d:71:35:de:53:06:fd:98:85:1a:f7: ec:74:a8:b9:60:16:6f:9d:91:21:5c:12:14:f5:77:c9:dd:0c: 12:6b:ed:eb:ab:ea:a3:3c:00:15:85:3e:71:4d:ed:b1:03:ce: 29:77:a1:86:ad:d3:37:46:98:5d:5d:d3:0b:c7:3f:b3:27:b1: ed:1e:23:66:40:4b:57:9e:b5:ef:9f:8b:56:1d:dc:f4:a9:fb: 8f:da:b4:78:6e:fb:30:17:dd:30:d5:63:b8:c0:1f:ae:91:ad: 0f:48:16:b3:44:79:b7:5b:74:79:46:fe:70:4e:32:f4:13:8c: 9c:78:30:03:21:25:71:ca:fd:bf:90:c3:e2:a6:60:ae:47:9e: 89:49:35:82:0f:b9:44:98:3d:0b:ca:4b:02:d6:76:84:45:0a: de:b2:c1:aa:7b:e9:58:2a:54:e2:94:cc:66:35:e7:08:f3:c9: 5a:b6:af:0b:e9:c0:11:33:83:2f:34:30:bb:4d:36:dc:31:a3: 43:80:1f:31:c5:28:00:02:5b:42:c9:66:09:14:5c:66:78:6d: b8:08:77:cf:9a:c4:91:08:2f:4a:df:0d:9d:50:3c:0f:26:9a: 94:ac:e1:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUxMTAyMjM0NTUzWhcNMjUxMTA5MjM0NTUzWjAYMRYwFAYD VQQDEw02OTA3ZWQzMS0wMWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEcO+rkz/xGQtCVSYXYsn2mQP8FLLuDKuwAHaqLLJACyT/X88xr7a1e8rmgM A17kGVSgDdrr0x0p/H487LD/jlwSPuXHOaz1Bw0XgeP+jkwxVBwvssmgHpUDl9XT dr4bQ6I7U43EL4uoo+F/r13BWaWRDajgGqHeGVVsTxyvCy2FX5djUEsanVL0SwBe SC+UqQy1vbMGMqQo6u1jieOweZDwh/amYl4TFcxgAHBDNNYtxUCLWo+NTxkJBs63 St8zpqRdkK8YdS8Ty6XNYclXjwLmzbhMIFBxb55OLBrXxBsxIlttLb6PS6jSRVaU ki3iRYpjBJ3BHh726QQbEhZYWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKr4EIIb unSmY4NtRIHYHoDJiLxXMB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU0gtT7+CLKwzLaeLbjuK9OHvNLP70McPEDXE13lMG/ZiFGvfsdKi5 YBZvnZEhXBIU9XfJ3QwSa+3rq+qjPAAVhT5xTe2xA84pd6GGrdM3RphdXdMLxz+z J7HtHiNmQEtXnrXvn4tWHdz0qfuP2rR4bvswF90w1WO4wB+uka0PSBazRHm3W3R5 Rv5wTjL0E4yceDADISVxyv2/kMPipmCuR56JSTWCD7lEmD0LyksC1naERQressGq e+lYKlTilMxmNecI88latq8L6cARM4MvNDC7TTbcMaNDgB8xxSgAAltCyWYJFFxm eG24CHfPmsSRCC9K3w2dUDwPJpqUrOF3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:08 2025 by rpki-client