$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: bcZQ9JMkXJaLHVmdj3TraivrGG89pWCOZEjQmwYiFWQ= Subject key identifier: 4A:82:C6:10:DB:78:16:CB:A6:6C:97:3D:2A:60:7B:CE:99:5E:0A:BC Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 0490 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 0490 Signing time: Tue 01 Jul 2025 00:30:20 +0000 Manifest this update: Tue 01 Jul 2025 00:30:19 +0000 Manifest next update: Tue 08 Jul 2025 00:30:19 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: wgD0V/O+K/K4rF54mkBM0wQoMLPI/JllYcC1iqE2yZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Jul 1 00:30:19 2025 GMT Not After : Jul 8 00:30:19 2025 GMT Subject: CN=68632c1b-cdbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:45:b0:76:38:f2:23:fb:78:fd:45:d5:73:c8: 05:08:0d:e6:44:d3:61:a6:5a:bf:8a:3a:c3:fe:24: 19:87:f3:0f:06:ee:7e:bf:1c:db:66:0c:22:45:f8: b9:ff:5d:7a:f5:74:58:fc:dc:8b:a3:d7:5a:05:93: 4e:a9:96:16:26:de:eb:d6:d2:3d:e5:f0:83:9f:23: eb:e3:f1:4b:37:0d:d0:65:2f:99:15:a7:e5:2b:86: 21:11:19:2b:23:d4:f7:03:1e:a7:0f:ed:51:24:59: da:cd:1a:45:32:be:51:ce:c0:bc:5e:3d:ac:eb:48: 8c:34:06:9e:ff:01:d4:bf:af:52:9d:c5:32:2b:97: c6:45:bc:d2:b0:a9:fc:ba:db:44:05:99:cd:51:0a: fb:85:e4:c7:54:17:61:0f:cc:e0:e4:2f:03:5f:77: b6:ef:8f:17:c6:82:a3:1e:1c:ba:19:1b:ee:bf:e8: 82:a6:31:ab:1b:0b:78:90:c8:39:bc:f2:3b:94:fc: 23:f6:44:9d:b9:69:84:d0:9f:92:0e:fe:e2:cd:42: c7:78:76:7f:24:19:03:53:b5:fd:cb:b5:cd:b7:42: 61:cf:b3:c5:3d:22:62:95:11:cb:99:bf:ae:df:77: 69:45:15:30:86:cf:3d:16:08:ed:f2:9c:55:77:1c: 2a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:82:C6:10:DB:78:16:CB:A6:6C:97:3D:2A:60:7B:CE:99:5E:0A:BC X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:2c:d3:18:23:73:99:b3:88:13:69:f7:74:2b:58:b2:16:6d: cc:54:b5:14:9b:eb:0e:08:4e:93:68:51:30:e4:d6:c9:d6:df: c3:3d:9d:9d:6b:2e:1c:63:8f:54:91:a2:a5:14:05:22:a4:07: f9:77:82:dd:cf:5f:89:ec:6d:15:c3:51:24:35:26:22:d8:1a: 6d:01:47:dc:83:62:80:dc:79:36:24:2d:26:5e:7d:7a:0b:61: 68:5a:a9:6b:3b:58:72:a6:b8:77:38:90:cf:20:12:65:9e:95: 4a:77:a7:02:5e:55:65:61:e8:7b:2c:41:8a:dd:d7:de:59:0d: 07:f9:6d:3f:42:11:15:5e:e7:18:bb:21:8e:93:35:9f:14:ab: d1:cb:ba:b8:0d:21:d8:f9:6a:52:8b:c5:50:ca:31:c4:3b:f6: a5:2e:08:b7:be:b1:ed:50:b5:5e:a5:70:e3:5d:e6:03:38:d2: 6c:20:b5:b7:ea:dd:31:91:d8:29:74:e2:16:4a:2e:6a:36:83: e8:1b:c4:5a:ae:91:07:7c:27:70:0d:02:09:0f:bd:fd:9e:fa: ba:0f:54:43:01:96:21:f9:4b:7d:a5:e5:56:ff:2c:42:51:71: 29:a2:92:55:c1:b6:06:8a:43:ed:08:cb:75:1b:a0:f6:25:ec: 0b:58:b5:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUwNzAxMDAzMDE5WhcNMjUwNzA4MDAzMDE5WjAYMRYwFAYD VQQDEw02ODYzMmMxYi1jZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkWwdjjyI/t4/UXVc8gFCA3mRNNhplq/ijrD/iQZh/MPBu5+vxzbZgwiRfi5 /1169XRY/NyLo9daBZNOqZYWJt7r1tI95fCDnyPr4/FLNw3QZS+ZFaflK4YhERkr I9T3Ax6nD+1RJFnazRpFMr5RzsC8Xj2s60iMNAae/wHUv69SncUyK5fGRbzSsKn8 uttEBZnNUQr7heTHVBdhD8zg5C8DX3e2748XxoKjHhy6GRvuv+iCpjGrGwt4kMg5 vPI7lPwj9kSduWmE0J+SDv7izULHeHZ/JBkDU7X9y7XNt0Jhz7PFPSJilRHLmb+u 33dpRRUwhs89Fgjt8pxVdxwqQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqCxhDb eBbLpmyXPSpge86ZXgq8MB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjLNMYI3OZs4gTafd0K1iyFm3MVLUUm+sOCE6TaFEw5NbJ1t/DPZ2d ay4cY49UkaKlFAUipAf5d4Ldz1+J7G0Vw1EkNSYi2BptAUfcg2KA3Hk2JC0mXn16 C2FoWqlrO1hyprh3OJDPIBJlnpVKd6cCXlVlYeh7LEGK3dfeWQ0H+W0/QhEVXucY uyGOkzWfFKvRy7q4DSHY+WpSi8VQyjHEO/alLgi3vrHtULVepXDjXeYDONJsILW3 6t0xkdgpdOIWSi5qNoPoG8RarpEHfCdwDQIJD739nvq6D1RDAZYh+Ut9peVW/yxC UXEpopJVwbYGikPtCMt1G6D2JewLWLXB -----END CERTIFICATE-----Generated at Wed Jul 2 10:18:35 2025 by rpki-client