$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: Cbp1JztWaG2anqVpfMSOfhukqkzK836+du11vc6xNuU= Subject key identifier: 34:8B:CC:47:C7:44:B3:CF:7F:4E:82:65:3D:99:D7:49:95:AB:5F:3C Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 0521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 0521 Signing time: Sat 04 Apr 2026 23:20:04 +0000 Manifest this update: Sat 04 Apr 2026 23:20:03 +0000 Manifest next update: Sat 11 Apr 2026 23:20:03 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: 9kKGlG9LCrc9htIwfvR9007cRZcc9SLOFshQaXGp4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1313 (0x521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Validity Not Before: Apr 4 23:20:03 2026 GMT Not After : Apr 11 23:20:03 2026 GMT Subject: CN=69d19ca3-ce9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:97:ed:b6:3a:2d:9b:88:65:62:d3:e1:1f: b8:3b:17:38:a7:df:c1:26:2c:b5:f3:9d:2a:8b:83: ef:a7:43:81:03:de:5c:cf:19:92:05:88:18:1e:9f: de:57:5f:e9:8f:8e:7c:3e:85:36:e4:50:04:87:aa: 1b:0e:14:51:09:51:78:09:87:38:0b:59:06:24:4d: bb:10:a6:33:a8:57:3d:ae:3d:5a:0b:20:90:7a:cf: c6:b1:d6:9c:27:7f:ab:6f:e5:29:30:eb:30:bc:a5: c2:91:ff:16:ee:d2:51:de:de:35:2d:7b:5e:8e:a7: 06:bd:ef:1a:62:2b:d0:11:d0:17:ef:2b:c2:37:62: 1d:e0:56:15:66:c3:1c:0a:ed:b4:a2:1b:56:26:26: d1:c1:ca:22:6c:c1:f9:4e:8e:f2:dd:80:d4:26:a9: ec:1b:0f:48:d0:4b:9f:3b:39:17:b0:55:76:db:cb: 33:92:a1:a9:3c:6a:92:19:b8:88:22:f7:17:e0:cb: 63:9c:83:d9:97:65:19:93:57:14:d5:35:2f:d4:d9: bd:27:eb:42:8f:0b:94:16:87:9f:a5:67:f3:ff:06: 7c:0f:e8:ea:75:48:b3:a2:36:a5:65:44:75:8d:37: f5:67:3b:a5:70:20:56:93:d1:c2:d7:1b:e8:9b:0b: 8f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:8B:CC:47:C7:44:B3:CF:7F:4E:82:65:3D:99:D7:49:95:AB:5F:3C X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:7d:9c:53:81:6a:97:46:17:bb:b7:4e:86:c3:f7:f2:e8:dc: 67:34:08:d5:e2:8c:7e:e6:3b:8f:49:9e:f0:5f:da:e1:17:32: d2:3b:ed:b4:cb:e1:d5:7c:a6:13:3f:77:67:51:a1:f7:25:65: 53:61:7c:4f:77:53:30:c5:8f:12:dc:36:88:7a:d5:17:76:70: 04:44:c7:7f:1e:28:07:b7:1f:0e:cc:c5:a6:06:90:00:b7:3f: dd:47:fc:af:a1:b9:b4:11:46:7f:f7:ad:58:db:4e:64:e7:a8: 3b:eb:11:80:3a:fa:bc:ac:ce:51:b7:6b:a5:0b:96:ba:8b:82: 42:3b:6e:b5:92:9a:d3:a6:b5:6b:b1:0e:97:09:93:ac:b2:83: fa:54:71:b5:db:d4:de:23:16:a2:4f:8e:ae:a4:30:51:79:03: 5e:3a:16:a5:ca:38:00:82:d1:b7:7f:35:ae:07:a3:08:89:f5: 40:3e:9a:73:3a:54:0d:01:13:7e:7d:15:09:58:15:27:34:ee: a7:d9:3b:07:40:0c:5c:8b:86:30:69:0b:66:5e:d9:d4:eb:ab: c4:d2:12:69:c4:e1:5b:e6:70:b1:d8:b2:73:4c:d8:78:75:e1: 11:ad:cc:94:89:df:db:63:24:69:49:8e:b2:d2:07:e0:88:82: 20:63:3e:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjYwNDA0MjMyMDAzWhcNMjYwNDExMjMyMDAzWjAYMRYwFAYD VQQDEw02OWQxOWNhMy1jZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zOX7bY6LZuIZWLT4R+4Oxc4p9/BJiy1850qi4Pvp0OBA95czxmSBYgYHp/e V1/pj458PoU25FAEh6obDhRRCVF4CYc4C1kGJE27EKYzqFc9rj1aCyCQes/Gsdac J3+rb+UpMOswvKXCkf8W7tJR3t41LXtejqcGve8aYivQEdAX7yvCN2Id4FYVZsMc Cu20ohtWJibRwcoibMH5To7y3YDUJqnsGw9I0EufOzkXsFV228szkqGpPGqSGbiI IvcX4MtjnIPZl2UZk1cU1TUv1Nm9J+tCjwuUFoefpWfz/wZ8D+jqdUizojalZUR1 jTf1ZzulcCBWk9HC1xvomwuPHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDSLzEfH RLPPf06CZT2Z10mVq188MB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAn2cU4Fql0YXu7dOhsP38ujcZzQI1eKMfuY7j0me8F/a4Rcy0jvttMvh1Xym Ez93Z1Gh9yVlU2F8T3dTMMWPEtw2iHrVF3ZwBETHfx4oB7cfDszFpgaQALc/3Uf8 r6G5tBFGf/etWNtOZOeoO+sRgDr6vKzOUbdrpQuWuouCQjtutZKa06a1a7EOlwmT rLKD+lRxtdvU3iMWok+OrqQwUXkDXjoWpco4AILRt381rgejCIn1QD6aczpUDQET fn0VCVgVJzTup9k7B0AMXIuGMGkLZl7Z1OurxNISacThW+Zwsdiyc0zYeHXhEa3M lInf22MkaUmOstIH4IiCIGM+DQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:17 2026 by rpki-client