$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft File: kNimlscsPFwGLY8AJhBf_c0Bz40.mft (raw, json) Hash identifier: smnnC8R5C+c3OYoxV/6Ueq0EeQt7e1gntUIHxLKBHJs= Subject key identifier: B8:FF:35:91:2F:7C:9E:F4:75:C8:25:10:5E:2F:8A:1B:6D:10:46:5D Authority key identifier: 90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D Certificate issuer: /CN=A9192C28/serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Certificate serial: 0424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft Manifest number: 041C Signing time: Thu 12 Jun 2025 23:57:56 +0000 Manifest this update: Thu 12 Jun 2025 23:57:56 +0000 Manifest next update: Thu 19 Jun 2025 23:57:56 +0000 Files and hashes: 1: kNimlscsPFwGLY8AJhBf_c0Bz40.crl (hash: iLrX7CZsBdL+q8btiCB4UTEX09Fjghq0uVeU4feBYbU=) 2: 28741DDC85CD11ECA5E28171C4F9AE02.roa (hash: c0Qo/V4Zd6PI/SmvO+fxR2cS+G3poh+IiHb3vxBLGEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C28, serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Validity Not Before: Jun 12 23:57:56 2025 GMT Not After : Jun 19 23:57:56 2025 GMT Subject: CN=684b6984-245a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d2:b5:dc:8c:25:80:28:d3:9c:2a:93:49:a5: 65:ff:3c:87:58:92:ca:8e:14:48:67:19:09:8f:ca: bd:47:0e:40:dd:63:4a:d3:4a:50:45:01:b9:60:16: eb:88:17:0e:ed:b6:c9:97:c3:b4:f7:42:87:63:94: df:f8:9f:13:78:04:24:75:5f:11:9c:e4:90:fb:6a: 3d:84:70:98:d2:63:5d:eb:f9:75:1d:b3:85:fa:ec: d5:2d:e1:3f:3e:d7:a7:b2:43:c9:37:76:66:1d:61: c6:e6:bd:66:1d:28:9e:a5:57:72:33:78:f4:ca:30: 92:49:bf:0a:c6:2d:70:30:8d:f7:db:8d:29:65:c8: d5:48:69:6a:87:9f:29:09:31:78:20:15:8f:4b:a2: 38:a4:46:d3:e5:8e:dc:8c:93:e2:f8:3f:f2:1d:33: 7c:1b:d3:84:61:c1:04:77:f8:a3:44:79:5d:94:67: f0:cb:39:04:0c:66:fb:75:93:60:6c:73:fe:5d:8b: 0c:c3:d8:9e:9a:8c:ac:5e:1a:82:55:2b:83:4f:2e: c9:4e:e6:f7:ec:8e:b8:82:01:6c:7b:8b:b1:8c:1b: 04:96:cf:8a:3e:ea:a1:86:9b:45:5d:2d:c0:83:54: e8:98:2e:77:1f:8a:c6:41:2f:4e:3d:92:d0:ca:6b: 08:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FF:35:91:2F:7C:9E:F4:75:C8:25:10:5E:2F:8A:1B:6D:10:46:5D X509v3 Authority Key Identifier: keyid:90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:fb:fa:fa:a2:da:07:f3:0a:02:d5:7a:e1:7c:c7:80:f0:a3: d5:44:96:97:58:01:9e:84:7e:bc:cf:38:76:68:00:ee:d7:08: e9:78:49:dd:92:9f:05:ba:52:6b:7f:59:75:e2:5f:67:18:0e: 84:df:c6:03:d8:44:a6:f9:90:e9:ad:8b:5b:43:4f:39:79:10: 53:c0:a3:be:49:a3:f4:f8:47:75:fb:57:82:dc:2a:c0:a4:5b: 85:75:b2:19:c0:cd:b8:a4:33:4f:31:f8:1e:cb:71:db:fe:37: 9c:5e:39:b4:a4:c2:d5:32:04:86:d8:e5:8e:94:23:d1:ea:3d: b4:81:19:be:83:5f:78:4a:a4:65:ea:3e:ae:58:74:ce:4f:82: c3:2e:d8:56:1c:99:68:83:38:18:8d:71:11:56:31:db:62:79: b6:15:43:ba:82:01:41:e4:e4:8b:7a:db:42:bd:ac:4e:3b:e8: d3:ed:59:10:fd:e3:59:43:da:9c:59:9b:bc:88:fa:a4:b5:e6: 2a:9d:c4:70:ef:c1:39:d4:78:7d:8c:9c:af:b6:53:43:0b:32: 3d:4a:d5:4d:0e:5f:15:38:1f:90:a8:5a:7f:a4:59:d0:73:4a: f5:13:61:99:3d:a5:76:d0:30:15:d0:2a:0c:da:20:9f:2d:72: 7a:97:ae:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMjgxMTAvBgNVBAUTKDkwRDhBNjk2QzcyQzNDNUMwNjJEOEYwMDI2MTA1RkZE Q0QwMUNGOEQwHhcNMjUwNjEyMjM1NzU2WhcNMjUwNjE5MjM1NzU2WjAYMRYwFAYD VQQDEw02ODRiNjk4NC0yNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NK13IwlgCjTnCqTSaVl/zyHWJLKjhRIZxkJj8q9Rw5A3WNK00pQRQG5YBbr iBcO7bbJl8O090KHY5Tf+J8TeAQkdV8RnOSQ+2o9hHCY0mNd6/l1HbOF+uzVLeE/ PtenskPJN3ZmHWHG5r1mHSiepVdyM3j0yjCSSb8Kxi1wMI33240pZcjVSGlqh58p CTF4IBWPS6I4pEbT5Y7cjJPi+D/yHTN8G9OEYcEEd/ijRHldlGfwyzkEDGb7dZNg bHP+XYsMw9iemoysXhqCVSuDTy7JTub37I64ggFse4uxjBsEls+KPuqhhptFXS3A g1TomC53H4rGQS9OPZLQymsIlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLj/NZEv fJ70dcglEF4vihttEEZdMB8GA1UdIwQYMBaAFJDYppbHLDxcBi2PACYQX/3NAc+N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMyOC8zQTAxNjQ3NjZE NTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BGd0dMWThBSmhCZl9jMEJ6 NDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOaW1sc2NzUEZ3R0xZOEFKaEJmX2MwQno0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkMyOC8zQTAxNjQ3NjZENTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BG d0dMWThBSmhCZl9jMEJ6NDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe+/r6otoH8woC1XrhfMeA8KPVRJaXWAGehH68zzh2aADu1wjpeEnd kp8FulJrf1l14l9nGA6E38YD2ESm+ZDprYtbQ085eRBTwKO+SaP0+Ed1+1eC3CrA pFuFdbIZwM24pDNPMfgey3Hb/jecXjm0pMLVMgSG2OWOlCPR6j20gRm+g194SqRl 6j6uWHTOT4LDLthWHJlogzgYjXERVjHbYnm2FUO6ggFB5OSLettCvaxOO+jT7VkQ /eNZQ9qcWZu8iPqkteYqncRw78E51Hh9jJyvtlNDCzI9StVNDl8VOB+QqFp/pFnQ c0r1E2GZPaV20DAV0CoM2iCfLXJ6l67G -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:00 2025 by rpki-client