$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft File: kNimlscsPFwGLY8AJhBf_c0Bz40.mft (raw, json) Hash identifier: W/9zhLyInMmKmer31Ii1VjHDzhXdPlX1m79O9XNFCsE= Subject key identifier: F4:17:1A:FA:EE:1B:EE:29:C0:2A:D7:6E:8D:AD:AF:FC:1B:5A:27:58 Authority key identifier: 90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D Certificate issuer: /CN=A9192C28/serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Certificate serial: 046C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft Manifest number: 0464 Signing time: Mon 03 Nov 2025 00:08:45 +0000 Manifest this update: Mon 03 Nov 2025 00:08:44 +0000 Manifest next update: Mon 10 Nov 2025 00:08:44 +0000 Files and hashes: 1: kNimlscsPFwGLY8AJhBf_c0Bz40.crl (hash: S7HiXvT4FnGNfsqKHtw/Z8CotD5pFdIEtKlFBpkX6Xs=) 2: 28741DDC85CD11ECA5E28171C4F9AE02.roa (hash: c0Qo/V4Zd6PI/SmvO+fxR2cS+G3poh+IiHb3vxBLGEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1132 (0x46c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C28, serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Validity Not Before: Nov 3 00:08:44 2025 GMT Not After : Nov 10 00:08:44 2025 GMT Subject: CN=6907f28d-ba75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:76:d1:a8:c5:de:b9:64:c5:05:2a:c5:ae:e8: 13:e5:06:72:c3:c6:26:ae:f0:b7:de:6e:a4:1c:57: 43:c7:88:d3:19:b1:d2:5b:47:68:62:3e:3c:a0:a3: 1b:eb:c2:93:b5:55:bf:32:89:ae:b3:31:3a:9c:39: bc:ae:a6:f9:2c:e7:85:f7:c7:de:03:46:5f:e2:d8: b9:ca:c2:4e:6a:4e:e8:66:ce:59:30:03:2b:f1:21: 4e:24:8d:b2:78:c9:be:8b:e1:4c:b0:2c:6a:0f:be: 09:48:ff:5e:6e:3d:b5:d7:f1:fb:9b:0e:9f:a1:90: 66:77:d1:e1:fe:c0:16:af:2c:d7:33:55:87:8c:df: 9f:23:a3:0b:7b:d2:8a:af:92:45:c7:76:97:d9:fe: d8:41:75:c9:61:cf:ee:3e:3e:47:98:8e:1f:31:61: 63:29:d9:93:36:4c:8b:6e:2d:7c:e0:5b:ec:d1:dc: 2e:50:8f:3e:01:e9:2b:0f:97:b2:f9:4c:8c:b5:f7: 85:3c:88:97:76:7f:71:8f:2b:38:67:b6:78:92:56: ba:20:fc:7f:9e:87:31:12:1c:26:eb:7e:3a:da:f5: 09:5a:8f:2d:20:f1:c5:0d:f4:bd:3e:bd:1c:bf:9a: 7e:d9:59:76:c0:e1:4e:77:1f:42:80:d0:98:1d:be: 33:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:17:1A:FA:EE:1B:EE:29:C0:2A:D7:6E:8D:AD:AF:FC:1B:5A:27:58 X509v3 Authority Key Identifier: keyid:90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:46:59:33:2e:cb:0d:8a:04:c5:09:ca:b7:70:dc:58:49:8f: ea:43:e8:2e:09:6a:f6:a6:89:d2:a0:24:c3:54:b8:72:23:4c: 2f:8e:90:c3:f9:f4:14:dc:86:44:41:6a:2f:68:f8:a2:6f:f8: f9:0b:49:16:b5:ac:60:37:3c:a9:10:72:74:4d:3c:fc:6d:c8: 3f:ba:d3:89:f5:3a:54:a2:b3:a9:8e:35:88:cb:c5:92:ea:f1: 81:1e:90:f0:e7:1e:07:5d:8a:1f:8d:32:3d:e5:dd:91:ef:1b: 98:44:47:9f:e2:52:3f:48:fc:56:43:9f:06:fc:ec:bf:90:d7: 86:89:2e:9c:1b:d1:17:52:7a:09:7e:97:13:7f:a4:a1:ab:8d: f2:5f:9a:fc:da:53:54:c2:d5:da:7a:18:03:75:5b:3c:eb:86: ac:60:59:df:ee:d5:33:74:0d:64:ff:c3:63:3d:38:1e:cc:cd: f9:68:11:52:5a:b9:fd:1d:c9:5c:b9:6e:7a:e7:43:e1:0d:70: 54:2c:fb:66:4e:86:bf:81:f7:90:3b:a5:86:b1:34:09:cb:10: b9:46:94:f6:5f:9f:ab:15:67:75:5e:b9:87:a0:d7:8e:27:e6: c5:fa:ed:a9:2d:5a:3f:51:e8:5b:31:c6:0d:ee:48:6e:b5:d2: ed:88:6c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMjgxMTAvBgNVBAUTKDkwRDhBNjk2QzcyQzNDNUMwNjJEOEYwMDI2MTA1RkZE Q0QwMUNGOEQwHhcNMjUxMTAzMDAwODQ0WhcNMjUxMTEwMDAwODQ0WjAYMRYwFAYD VQQDEw02OTA3ZjI4ZC1iYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXbRqMXeuWTFBSrFrugT5QZyw8YmrvC33m6kHFdDx4jTGbHSW0doYj48oKMb 68KTtVW/MomuszE6nDm8rqb5LOeF98feA0Zf4ti5ysJOak7oZs5ZMAMr8SFOJI2y eMm+i+FMsCxqD74JSP9ebj211/H7mw6foZBmd9Hh/sAWryzXM1WHjN+fI6MLe9KK r5JFx3aX2f7YQXXJYc/uPj5HmI4fMWFjKdmTNkyLbi184Fvs0dwuUI8+AekrD5ey +UyMtfeFPIiXdn9xjys4Z7Z4kla6IPx/nocxEhwm63462vUJWo8tIPHFDfS9Pr0c v5p+2Vl2wOFOdx9CgNCYHb4zvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQXGvru G+4pwCrXbo2tr/wbWidYMB8GA1UdIwQYMBaAFJDYppbHLDxcBi2PACYQX/3NAc+N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMyOC8zQTAxNjQ3NjZE NTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BGd0dMWThBSmhCZl9jMEJ6 NDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOaW1sc2NzUEZ3R0xZOEFKaEJmX2MwQno0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkMyOC8zQTAxNjQ3NjZENTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BG d0dMWThBSmhCZl9jMEJ6NDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbRlkzLssNigTFCcq3cNxYSY/qQ+guCWr2ponSoCTDVLhyI0wvjpDD +fQU3IZEQWovaPiib/j5C0kWtaxgNzypEHJ0TTz8bcg/utOJ9TpUorOpjjWIy8WS 6vGBHpDw5x4HXYofjTI95d2R7xuYREef4lI/SPxWQ58G/Oy/kNeGiS6cG9EXUnoJ fpcTf6Shq43yX5r82lNUwtXaehgDdVs864asYFnf7tUzdA1k/8NjPTgezM35aBFS Wrn9HclcuW5650PhDXBULPtmToa/gfeQO6WGsTQJyxC5RpT2X5+rFWd1XrmHoNeO J+bF+u2pLVo/UehbMcYN7khutdLtiGxa -----END CERTIFICATE-----Generated at Tue Nov 4 12:46:43 2025 by rpki-client