$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft File: JWZWaoTF3OdvO385CN5_MrhnZwc.mft (raw, json) Hash identifier: 3MJaNaHXAtpyUzjOO21VzR0LqW8dcV0usVNDWA5CRYQ= Subject key identifier: 5F:96:2C:2B:AC:F8:81:CF:9E:01:29:F2:28:F0:42:F3:8D:10:38:C9 Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 028A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft Manifest number: 0287 Signing time: Tue 01 Jul 2025 02:20:24 +0000 Manifest this update: Tue 01 Jul 2025 02:20:24 +0000 Manifest next update: Tue 08 Jul 2025 02:20:24 +0000 Files and hashes: 1: JWZWaoTF3OdvO385CN5_MrhnZwc.crl (hash: Y4a/UWjqIGRAyOn5frdcw+TH+dCSvCCGPoan5tmlVlw=) 2: 282282B60D3011ED8DC4D26BC4F9AE02.roa (hash: +qGeYJ79wvR0PdN91NY3rl/FLbIL0ABFLzdMSwQ0Nxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Jul 1 02:20:24 2025 GMT Not After : Jul 8 02:20:24 2025 GMT Subject: CN=686345e8-f73b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f3:81:80:46:55:09:5e:62:f1:37:42:38:06: 23:f5:03:3f:6b:4b:a4:37:e3:78:cc:c9:f9:94:33: ed:2b:9f:3d:10:35:53:ed:7f:50:a2:c0:d5:22:7c: ec:9e:29:6b:3d:5d:50:38:54:d9:cc:a4:60:ee:54: bb:55:15:d0:9e:2a:92:28:b5:61:b5:34:d2:e6:21: 45:0b:71:46:a7:fd:89:d0:60:ae:52:58:7f:f6:ce: 0d:77:21:bc:99:b6:c1:e6:08:de:79:33:2a:c5:5e: 2c:0d:d3:cf:c7:58:d9:74:66:ef:7b:f1:18:5f:85: 38:2b:33:bd:56:78:59:1a:53:3b:e5:28:ed:01:e4: 3b:d3:39:07:69:14:66:2d:35:e9:8c:e6:f8:ca:a9: eb:7d:98:30:c3:b8:f0:c6:2f:10:b1:3a:69:06:8c: 60:55:67:3f:74:b3:e1:31:28:2f:6b:b5:fc:95:b0: 57:af:98:46:8e:55:a1:86:f5:74:4a:39:7e:9a:ad: ed:19:03:3e:f2:1f:45:89:9f:0f:21:95:06:17:c2: 7d:4f:b9:2d:45:b9:70:48:c5:a5:07:30:a5:15:9b: 59:b5:c3:65:e8:c3:93:f3:d8:b9:8d:38:10:8e:52: ea:b1:0f:f8:2f:ab:3d:39:a1:44:ff:46:ef:b4:0b: 30:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:96:2C:2B:AC:F8:81:CF:9E:01:29:F2:28:F0:42:F3:8D:10:38:C9 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:84:83:8f:b0:06:ed:99:9b:b0:53:84:17:6c:77:67:1f:11: 45:93:fc:43:96:15:46:02:ac:ef:4e:85:e3:4f:7a:9c:1b:b4: 71:3a:47:cd:f8:34:70:e0:c8:39:a6:11:f6:26:5a:d5:84:99: 5e:4d:5b:12:32:73:91:ee:1c:24:51:04:e8:12:f9:1a:96:96: 97:af:e2:fe:41:30:ea:87:01:db:2b:2a:cd:a5:23:6f:79:d9: 11:47:8e:90:48:3c:5e:d2:ad:62:49:fa:04:3d:4b:bb:7b:b2: fc:6a:8d:e0:08:d4:34:e3:df:a4:20:2d:46:dd:9e:c6:83:5d: d4:92:da:e0:4f:3b:eb:c5:0f:c1:ba:c0:26:a3:94:1b:7a:8a: 39:0c:10:d3:f0:f2:e9:52:5c:98:eb:e7:2b:12:e0:0b:0f:ad: 52:54:03:d2:15:ad:d0:e3:55:d1:0b:5b:0b:95:0e:39:2a:1b: 5b:37:62:0c:98:2e:4e:29:4f:d9:b2:f9:83:dc:b8:c8:3e:ad: 46:ec:ec:eb:87:f9:09:36:bd:f0:e8:34:92:fc:05:f2:e6:ff: ac:02:0e:db:9a:b3:79:75:43:40:b6:27:2d:ed:c6:03:38:fc: 6b:bb:e3:63:e1:20:33:54:ba:49:c7:87:3f:5a:f1:6f:e0:8f: 55:df:dc:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUwNzAxMDIyMDI0WhcNMjUwNzA4MDIyMDI0WjAYMRYwFAYD VQQDEw02ODYzNDVlOC1mNzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPOBgEZVCV5i8TdCOAYj9QM/a0ukN+N4zMn5lDPtK589EDVT7X9QosDVInzs nilrPV1QOFTZzKRg7lS7VRXQniqSKLVhtTTS5iFFC3FGp/2J0GCuUlh/9s4NdyG8 mbbB5gjeeTMqxV4sDdPPx1jZdGbve/EYX4U4KzO9VnhZGlM75SjtAeQ70zkHaRRm LTXpjOb4yqnrfZgww7jwxi8QsTppBoxgVWc/dLPhMSgva7X8lbBXr5hGjlWhhvV0 Sjl+mq3tGQM+8h9FiZ8PIZUGF8J9T7ktRblwSMWlBzClFZtZtcNl6MOT89i5jTgQ jlLqsQ/4L6s9OaFE/0bvtAsw1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+WLCus +IHPngEp8ijwQvONEDjJMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUYzNy9DOENDNUFCNDBEMkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNP ZHZPMzg1Q041X01yaG5ad2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0hIOPsAbtmZuwU4QXbHdnHxFFk/xDlhVGAqzvToXjT3qcG7RxOkfN +DRw4Mg5phH2JlrVhJleTVsSMnOR7hwkUQToEvkalpaXr+L+QTDqhwHbKyrNpSNv edkRR46QSDxe0q1iSfoEPUu7e7L8ao3gCNQ049+kIC1G3Z7Gg13UktrgTzvrxQ/B usAmo5Qbeoo5DBDT8PLpUlyY6+crEuALD61SVAPSFa3Q41XRC1sLlQ45KhtbN2IM mC5OKU/ZsvmD3LjIPq1G7Ozrh/kJNr3w6DSS/AXy5v+sAg7bmrN5dUNAtict7cYD OPxru+Nj4SAzVLpJx4c/WvFv4I9V39xt -----END CERTIFICATE-----Generated at Wed Jul 2 19:18:43 2025 by rpki-client