$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft File: JWZWaoTF3OdvO385CN5_MrhnZwc.mft (raw, json) Hash identifier: YihLw+LMmVYhufMrE9b3Tm3CzUFtKi76lVJEW7xkcaE= Subject key identifier: 62:46:6C:27:CC:3F:D8:D0:D6:36:19:AE:80:0B:B3:63:03:DE:DC:E5 Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft Manifest number: 02C1 Signing time: Sun 19 Oct 2025 03:34:42 +0000 Manifest this update: Sun 19 Oct 2025 03:34:41 +0000 Manifest next update: Sun 26 Oct 2025 03:34:41 +0000 Files and hashes: 1: JWZWaoTF3OdvO385CN5_MrhnZwc.crl (hash: yO+ORBPuAYW3A/lWTpbycmh9301EMMPJjcJFMnS2Pkg=) 2: 282282B60D3011ED8DC4D26BC4F9AE02.roa (hash: MWEsRQVRa9qaHn6fTEOexcENWAVY9rzeLcSk3zwVJV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Oct 19 03:34:41 2025 GMT Not After : Oct 26 03:34:41 2025 GMT Subject: CN=68f45c52-7ea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6a:0d:01:5f:25:08:43:05:14:f3:f0:ad:4d: dc:8b:53:f0:ac:7e:83:65:16:25:f6:90:6c:0b:89: 4a:e7:0d:a0:c4:59:f7:08:ef:48:c8:27:d0:c1:85: 83:ef:2e:2a:91:2e:87:ba:4c:6c:44:17:2b:31:41: 13:49:e3:77:dc:66:2c:8d:16:67:d8:f7:34:ce:99: 8b:c4:4e:41:85:e0:53:e6:81:d1:f2:5e:d1:16:ae: a0:58:9b:13:fb:b5:81:88:09:8e:4a:93:08:a5:e1: 53:c4:1e:3f:18:32:3f:0e:03:5c:dd:2e:46:06:6b: a5:18:a8:80:02:0d:70:4c:dc:c0:f2:4e:10:fb:1d: c4:da:38:ae:f0:77:3f:cb:d4:84:64:07:dd:4b:6b: ce:f3:3e:02:1c:20:4c:d9:3e:c0:ba:0b:b3:87:9e: e7:17:fe:f9:eb:16:eb:bd:d3:e5:91:f4:20:f9:96: 1f:f9:ab:3e:86:28:59:51:28:00:20:30:38:8c:dc: ba:f2:3b:a5:70:0d:2f:de:b8:2d:7e:67:99:20:75: ba:f2:1e:ba:98:31:a5:bd:e6:ec:d8:72:88:10:93: df:bd:19:a9:a5:56:e7:0a:60:08:3d:66:24:62:99: 7c:f9:d3:27:a9:f3:85:a6:b1:d5:67:6c:cd:d9:b6: a8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:46:6C:27:CC:3F:D8:D0:D6:36:19:AE:80:0B:B3:63:03:DE:DC:E5 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:7d:db:f2:fb:1d:be:44:cd:87:9f:19:56:ab:ab:95:5c:99: 09:7e:35:69:cb:9e:0e:d3:34:9a:d7:29:6a:e7:01:c1:f0:4e: 08:43:4d:09:94:e8:42:72:06:70:73:fe:16:f1:9a:a3:2a:90: 1e:80:8f:89:64:4d:d6:de:cc:f5:8b:18:ba:89:3e:69:95:61: cf:c4:82:2c:ec:21:d1:8b:0d:4f:89:54:ec:58:f5:2c:21:8f: be:be:6e:70:16:b9:e2:38:55:6d:a0:49:d7:8a:20:93:2d:b0: 8a:7e:6f:31:fc:15:ad:94:24:9f:33:2c:54:55:da:0a:f7:9d: 89:09:a2:fa:0d:a6:ce:bd:8f:55:11:54:a3:46:bb:5d:98:c6: 92:01:95:ac:f3:0e:ee:7a:83:45:7e:a2:4a:c8:83:64:13:ad: 52:af:73:ab:cc:ac:43:ef:7e:68:99:6d:af:70:ee:6f:c8:9e: 7e:94:71:8c:ca:c4:1f:a3:43:f3:02:f9:d6:27:03:03:5f:9c: 76:79:51:05:32:62:45:46:f4:51:56:0b:0e:6c:88:c5:0d:45: db:16:e2:f1:3e:c3:49:0a:15:1c:37:b7:c0:56:77:62:11:e9: 73:af:cd:f4:51:04:3d:e5:0d:bc:4f:41:e5:76:d0:a1:12:1d: d5:3d:b4:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUxMDE5MDMzNDQxWhcNMjUxMDI2MDMzNDQxWjAYMRYwFAYD VQQDEw02OGY0NWM1Mi03ZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGoNAV8lCEMFFPPwrU3ci1PwrH6DZRYl9pBsC4lK5w2gxFn3CO9IyCfQwYWD 7y4qkS6HukxsRBcrMUETSeN33GYsjRZn2Pc0zpmLxE5BheBT5oHR8l7RFq6gWJsT +7WBiAmOSpMIpeFTxB4/GDI/DgNc3S5GBmulGKiAAg1wTNzA8k4Q+x3E2jiu8Hc/ y9SEZAfdS2vO8z4CHCBM2T7Auguzh57nF/756xbrvdPlkfQg+ZYf+as+hihZUSgA IDA4jNy68julcA0v3rgtfmeZIHW68h66mDGlvebs2HKIEJPfvRmppVbnCmAIPWYk Ypl8+dMnqfOFprHVZ2zN2bao4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJGbCfM P9jQ1jYZroALs2MD3tzlMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUYzNy9DOENDNUFCNDBEMkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNP ZHZPMzg1Q041X01yaG5ad2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBfdvy+x2+RM2HnxlWq6uVXJkJfjVpy54O0zSa1ylq5wHB8E4IQ00J lOhCcgZwc/4W8ZqjKpAegI+JZE3W3sz1ixi6iT5plWHPxIIs7CHRiw1PiVTsWPUs IY++vm5wFrniOFVtoEnXiiCTLbCKfm8x/BWtlCSfMyxUVdoK952JCaL6DabOvY9V EVSjRrtdmMaSAZWs8w7ueoNFfqJKyINkE61Sr3OrzKxD735omW2vcO5vyJ5+lHGM ysQfo0PzAvnWJwMDX5x2eVEFMmJFRvRRVgsObIjFDUXbFuLxPsNJChUcN7fAVndi Eelzr830UQQ95Q28T0HldtChEh3VPbSJ -----END CERTIFICATE-----Generated at Tue Oct 21 07:17:08 2025 by rpki-client