$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft File: JWZWaoTF3OdvO385CN5_MrhnZwc.mft (raw, json) Hash identifier: xmWcZf1pgJuMDinCbZkI/tNWYSQFzO86tlJCpcUOAQA= Subject key identifier: E9:7D:F9:F2:FE:41:C8:DF:12:58:46:E1:E9:AA:D9:3F:8B:B3:DC:4C Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft Manifest number: 02A4 Signing time: Sat 23 Aug 2025 01:47:56 +0000 Manifest this update: Sat 23 Aug 2025 01:47:56 +0000 Manifest next update: Sat 30 Aug 2025 01:47:56 +0000 Files and hashes: 1: JWZWaoTF3OdvO385CN5_MrhnZwc.crl (hash: GHTJDHw3FTl/38xtOe7g6SCVpb+P17SaS4PJ0IK35Fs=) 2: 282282B60D3011ED8DC4D26BC4F9AE02.roa (hash: MWEsRQVRa9qaHn6fTEOexcENWAVY9rzeLcSk3zwVJV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Aug 23 01:47:56 2025 GMT Not After : Aug 30 01:47:56 2025 GMT Subject: CN=68a91dcc-2b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:64:5a:5b:b9:6c:e6:1a:2a:1c:1b:26:71:4b: 15:ad:76:01:f7:c4:60:fe:84:9d:90:0a:08:bb:0f: c2:77:60:3e:13:c5:0c:5c:75:8e:67:8a:b4:20:dd: 4a:da:ca:04:b2:2b:58:9a:e2:19:43:9b:94:5a:ff: ef:23:92:09:09:1a:1a:dd:a9:e9:5d:b5:0b:cb:0a: 27:b1:fc:5d:a2:e6:08:16:ff:50:67:58:af:36:24: 40:2c:8e:7a:e1:d4:00:c0:06:e2:2a:a9:7f:9d:0a: c4:99:d3:3e:bb:3e:8e:c4:aa:87:e1:a1:36:0a:92: 71:bf:1a:70:e4:01:1d:e2:62:37:c3:c0:c3:6c:9e: a3:02:2e:c0:ae:78:97:27:19:8b:a9:05:c1:41:d6: 52:b9:b8:9b:89:33:30:31:6b:a5:38:88:61:62:49: 83:4d:b0:50:0b:21:3e:99:84:5f:21:73:df:8a:df: 39:40:8e:0f:df:94:88:2c:4c:bb:1d:63:04:7f:9d: d0:fa:7a:0b:98:5f:7c:8a:8a:98:06:f2:5c:10:4c: 99:74:97:c7:2a:a9:a8:ef:00:04:45:04:f3:9c:8d: e2:5d:59:3b:2c:50:be:b9:04:dd:61:d7:a8:5f:7d: d4:06:af:1d:94:24:a4:37:c0:f5:83:63:5a:9f:d2: 4d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7D:F9:F2:FE:41:C8:DF:12:58:46:E1:E9:AA:D9:3F:8B:B3:DC:4C X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:35:55:40:f0:3d:0a:d7:38:f0:7e:d5:40:81:bd:4b:c2:45: 40:9f:19:7f:00:9a:98:8d:5f:aa:4f:8a:e7:02:20:2b:84:93: 28:5e:8b:22:e8:ff:38:ba:c4:f5:8f:27:97:24:0d:9d:86:bb: b7:8a:d9:f3:7a:28:46:a0:10:25:bd:9f:9b:a1:28:fe:71:36: 3b:5a:f5:68:32:38:39:c2:71:bd:58:38:ce:d8:9d:25:ef:c7: b3:ac:32:cc:ba:61:ec:1c:1a:d0:fc:64:f4:bd:38:45:e6:45: 27:f3:f3:94:c1:80:00:46:42:34:b7:52:41:7c:7a:24:6c:a8: c2:dd:4e:91:b0:87:d2:bf:3d:4a:e1:9f:38:26:77:a4:0a:53: 79:d5:65:d1:29:4b:b4:72:4f:a1:99:9f:13:51:f9:85:f9:b1: a2:f8:f6:69:00:17:9c:aa:5e:17:2c:a5:3f:bc:6e:41:e7:82: 00:1b:46:2b:27:02:48:5f:ac:8e:22:f9:4b:cb:bb:eb:e4:1a: e8:f9:a5:d5:8e:a7:7c:26:b7:0f:80:3a:49:c1:a5:e3:fa:41: fe:84:53:fa:b4:f1:1f:be:70:1d:65:f8:94:57:8f:a8:06:6b: 2b:2e:21:37:50:07:b8:33:f4:d0:a7:a3:0c:43:e0:64:ac:79: 4a:32:39:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUwODIzMDE0NzU2WhcNMjUwODMwMDE0NzU2WjAYMRYwFAYD VQQDEw02OGE5MWRjYy0yYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGRaW7ls5hoqHBsmcUsVrXYB98Rg/oSdkAoIuw/Cd2A+E8UMXHWOZ4q0IN1K 2soEsitYmuIZQ5uUWv/vI5IJCRoa3anpXbULywonsfxdouYIFv9QZ1ivNiRALI56 4dQAwAbiKql/nQrEmdM+uz6OxKqH4aE2CpJxvxpw5AEd4mI3w8DDbJ6jAi7ArniX JxmLqQXBQdZSubibiTMwMWulOIhhYkmDTbBQCyE+mYRfIXPfit85QI4P35SILEy7 HWMEf53Q+noLmF98ioqYBvJcEEyZdJfHKqmo7wAERQTznI3iXVk7LFC+uQTdYdeo X33UBq8dlCSkN8D1g2Nan9JNjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl9+fL+ QcjfElhG4emq2T+Ls9xMMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUYzNy9DOENDNUFCNDBEMkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNP ZHZPMzg1Q041X01yaG5ad2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNNVVA8D0K1zjwftVAgb1LwkVAnxl/AJqYjV+qT4rnAiArhJMoXosi 6P84usT1jyeXJA2dhru3itnzeihGoBAlvZ+boSj+cTY7WvVoMjg5wnG9WDjO2J0l 78ezrDLMumHsHBrQ/GT0vThF5kUn8/OUwYAARkI0t1JBfHokbKjC3U6RsIfSvz1K 4Z84JnekClN51WXRKUu0ck+hmZ8TUfmF+bGi+PZpABecql4XLKU/vG5B54IAG0Yr JwJIX6yOIvlLy7vr5Bro+aXVjqd8JrcPgDpJwaXj+kH+hFP6tPEfvnAdZfiUV4+o BmsrLiE3UAe4M/TQp6MMQ+BkrHlKMjnp -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:53 2025 by rpki-client