$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft File: JWZWaoTF3OdvO385CN5_MrhnZwc.mft (raw, json) Hash identifier: TSj2ky7VT5+B91DXROt2LNiqsVmaK4ovZ8Y888Tz1XI= Subject key identifier: 34:AA:D1:E2:C3:32:6E:97:5B:C5:96:7A:84:6D:B6:8C:64:76:F0:56 Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 02A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft Manifest number: 029C Signing time: Thu 07 Aug 2025 02:11:28 +0000 Manifest this update: Thu 07 Aug 2025 02:11:27 +0000 Manifest next update: Thu 14 Aug 2025 02:11:27 +0000 Files and hashes: 1: JWZWaoTF3OdvO385CN5_MrhnZwc.crl (hash: CnDHY5GyM4IWBfDCn7HO6DNfolbEmewuu9WQzFbATDk=) 2: 282282B60D3011ED8DC4D26BC4F9AE02.roa (hash: MWEsRQVRa9qaHn6fTEOexcENWAVY9rzeLcSk3zwVJV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Aug 7 02:11:27 2025 GMT Not After : Aug 14 02:11:27 2025 GMT Subject: CN=68940b4f-1166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e5:09:6b:aa:89:41:fc:c0:a6:dc:7b:a1:9f: b4:c5:ad:44:14:5a:a1:41:f9:b7:63:f9:32:57:49: c1:3a:a8:08:3b:73:17:08:1b:e3:9e:78:a6:d3:fd: 11:4a:65:e0:b9:15:a9:73:2b:c9:82:0b:15:52:10: 55:33:92:df:f4:ac:6c:e0:de:43:fb:b2:26:ee:8c: c5:19:c0:61:ec:ba:38:53:4c:8e:1e:1d:4c:c9:8f: 7c:e1:1b:50:79:7b:8f:11:5b:fb:04:95:d2:2a:1b: 2f:00:4f:8d:3d:6e:80:4c:0e:8e:66:8e:e9:7a:9a: ce:ee:18:fe:1a:aa:90:9c:a7:1e:e5:1b:48:e0:6e: af:3c:43:19:99:98:d7:6a:2e:d2:75:12:6b:aa:5e: 82:c4:02:d2:66:f2:90:4b:eb:62:81:7e:07:1c:ba: 80:ec:43:0f:ab:7b:5f:b8:43:e4:34:22:03:78:58: 0d:80:6c:0c:69:ef:a7:ca:30:04:f1:32:5a:a4:4b: 89:42:2c:cf:70:ac:28:3a:29:b9:80:5c:22:a4:52: 5a:ae:69:64:dd:8d:ad:0b:c8:60:ca:d5:d0:70:18: 40:15:a9:ef:24:4c:fc:85:fd:8d:68:b7:d9:e5:25: d6:c8:b0:d2:6d:8d:5d:84:75:c5:b9:75:3c:61:33: 7a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AA:D1:E2:C3:32:6E:97:5B:C5:96:7A:84:6D:B6:8C:64:76:F0:56 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:89:31:f8:de:96:a4:a9:ba:61:70:77:23:6c:58:d3:c9:e6: 8f:e5:54:02:4f:bd:b6:73:1f:ba:54:e8:06:e9:2c:4d:43:e2: b1:85:57:20:7e:88:93:40:81:81:23:a4:a8:a0:2b:c6:65:9b: a0:3d:d5:2e:80:94:f2:dc:b7:0b:ee:4b:d9:ab:f5:fa:a2:bf: 9d:91:5c:48:29:6c:3b:96:87:96:ed:34:c3:cf:d0:0d:0f:fc: de:f5:67:0e:8d:12:93:5a:3a:be:2e:60:ac:4d:ce:b4:b3:d0: d4:21:89:f8:dc:48:e1:8e:dc:79:bc:02:bf:7d:df:21:a3:66: b0:3a:bf:0c:62:8b:d6:1d:2a:b5:9c:bc:24:6c:8d:c5:2e:72: 5a:a9:63:c2:f0:23:7a:a4:4c:32:77:c5:f2:7f:1c:0c:a8:d9: 7e:fb:5c:ca:cd:af:ed:47:f2:74:bd:a1:69:71:b3:a8:e7:4a: cc:92:ea:f0:5d:cc:b9:f8:92:8f:61:61:fb:cf:66:5e:e5:61: 4f:75:b1:83:8a:71:f3:65:d5:85:4e:2d:01:70:0b:9b:cb:cb: 65:11:54:aa:18:1f:33:3e:8c:e5:2d:7a:d5:df:78:9d:ae:c9: 66:99:6a:85:77:82:af:85:4c:0e:49:88:5e:65:cc:1a:cb:bd: 0f:1f:3e:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUwODA3MDIxMTI3WhcNMjUwODE0MDIxMTI3WjAYMRYwFAYD VQQDEw02ODk0MGI0Zi0xMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuUJa6qJQfzAptx7oZ+0xa1EFFqhQfm3Y/kyV0nBOqgIO3MXCBvjnnim0/0R SmXguRWpcyvJggsVUhBVM5Lf9Kxs4N5D+7Im7ozFGcBh7Lo4U0yOHh1MyY984RtQ eXuPEVv7BJXSKhsvAE+NPW6ATA6OZo7peprO7hj+GqqQnKce5RtI4G6vPEMZmZjX ai7SdRJrql6CxALSZvKQS+tigX4HHLqA7EMPq3tfuEPkNCIDeFgNgGwMae+nyjAE 8TJapEuJQizPcKwoOim5gFwipFJarmlk3Y2tC8hgytXQcBhAFanvJEz8hf2NaLfZ 5SXWyLDSbY1dhHXFuXU8YTN6NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSq0eLD Mm6XW8WWeoRttoxkdvBWMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUYzNy9DOENDNUFCNDBEMkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNP ZHZPMzg1Q041X01yaG5ad2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBViTH43pakqbphcHcjbFjTyeaP5VQCT722cx+6VOgG6SxNQ+KxhVcg foiTQIGBI6SooCvGZZugPdUugJTy3LcL7kvZq/X6or+dkVxIKWw7loeW7TTDz9AN D/ze9WcOjRKTWjq+LmCsTc60s9DUIYn43Ejhjtx5vAK/fd8ho2awOr8MYovWHSq1 nLwkbI3FLnJaqWPC8CN6pEwyd8XyfxwMqNl++1zKza/tR/J0vaFpcbOo50rMkurw Xcy5+JKPYWH7z2Ze5WFPdbGDinHzZdWFTi0BcAuby8tlEVSqGB8zPozlLXrV33id rslmmWqFd4KvhUwOSYheZcway70PHz4i -----END CERTIFICATE-----Generated at Sat Aug 9 02:45:18 2025 by rpki-client