$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft File: JWZWaoTF3OdvO385CN5_MrhnZwc.mft (raw, json) Hash identifier: uDx0UDJkEwbkUlm99l4cV9toliEuBqy0sQ08IdW95G0= Subject key identifier: 71:F8:D2:E0:16:C9:23:E5:83:56:1E:1D:CD:B6:75:76:4A:75:AC:CD Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft Manifest number: 0266 Signing time: Fri 25 Apr 2025 01:30:55 +0000 Manifest this update: Fri 25 Apr 2025 01:30:54 +0000 Manifest next update: Fri 02 May 2025 01:30:54 +0000 Files and hashes: 1: JWZWaoTF3OdvO385CN5_MrhnZwc.crl (hash: dQdVjBJT99JeWDTDiK2gULme+f9eL2gwcSeAXbwBvmw=) 2: 282282B60D3011ED8DC4D26BC4F9AE02.roa (hash: +qGeYJ79wvR0PdN91NY3rl/FLbIL0ABFLzdMSwQ0Nxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Apr 25 01:30:54 2025 GMT Not After : May 2 01:30:54 2025 GMT Subject: CN=680ae5cf-b707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7c:fd:4c:dc:ab:d9:da:d3:b8:f7:be:e4:73: 0f:9e:35:c1:b4:3c:23:21:29:8b:60:5b:64:2c:db: 24:b5:cf:4e:41:f7:44:5e:d9:09:fc:82:c0:76:2a: c2:77:fa:7d:e3:6d:47:3a:33:a4:12:0d:28:2e:1f: 50:60:17:d6:07:58:96:cc:96:d7:2e:c3:05:7b:84: ea:d2:01:16:b5:1a:f9:2d:db:cc:65:ae:f4:65:34: dc:ea:81:9b:f2:c7:da:4f:c1:2c:23:95:dc:51:31: 2c:e0:28:2a:66:bf:44:90:a2:50:0b:9e:cf:c6:c0: 1f:cd:8a:66:23:f0:36:28:7e:45:54:b0:cd:33:e7: 1f:cb:b2:14:b3:26:2e:cb:94:b7:a8:0d:28:3b:93: c1:08:d7:79:b0:c4:c6:98:d7:5f:0a:4c:41:f0:a2: 84:ab:0d:40:15:96:6f:5e:22:d0:df:22:82:f1:f7: 75:d0:a6:9b:42:9a:f1:ad:42:d8:ff:1e:0e:44:74: 7a:0c:04:16:e5:c0:b8:93:24:35:4d:fd:6d:97:77: 65:78:4a:3c:bd:09:f3:61:b8:d7:75:1d:bf:b3:8d: 39:f5:ef:f3:e2:f1:e6:09:2d:5b:2c:8d:f5:34:fc: 26:65:d8:34:26:05:20:9c:46:96:e1:d2:ec:94:54: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:D2:E0:16:C9:23:E5:83:56:1E:1D:CD:B6:75:76:4A:75:AC:CD X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:47:3b:b0:1b:c1:d4:cc:cd:cf:ea:b4:3d:68:c5:bd:33:6f: b4:da:b7:93:4c:6f:ac:3a:e2:b1:b4:0c:c0:cc:65:9b:ce:0f: 78:2c:45:d8:4c:d5:34:03:db:04:07:6b:48:1c:b6:5f:8d:f7: c9:66:7b:c5:9b:94:48:73:f9:fa:75:eb:8a:6f:b7:0c:05:87: 7f:6a:76:30:a9:d5:d8:dc:a6:8f:01:d4:62:bf:aa:06:b8:e6: 36:e1:19:fd:72:85:75:4b:b8:bc:d5:6c:2c:35:ff:8b:98:a9: b4:f9:9b:85:e4:f3:ce:58:d8:ae:93:16:b3:5a:ec:84:e3:89: d2:30:eb:05:38:06:75:a4:a8:49:b8:b4:d0:e9:7b:0a:34:03: 27:c9:48:e4:c2:34:80:44:f5:21:c7:6a:f0:5f:db:f3:12:59: 4c:d5:71:a4:b8:38:5e:2d:65:da:89:33:88:3a:f1:23:2a:aa: 91:e1:26:26:82:72:da:75:4f:11:60:19:06:65:57:e7:e9:c4: 8f:1f:41:30:58:74:bc:04:fd:a6:c2:9d:b0:d0:49:28:f3:2a: 67:fc:a9:7e:32:54:02:81:bb:c8:b5:57:b0:b0:6b:0f:e0:4c: fc:dd:de:29:a4:0d:2f:00:d0:7c:1f:b6:40:d8:87:d8:a3:8c: fa:5f:50:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUwNDI1MDEzMDU0WhcNMjUwNTAyMDEzMDU0WjAYMRYwFAYD VQQDEw02ODBhZTVjZi1iNzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Hz9TNyr2drTuPe+5HMPnjXBtDwjISmLYFtkLNsktc9OQfdEXtkJ/ILAdirC d/p9421HOjOkEg0oLh9QYBfWB1iWzJbXLsMFe4Tq0gEWtRr5LdvMZa70ZTTc6oGb 8sfaT8EsI5XcUTEs4CgqZr9EkKJQC57PxsAfzYpmI/A2KH5FVLDNM+cfy7IUsyYu y5S3qA0oO5PBCNd5sMTGmNdfCkxB8KKEqw1AFZZvXiLQ3yKC8fd10KabQprxrULY /x4ORHR6DAQW5cC4kyQ1Tf1tl3dleEo8vQnzYbjXdR2/s4059e/z4vHmCS1bLI31 NPwmZdg0JgUgnEaW4dLslFSKKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH40uAW ySPlg1YeHc22dXZKdazNMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUYzNy9DOENDNUFCNDBEMkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNP ZHZPMzg1Q041X01yaG5ad2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5RzuwG8HUzM3P6rQ9aMW9M2+02reTTG+sOuKxtAzAzGWbzg94LEXY TNU0A9sEB2tIHLZfjffJZnvFm5RIc/n6deuKb7cMBYd/anYwqdXY3KaPAdRiv6oG uOY24Rn9coV1S7i81WwsNf+LmKm0+ZuF5PPOWNiukxazWuyE44nSMOsFOAZ1pKhJ uLTQ6XsKNAMnyUjkwjSARPUhx2rwX9vzEllM1XGkuDheLWXaiTOIOvEjKqqR4SYm gnLadU8RYBkGZVfn6cSPH0EwWHS8BP2mwp2w0Eko8ypn/Kl+MlQCgbvItVewsGsP 4Ez83d4ppA0vANB8H7ZA2IfYo4z6X1Dk -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:11 2025 by rpki-client