$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft File: JWZWaoTF3OdvO385CN5_MrhnZwc.mft (raw, json) Hash identifier: 6kFX9zfQS3GkGlbEI+Toz7JVGDu4VYte823wyVNrNms= Subject key identifier: 3D:5D:4F:E7:61:6D:CC:2A:46:8E:AB:94:40:6F:D4:B2:98:0D:8F:F6 Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft Manifest number: 02C9 Signing time: Wed 05 Nov 2025 01:29:07 +0000 Manifest this update: Wed 05 Nov 2025 01:29:07 +0000 Manifest next update: Wed 12 Nov 2025 01:29:07 +0000 Files and hashes: 1: JWZWaoTF3OdvO385CN5_MrhnZwc.crl (hash: 7hV8/zfS4n55bpHU/gdIZyYNY3Gd4z1FZt19d4tWQAw=) 2: 282282B60D3011ED8DC4D26BC4F9AE02.roa (hash: MWEsRQVRa9qaHn6fTEOexcENWAVY9rzeLcSk3zwVJV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Nov 5 01:29:07 2025 GMT Not After : Nov 12 01:29:07 2025 GMT Subject: CN=690aa863-ec8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2c:f7:92:d1:8e:c4:00:a2:7c:09:a4:75:52: 07:e6:c8:96:39:d4:e7:58:40:d6:26:3c:39:bf:c9: 06:1b:d3:fe:30:7a:df:9b:bc:77:db:31:c9:a2:a0: 17:46:cb:38:a7:cf:e6:52:86:2f:8f:88:c0:26:6d: 99:6d:79:48:6f:74:9e:29:ae:61:3b:90:69:5e:4d: 67:68:9b:87:9c:ec:b6:11:6f:66:c1:fe:1b:6a:aa: e5:e0:56:0e:93:78:c7:59:e2:fb:06:26:34:88:60: ba:ca:fb:35:47:64:0c:0d:63:54:e1:e8:96:d8:08: e3:1d:a6:31:ce:89:c7:9a:c9:91:31:27:ec:d6:2b: 0d:97:0e:ee:6e:ab:9e:a0:4f:5c:f9:6e:ca:45:ae: 1a:4c:d3:ff:61:4a:2f:02:b6:e5:4d:8c:d2:ce:44: 88:4f:b5:34:f2:03:af:28:2c:6d:47:d5:6c:cb:77: e7:56:60:30:6b:e5:fb:99:8a:12:4a:70:96:02:32: 62:38:89:6e:ed:7f:17:2c:ff:57:0b:72:28:d4:d4: 56:c9:59:84:e9:ca:00:6b:44:eb:51:3d:47:87:be: ae:85:a7:b8:90:25:2c:62:3e:80:6c:69:38:a2:74: fa:06:a9:71:53:1a:c6:a8:c8:27:5e:e2:a8:f3:a8: 40:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5D:4F:E7:61:6D:CC:2A:46:8E:AB:94:40:6F:D4:B2:98:0D:8F:F6 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:29:70:dd:4b:90:a2:ea:68:f6:36:68:75:4c:88:41:40:ba: 04:5d:fb:19:9e:1c:fd:5e:b4:91:78:a1:87:34:02:5b:47:cd: 89:e2:b0:c8:f2:64:e4:73:55:28:31:21:f8:06:4a:7f:57:17: 29:6a:8c:2f:1e:3f:a1:e3:f5:02:34:38:32:ed:61:70:8b:d0: 10:ef:16:1e:4e:92:52:e2:4b:3e:23:95:68:6c:64:ed:6a:6f: 8a:b3:c4:5c:13:53:46:e0:6a:a1:9f:e9:ef:c2:cb:7e:79:36: 7c:75:e2:04:c9:5c:44:88:fb:76:70:8f:11:09:ad:24:b6:8b: c7:af:5e:fc:bf:97:34:1c:c2:a3:13:6d:fc:b3:db:48:e0:7d: db:62:14:93:fb:1e:c5:20:01:64:92:45:0b:28:58:fa:e3:cb: 07:9d:15:27:0c:05:53:1f:13:3c:58:81:71:4a:67:85:3f:ad: ff:1d:3c:37:f0:dc:f9:9b:54:10:12:06:d1:15:d2:d0:4f:d5: 91:b5:30:c6:44:1a:05:47:53:5c:b8:71:b8:40:c0:e9:9f:71: 37:e0:8c:c4:de:a7:96:f4:87:35:17:7b:c6:55:6f:4e:f8:40: ee:28:0f:52:ce:3c:a8:bd:b6:6e:69:5c:e7:a5:b3:84:7c:e2: 28:94:c6:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUxMTA1MDEyOTA3WhcNMjUxMTEyMDEyOTA3WjAYMRYwFAYD VQQDEw02OTBhYTg2My1lYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiz3ktGOxACifAmkdVIH5siWOdTnWEDWJjw5v8kGG9P+MHrfm7x32zHJoqAX Rss4p8/mUoYvj4jAJm2ZbXlIb3SeKa5hO5BpXk1naJuHnOy2EW9mwf4baqrl4FYO k3jHWeL7BiY0iGC6yvs1R2QMDWNU4eiW2AjjHaYxzonHmsmRMSfs1isNlw7ubque oE9c+W7KRa4aTNP/YUovArblTYzSzkSIT7U08gOvKCxtR9Vsy3fnVmAwa+X7mYoS SnCWAjJiOIlu7X8XLP9XC3Io1NRWyVmE6coAa0TrUT1Hh76uhae4kCUsYj6AbGk4 onT6BqlxUxrGqMgnXuKo86hAUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1dT+dh bcwqRo6rlEBv1LKYDY/2MB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUYzNy9DOENDNUFCNDBEMkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNP ZHZPMzg1Q041X01yaG5ad2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOKXDdS5Ci6mj2Nmh1TIhBQLoEXfsZnhz9XrSReKGHNAJbR82J4rDI 8mTkc1UoMSH4Bkp/VxcpaowvHj+h4/UCNDgy7WFwi9AQ7xYeTpJS4ks+I5VobGTt am+Ks8RcE1NG4Gqhn+nvwst+eTZ8deIEyVxEiPt2cI8RCa0ktovHr178v5c0HMKj E238s9tI4H3bYhST+x7FIAFkkkULKFj648sHnRUnDAVTHxM8WIFxSmeFP63/HTw3 8Nz5m1QQEgbRFdLQT9WRtTDGRBoFR1NcuHG4QMDpn3E34IzE3qeW9Ic1F3vGVW9O +EDuKA9SzjyovbZuaVznpbOEfOIolMZt -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:21 2025 by rpki-client