$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: PMM8MiYMbmkCYbYmexdpcLFJux4Vou45CK1ei+i9So0= Subject key identifier: 36:D5:B8:B4:49:82:CE:FE:59:09:D0:F3:EB:35:A4:EF:F9:9B:E8:D4 Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: F2 Signing time: Sat 23 Aug 2025 05:24:35 +0000 Manifest this update: Sat 23 Aug 2025 05:24:34 +0000 Manifest next update: Sat 30 Aug 2025 05:24:34 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: 7RgN0HkohKrdYowvgakPWSfBvpuXsZRzKTUY8uubxSc=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Aug 23 05:24:34 2025 GMT Not After : Aug 30 05:24:34 2025 GMT Subject: CN=68a95093-466b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:3c:36:a3:59:90:31:65:ac:3a:20:4c:83: 19:44:97:db:3b:19:8f:e0:50:2e:21:8a:e1:86:ef: 23:a0:20:89:34:72:bb:ad:72:8a:b9:79:07:e0:e0: d4:72:cc:aa:2c:0d:07:50:12:43:75:43:55:ff:69: d7:c4:f4:0a:6d:b4:d4:9a:18:02:45:b1:e5:40:a8: f2:37:60:22:de:6a:f9:c9:a0:8a:f3:20:b8:d4:d8: 9d:b6:e2:bc:b9:7b:b4:d7:16:f3:94:6a:2c:95:5e: 43:56:3b:d9:8e:1a:99:4c:bb:3a:09:9a:dd:07:82: af:41:09:d4:b7:fb:26:77:11:58:05:50:38:0e:40: 2d:cb:43:f3:e8:46:d2:bc:7b:29:81:67:85:7b:32: ff:75:b5:c8:8c:14:43:98:7e:ad:e5:bb:48:97:9c: 21:d5:7f:0b:6e:67:02:f5:2b:83:ba:ad:a8:d3:a2: 6c:2f:22:c7:ba:60:37:02:8c:b7:d4:99:ef:c5:83: 1f:11:4a:2c:c5:a0:62:dd:91:67:15:57:1d:aa:d1: ef:02:ce:6c:6e:fd:32:cf:0c:b2:bf:08:50:32:ac: d1:30:a8:b9:cd:7a:58:df:5f:61:69:d9:3e:32:cb: 1e:8f:b8:28:6a:45:56:7b:ec:cc:16:a7:9b:6d:81: 63:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D5:B8:B4:49:82:CE:FE:59:09:D0:F3:EB:35:A4:EF:F9:9B:E8:D4 X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:3c:86:25:1a:36:9a:a0:0d:ae:36:3b:df:fa:ff:b8:13:10: 16:91:7b:c4:a1:d9:77:9f:0a:ec:67:ef:b7:a0:53:da:33:07: 45:6c:8d:45:0d:45:71:36:ea:7c:8b:0f:b3:77:cf:87:9a:05: 89:b1:be:79:2c:c6:e0:e0:46:46:e3:55:85:08:77:e7:38:0e: 8b:0e:d5:de:31:91:e2:36:4d:6d:20:df:62:fa:f3:f8:f6:08: 83:00:85:91:8b:cd:d5:c8:ba:9b:96:dc:ec:5f:03:e9:e2:a9: 08:01:70:f8:71:75:24:94:5e:cc:8f:74:72:e5:1d:b6:c7:82: 26:2d:a4:ee:db:d4:a6:ae:ec:7f:32:54:6e:1c:a0:7d:ab:84: 79:8c:3f:de:82:cb:b8:5c:79:42:e6:f2:e1:b5:13:d4:88:68: 47:c1:60:2d:c4:e4:71:be:68:b5:17:dc:d6:4e:20:03:45:28: dc:25:f6:bd:b3:24:a2:08:9a:a2:60:ed:fc:a0:00:f4:83:ef: 9c:53:49:c1:4c:5f:15:44:5b:39:2c:69:06:89:72:17:2e:69: e7:2c:d8:7c:a2:93:18:8d:5b:cf:d9:0a:04:26:5d:b2:ba:fd: 76:04:f5:8d:71:72:03:09:6f:80:a4:ed:61:c9:3a:a9:6e:dc: 82:df:e0:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwODIzMDUyNDM0WhcNMjUwODMwMDUyNDM0WjAYMRYwFAYD VQQDEw02OGE5NTA5My00NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub88NqNZkDFlrDogTIMZRJfbOxmP4FAuIYrhhu8joCCJNHK7rXKKuXkH4ODU csyqLA0HUBJDdUNV/2nXxPQKbbTUmhgCRbHlQKjyN2Ai3mr5yaCK8yC41NidtuK8 uXu01xbzlGoslV5DVjvZjhqZTLs6CZrdB4KvQQnUt/smdxFYBVA4DkAty0Pz6EbS vHspgWeFezL/dbXIjBRDmH6t5btIl5wh1X8LbmcC9SuDuq2o06JsLyLHumA3Aoy3 1JnvxYMfEUosxaBi3ZFnFVcdqtHvAs5sbv0yzwyyvwhQMqzRMKi5zXpY319hadk+ Mssej7goakVWe+zMFqebbYFj+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbVuLRJ gs7+WQnQ8+s1pO/5m+jUMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDPIYlGjaaoA2uNjvf+v+4ExAWkXvEodl3nwrsZ++3oFPaMwdFbI1F DUVxNup8iw+zd8+HmgWJsb55LMbg4EZG41WFCHfnOA6LDtXeMZHiNk1tIN9i+vP4 9giDAIWRi83VyLqbltzsXwPp4qkIAXD4cXUklF7Mj3Ry5R22x4ImLaTu29Smrux/ MlRuHKB9q4R5jD/egsu4XHlC5vLhtRPUiGhHwWAtxORxvmi1F9zWTiADRSjcJfa9 sySiCJqiYO38oAD0g++cU0nBTF8VRFs5LGkGiXIXLmnnLNh8opMYjVvP2QoEJl2y uv12BPWNcXIDCW+ApO1hyTqpbtyC3+CE -----END CERTIFICATE-----Generated at Sat Aug 23 18:22:41 2025 by rpki-client