$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: HmS3fy8cMDmb79hl8bW28WrbCx4SuxtbhwCDsTT76qM= Subject key identifier: BA:0D:39:33:3C:DE:D5:01:39:42:01:FA:91:DC:EE:B2:10:71:80:29 Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: 010F Signing time: Sun 19 Oct 2025 07:48:17 +0000 Manifest this update: Sun 19 Oct 2025 07:48:17 +0000 Manifest next update: Sun 26 Oct 2025 07:48:17 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: yhwYULHg/x6eOEDxsC/D0NYIEb03489uWbLhsJzTdzI=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Oct 19 07:48:17 2025 GMT Not After : Oct 26 07:48:17 2025 GMT Subject: CN=68f497c1-0a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:26:85:61:df:8e:3e:24:af:97:77:69:a5:fc: 91:0b:9e:33:e2:63:e9:28:af:11:a0:b5:1f:4c:3b: 13:44:1c:16:d0:90:fd:94:b7:17:4b:0f:a0:2a:55: 42:52:e8:39:05:25:b4:f4:8f:1e:28:ed:c1:1e:74: 71:dd:27:a8:3e:80:05:1f:b5:28:32:49:82:bb:cc: b9:60:c5:46:f9:70:a8:60:78:31:7a:45:37:ce:9a: 1b:06:8d:08:94:8c:47:2c:b9:ed:73:c0:dc:64:06: 66:a8:47:d4:53:b7:b4:d5:e0:31:7e:05:6e:49:49: cf:55:ef:88:2f:8a:1a:a5:12:1d:58:0b:a8:d4:df: 37:a7:72:24:bd:47:bf:bd:27:0a:f3:c6:df:4b:f3: 47:19:68:6c:e1:63:bd:2d:78:be:75:db:b3:c6:a6: 64:3c:0c:5a:4e:d9:ae:6a:ff:fd:e1:3a:b9:7c:8c: 50:77:c9:f0:12:c1:34:ee:7f:d3:4e:57:6d:24:b0: 66:92:47:0d:96:c5:61:b1:d7:b7:c8:3b:c2:56:34: 6f:2a:5f:fa:74:fc:8a:a8:6b:34:85:b4:f4:84:84: 21:6c:02:3c:ed:0b:f2:77:da:c5:3e:c9:4e:fb:d6: f0:d2:a6:0b:79:ee:0b:f4:d8:f4:c1:46:c8:e1:ba: 70:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0D:39:33:3C:DE:D5:01:39:42:01:FA:91:DC:EE:B2:10:71:80:29 X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:de:9d:08:87:98:40:fc:01:8c:f6:36:2f:95:5e:97:1d:ac: e0:20:ea:4a:aa:66:73:b5:6d:ea:90:ef:da:f3:ba:32:4f:7f: 29:d8:8c:f6:15:65:dc:1a:f8:03:f8:e0:2c:38:e6:d6:38:bf: 11:2a:94:a1:f0:e9:fe:2d:be:8c:e0:b1:e1:23:58:1c:28:40: 41:b9:d8:d3:ab:1d:34:3e:d7:c5:35:d2:eb:d9:5e:1d:7d:0f: c9:f8:79:ac:09:37:95:63:c7:a9:57:81:ae:68:62:31:d9:38: 08:08:09:4f:8e:c7:24:f6:7b:74:9f:08:99:7b:ec:62:fd:13: 6a:3f:43:ff:c9:ff:a1:a6:3a:fa:58:dc:b4:3d:d2:61:e2:65: 00:40:9b:1f:b7:53:bf:6e:62:1b:a6:b0:a6:3e:8a:ae:9e:6c: 10:f3:27:c8:84:44:58:a8:5c:f0:21:30:f0:3a:f7:30:3c:2c: 56:a3:8e:e2:73:76:ab:7f:a0:97:3b:0e:6b:d8:93:0a:86:eb: da:e5:57:51:dd:89:51:ac:27:e5:6a:d5:c7:dd:6c:41:16:aa: 22:96:18:a6:00:3b:59:6e:2c:1e:dd:c0:68:23:c8:3c:c2:1a: 2b:4a:51:13:20:5a:0d:89:33:59:93:85:4d:c0:91:3d:5b:6b: 3f:56:79:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUxMDE5MDc0ODE3WhcNMjUxMDI2MDc0ODE3WjAYMRYwFAYD VQQDEw02OGY0OTdjMS0wYTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CaFYd+OPiSvl3dppfyRC54z4mPpKK8RoLUfTDsTRBwW0JD9lLcXSw+gKlVC Uug5BSW09I8eKO3BHnRx3SeoPoAFH7UoMkmCu8y5YMVG+XCoYHgxekU3zpobBo0I lIxHLLntc8DcZAZmqEfUU7e01eAxfgVuSUnPVe+IL4oapRIdWAuo1N83p3IkvUe/ vScK88bfS/NHGWhs4WO9LXi+dduzxqZkPAxaTtmuav/94Tq5fIxQd8nwEsE07n/T TldtJLBmkkcNlsVhsde3yDvCVjRvKl/6dPyKqGs0hbT0hIQhbAI87Qvyd9rFPslO +9bw0qYLee4L9Nj0wUbI4bpwDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoNOTM8 3tUBOUIB+pHc7rIQcYApMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX3p0Ih5hA/AGM9jYvlV6XHazgIOpKqmZztW3qkO/a87oyT38p2Iz2 FWXcGvgD+OAsOObWOL8RKpSh8On+Lb6M4LHhI1gcKEBBudjTqx00PtfFNdLr2V4d fQ/J+HmsCTeVY8epV4GuaGIx2TgICAlPjsck9nt0nwiZe+xi/RNqP0P/yf+hpjr6 WNy0PdJh4mUAQJsft1O/bmIbprCmPoqunmwQ8yfIhERYqFzwITDwOvcwPCxWo47i c3arf6CXOw5r2JMKhuva5VdR3YlRrCflatXH3WxBFqoilhimADtZbiwe3cBoI8g8 whorSlETIFoNiTNZk4VNwJE9W2s/VnkZ -----END CERTIFICATE-----Generated at Mon Oct 20 07:57:52 2025 by rpki-client