$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: tNtp6qw8M27ZNmdWK/5xF76r5r7nD7KG3HE/+UPyPNw= Subject key identifier: CB:36:47:1A:09:53:2F:51:D0:B8:2D:29:49:44:C8:DD:3B:DF:9F:AB Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: D7 Signing time: Tue 01 Jul 2025 06:08:49 +0000 Manifest this update: Tue 01 Jul 2025 06:08:49 +0000 Manifest next update: Tue 08 Jul 2025 06:08:49 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: kZLBxO/shZA0TmFdFf31Tn48uXJcxRnH5rTLFXroShk=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Jul 1 06:08:49 2025 GMT Not After : Jul 8 06:08:49 2025 GMT Subject: CN=68637b71-f5e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:22:ef:b9:c8:06:9e:3e:18:1a:29:02:f6: 36:27:5e:0c:02:a9:f1:66:a2:d6:53:54:83:b4:f0: a8:a4:a8:43:c4:ba:72:ef:07:4d:14:7f:64:00:c0: 78:9d:41:d3:67:d4:c7:69:9b:87:f8:a1:20:60:6e: f3:74:08:85:9f:ee:c0:44:14:ff:39:0d:73:f9:d3: e6:48:b3:eb:7f:fe:56:a4:9d:23:55:2f:74:14:86: 81:13:1e:1b:c1:05:dd:65:52:ce:87:30:57:ad:44: fa:b1:3f:ab:af:5f:e0:39:10:58:25:68:f9:e6:03: c6:48:56:73:97:08:a2:a6:ba:c7:ad:45:33:78:6c: ba:d2:fd:af:7c:0f:80:66:70:22:1e:35:8a:8b:0e: 4a:bb:2d:54:23:b8:7e:51:6a:d0:6a:9c:c4:ef:df: 7b:11:c4:0b:9d:7c:b1:51:2c:78:01:53:a3:0e:b1: 43:3f:22:a7:7b:f4:aa:6c:3f:92:85:0b:23:62:18: f1:e5:45:69:11:fd:6d:bd:a2:ed:4c:91:80:42:9d: 1a:f7:fc:cd:fd:13:c3:f3:24:93:36:cc:2a:45:3c: d8:9d:88:ac:3a:f1:a5:67:55:83:dd:fa:91:04:ee: 5a:c6:c4:13:1d:0d:03:a5:2e:c8:7e:f1:22:fd:f7: 13:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:36:47:1A:09:53:2F:51:D0:B8:2D:29:49:44:C8:DD:3B:DF:9F:AB X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:13:18:0a:19:58:e2:41:b1:ff:0d:83:7b:b4:99:c6:eb:a8: 5f:68:f6:b2:08:87:55:73:03:92:08:f8:90:6a:0f:a2:1a:eb: b6:ab:99:59:17:af:2b:74:fa:2c:66:ba:7f:eb:d1:62:2a:b7: 71:55:e9:35:34:a1:9f:47:66:fb:36:5e:40:95:af:eb:5a:1c: 63:62:98:99:d4:05:a0:0f:c1:76:ae:55:ef:a6:7a:08:25:ed: c3:e3:ba:33:0d:c1:df:db:29:2f:9a:fe:55:9f:c2:62:37:8b: a6:63:c1:fd:03:78:1b:84:bb:1a:e3:ad:cf:04:4c:80:ef:f2: 00:7f:4c:1b:eb:01:fa:57:df:20:e4:dd:f3:ce:16:86:c9:e3: 04:0b:18:90:12:80:3b:09:2d:aa:e3:56:6f:c0:a2:fa:b0:14: c4:05:06:e9:60:6a:b5:88:4c:c0:d5:5a:ba:f0:d8:b1:6d:ce: 9c:1e:29:d8:a8:fd:f7:5d:58:19:78:f1:be:c4:13:5a:9f:01: 76:e9:11:89:15:1d:08:d2:d3:00:30:43:09:42:1e:7a:ed:f2: 68:e4:f8:bb:ca:f6:e7:cf:d6:21:e3:77:76:d7:2e:af:57:3c: 82:7a:19:2b:43:b8:20:a9:06:34:11:9e:af:ef:9a:a6:88:82: d6:6a:96:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwNzAxMDYwODQ5WhcNMjUwNzA4MDYwODQ5WjAYMRYwFAYD VQQDEw02ODYzN2I3MS1mNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspEi77nIBp4+GBopAvY2J14MAqnxZqLWU1SDtPCopKhDxLpy7wdNFH9kAMB4 nUHTZ9THaZuH+KEgYG7zdAiFn+7ARBT/OQ1z+dPmSLPrf/5WpJ0jVS90FIaBEx4b wQXdZVLOhzBXrUT6sT+rr1/gORBYJWj55gPGSFZzlwiiprrHrUUzeGy60v2vfA+A ZnAiHjWKiw5Kuy1UI7h+UWrQapzE7997EcQLnXyxUSx4AVOjDrFDPyKne/SqbD+S hQsjYhjx5UVpEf1tvaLtTJGAQp0a9/zN/RPD8ySTNswqRTzYnYisOvGlZ1WD3fqR BO5axsQTHQ0DpS7IfvEi/fcTEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMs2RxoJ Uy9R0LgtKUlEyN0735+rMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbExgKGVjiQbH/DYN7tJnG66hfaPayCIdVcwOSCPiQag+iGuu2q5lZ F68rdPosZrp/69FiKrdxVek1NKGfR2b7Nl5Ala/rWhxjYpiZ1AWgD8F2rlXvpnoI Je3D47ozDcHf2ykvmv5Vn8JiN4umY8H9A3gbhLsa463PBEyA7/IAf0wb6wH6V98g 5N3zzhaGyeMECxiQEoA7CS2q41ZvwKL6sBTEBQbpYGq1iEzA1Vq68Nixbc6cHinY qP33XVgZePG+xBNanwF26RGJFR0I0tMAMEMJQh567fJo5Pi7yvbnz9Yh43d21y6v VzyCehkrQ7ggqQY0EZ6v75qmiILWapb5 -----END CERTIFICATE-----Generated at Tue Jul 1 19:11:15 2025 by rpki-client