$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: ZFRjWbhoVVDlbvwgefE67TIQApuXLWG4EvzPP1zBeBk= Subject key identifier: 66:EB:0D:99:50:13:22:B2:D3:69:36:8E:A4:C9:FF:4C:52:A2:4F:CF Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: BE Signing time: Sun 11 May 2025 04:40:25 +0000 Manifest this update: Sun 11 May 2025 04:40:25 +0000 Manifest next update: Sun 18 May 2025 04:40:25 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: ypmQBSB0/7aG14giG7M3agbLdhKHz6X/wGtr9XwrrQg=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: May 11 04:40:25 2025 GMT Not After : May 18 04:40:25 2025 GMT Subject: CN=68202a39-a2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:66:3e:7d:20:ea:99:33:fc:3a:fa:2b:99:79: 54:a1:a4:34:59:48:ca:9a:1d:bd:40:e6:b0:a4:9b: be:8e:30:36:84:64:1e:93:93:86:02:d2:e5:6b:41: b0:ff:e1:0d:ad:5a:48:33:3d:05:7f:ea:41:d4:d1: 38:63:65:bb:1b:32:cc:c0:c4:8e:b6:2f:16:5d:84: 03:ec:cf:ef:93:38:1e:7c:f2:9d:86:68:0a:d7:ca: e0:38:56:8a:05:a4:db:15:ac:b3:0a:e4:8d:10:ed: 54:00:ab:a1:15:b4:ca:d2:9e:3b:6d:66:94:71:81: 20:8e:99:95:6b:ed:99:c4:d4:5b:3d:26:6e:04:61: 9a:bd:bc:d0:9e:d2:ab:03:7b:dd:5f:c5:bc:b3:00: b0:6d:70:e3:e7:b4:cf:fc:9b:99:09:8e:1f:71:9c: 38:39:89:e5:11:a6:15:b7:c4:71:13:dc:15:42:cb: fc:5a:85:fd:75:c2:2d:d7:fe:03:bd:83:29:12:89: ca:8d:cf:4e:04:cf:ab:a2:87:b5:36:8c:8b:55:9d: e2:cb:c7:fc:48:c6:8a:45:cd:55:63:a4:f5:79:bf: 9f:0e:ca:f5:9f:52:ab:46:23:84:f5:1d:a3:87:ab: 76:37:92:e7:65:d4:06:ec:98:48:26:6b:61:dd:93: f9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EB:0D:99:50:13:22:B2:D3:69:36:8E:A4:C9:FF:4C:52:A2:4F:CF X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d0:78:b1:2f:5d:cb:b1:37:5c:84:78:74:b8:24:81:46:b9: 11:75:5d:25:59:af:91:00:db:63:b9:7c:0b:0b:3f:65:39:5d: 50:9f:58:d8:cc:5f:66:a3:e1:09:ce:e4:c6:49:28:48:d5:af: 36:17:84:d0:51:9d:6b:a4:40:89:c3:f6:9f:f9:2e:80:c2:38: 54:55:6c:8f:10:c9:90:ed:e6:42:62:25:13:35:ed:40:b8:a7: c9:db:0d:6b:99:be:66:73:d2:c8:05:b3:69:6c:87:22:0b:60: 31:a0:c4:75:55:9b:3e:c2:bd:8c:5b:89:ba:5d:cf:fc:fb:b5: 80:1a:29:e9:01:9d:2e:a9:cb:2e:82:93:57:9c:03:a4:a3:10: a9:97:fd:82:7b:bd:e7:8d:7c:b8:bd:7a:a2:d8:73:72:5e:e1: 11:5f:f0:3d:8f:69:dd:a7:4c:0e:e7:7b:b2:ab:57:8b:f2:00: 02:52:a9:eb:85:3f:e0:f3:68:2c:0a:cb:b6:c4:71:2b:86:cc: f6:70:b4:52:66:6e:95:c8:6b:82:d6:43:43:0d:69:91:ec:0d: 75:70:7d:a8:2a:e0:14:45:5f:3c:29:fc:3c:e2:6d:a6:1d:c6: e5:04:b7:c8:8f:93:3b:30:4b:e1:e5:80:84:17:89:35:52:9a: 8a:93:b0:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwNTExMDQ0MDI1WhcNMjUwNTE4MDQ0MDI1WjAYMRYwFAYD VQQDEw02ODIwMmEzOS1hMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2Y+fSDqmTP8OvormXlUoaQ0WUjKmh29QOawpJu+jjA2hGQek5OGAtLla0Gw /+ENrVpIMz0Ff+pB1NE4Y2W7GzLMwMSOti8WXYQD7M/vkzgefPKdhmgK18rgOFaK BaTbFayzCuSNEO1UAKuhFbTK0p47bWaUcYEgjpmVa+2ZxNRbPSZuBGGavbzQntKr A3vdX8W8swCwbXDj57TP/JuZCY4fcZw4OYnlEaYVt8RxE9wVQsv8WoX9dcIt1/4D vYMpEonKjc9OBM+rooe1NoyLVZ3iy8f8SMaKRc1VY6T1eb+fDsr1n1KrRiOE9R2j h6t2N5LnZdQG7JhIJmth3ZP5gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbrDZlQ EyKy02k2jqTJ/0xSok/PMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd0HixL13LsTdchHh0uCSBRrkRdV0lWa+RANtjuXwLCz9lOV1Qn1jY zF9mo+EJzuTGSShI1a82F4TQUZ1rpECJw/af+S6AwjhUVWyPEMmQ7eZCYiUTNe1A uKfJ2w1rmb5mc9LIBbNpbIciC2AxoMR1VZs+wr2MW4m6Xc/8+7WAGinpAZ0uqcsu gpNXnAOkoxCpl/2Ce73njXy4vXqi2HNyXuERX/A9j2ndp0wO53uyq1eL8gACUqnr hT/g82gsCsu2xHErhsz2cLRSZm6VyGuC1kNDDWmR7A11cH2oKuAURV88Kfw84m2m HcblBLfIj5M7MEvh5YCEF4k1UpqKk7BD -----END CERTIFICATE-----Generated at Sun May 11 13:51:09 2025 by rpki-client