$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: +Qw+sQbkwKmp3MWZn1SCqa6gcfpsjk56H5gyUqnflPo= Subject key identifier: E3:C8:05:95:74:11:26:CA:A8:58:3E:7F:B1:BF:8D:D7:D0:3C:B7:08 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 09FF Signing time: Fri 22 Aug 2025 20:01:17 +0000 Manifest this update: Fri 22 Aug 2025 20:01:17 +0000 Manifest next update: Fri 29 Aug 2025 20:01:17 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: 5PR0F1hK5fJn+UOP0ZhoSFYJ68jdmyDsHtoOTzzbdvw=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 0mOETl/OdBfCNtX5dYvxJWUGYIrmCCO9qdnaVBCdeGw=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: /SND4cbujhT7TqEgt/0aWxeQoWtrbzsjgSVcPJIkIEo=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: 6v3m90vLYNtp4AY7tUO3B6KEXg7uMMxAcXi3ddcOJ74=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2601 (0xa29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Aug 22 20:01:17 2025 GMT Not After : Aug 29 20:01:17 2025 GMT Subject: CN=68a8cc8d-a4c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:9f:83:15:63:99:f9:3b:c3:9c:32:46:85: 3e:88:ef:54:9b:fb:20:c5:2e:7c:5e:bd:54:ad:9f: 42:e5:fd:05:7a:2b:81:00:58:9c:fa:6b:2a:80:e1: d2:9d:f4:5b:68:c7:5b:a6:7a:85:0e:23:68:0b:88: 82:cc:45:3d:92:97:72:ad:58:4e:8b:18:59:f4:81: e1:7e:db:25:20:6d:15:16:4f:eb:df:4b:a0:8f:33: df:85:55:3c:5f:07:41:35:8f:11:08:d3:af:b1:b8: fd:80:04:7b:29:e7:f1:f4:4f:53:dc:d5:1f:c3:5d: 03:58:57:48:f0:43:ec:de:0f:a9:6a:7b:cf:84:0c: c0:c6:4a:88:9d:19:de:fc:2d:63:41:bd:86:1b:94: 0c:0e:54:c6:b2:20:36:e5:91:f3:8c:3d:c7:85:03: 43:a0:3b:a0:4b:e3:1d:86:a7:14:f3:4b:2e:aa:c7: a2:b2:26:94:27:18:e0:a8:18:aa:be:39:e7:e4:06: 74:74:a1:4c:da:2f:75:8d:40:f5:fa:3a:59:dd:b2: ac:f9:bc:a5:50:75:62:df:a6:c7:4c:d5:cb:49:49: 4c:52:15:83:1c:81:ec:54:30:24:7c:0c:4c:70:a7: 7c:a2:fa:a5:c3:03:70:c4:4c:cc:64:ae:f7:a4:f2: be:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C8:05:95:74:11:26:CA:A8:58:3E:7F:B1:BF:8D:D7:D0:3C:B7:08 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d2:b8:b8:92:1e:14:1f:94:f3:b6:4d:66:cf:28:bb:ca:d4: fd:38:fd:ca:e6:ac:41:61:0b:07:4a:9f:88:3d:99:77:5a:ef: 03:e2:8f:d3:4e:95:d4:bb:97:47:8a:c9:b4:e5:8c:47:b9:f5: 9a:1f:47:93:d2:f6:e4:61:34:3f:0d:a3:52:0f:26:4d:59:24: 46:78:31:7b:13:7c:89:90:16:49:30:9b:e7:14:d0:27:33:b9: be:19:d2:e2:94:ef:66:0b:e8:93:1d:b8:e2:d8:fd:1f:f6:3f: b9:23:e4:c1:2a:74:06:c5:93:51:a7:3d:2c:41:d8:e6:8b:ce: 94:1c:12:47:ae:54:5f:18:2a:c7:be:23:ce:1c:4c:82:b2:41: 29:2f:23:91:79:07:3b:53:fa:d6:15:15:6d:54:11:d8:23:f0: bb:c7:1d:f3:d3:4b:0d:a2:c1:ca:11:83:30:ac:24:15:45:aa: 64:ae:9c:e6:a0:c4:63:63:9e:ad:0f:76:b9:b1:40:83:1c:53: f0:29:54:52:fa:e9:7e:fd:2c:67:7f:d6:c0:de:c4:0d:20:9b: c3:f1:98:f9:d8:78:3e:39:f1:e9:78:61:f0:e7:b8:8d:8f:68: 38:46:1a:78:02:d8:50:5e:c2:99:dc:73:03:8d:f1:42:57:3d: 98:4a:16:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUwODIyMjAwMTE3WhcNMjUwODI5MjAwMTE3WjAYMRYwFAYD VQQDEw02OGE4Y2M4ZC1hNGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNufgxVjmfk7w5wyRoU+iO9Um/sgxS58Xr1UrZ9C5f0FeiuBAFic+msqgOHS nfRbaMdbpnqFDiNoC4iCzEU9kpdyrVhOixhZ9IHhftslIG0VFk/r30ugjzPfhVU8 XwdBNY8RCNOvsbj9gAR7Kefx9E9T3NUfw10DWFdI8EPs3g+panvPhAzAxkqInRne /C1jQb2GG5QMDlTGsiA25ZHzjD3HhQNDoDugS+MdhqcU80suqseisiaUJxjgqBiq vjnn5AZ0dKFM2i91jUD1+jpZ3bKs+bylUHVi36bHTNXLSUlMUhWDHIHsVDAkfAxM cKd8ovqlwwNwxEzMZK73pPK+twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPIBZV0 ESbKqFg+f7G/jdfQPLcIMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS0ri4kh4UH5Tztk1mzyi7ytT9OP3K5qxBYQsHSp+IPZl3Wu8D4o/T TpXUu5dHism05YxHufWaH0eT0vbkYTQ/DaNSDyZNWSRGeDF7E3yJkBZJMJvnFNAn M7m+GdLilO9mC+iTHbji2P0f9j+5I+TBKnQGxZNRpz0sQdjmi86UHBJHrlRfGCrH viPOHEyCskEpLyOReQc7U/rWFRVtVBHYI/C7xx3z00sNosHKEYMwrCQVRapkrpzm oMRjY56tD3a5sUCDHFPwKVRS+ul+/Sxnf9bA3sQNIJvD8Zj52Hg+OfHpeGHw57iN j2g4Rhp4AthQXsKZ3HMDjfFCVz2YShbZ -----END CERTIFICATE-----Generated at Sat Aug 23 10:44:24 2025 by rpki-client