$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: 1AhYyxFmPlb3vKjnJUji86iIt2CwWKS6GE/YRBfcJiQ= Subject key identifier: FC:40:A2:A4:27:3E:1B:50:9B:FF:36:67:11:4B:89:A9:FD:18:26:AD Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 0A1C Signing time: Sat 18 Oct 2025 20:49:44 +0000 Manifest this update: Sat 18 Oct 2025 20:49:43 +0000 Manifest next update: Sat 25 Oct 2025 20:49:43 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: AJj0imPDkafrwrBSgSqb7TmACu6H3wd6fVNzVc15MY0=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 0mOETl/OdBfCNtX5dYvxJWUGYIrmCCO9qdnaVBCdeGw=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: /SND4cbujhT7TqEgt/0aWxeQoWtrbzsjgSVcPJIkIEo=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: 6v3m90vLYNtp4AY7tUO3B6KEXg7uMMxAcXi3ddcOJ74=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2630 (0xa46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Oct 18 20:49:43 2025 GMT Not After : Oct 25 20:49:43 2025 GMT Subject: CN=68f3fd68-b1d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:c8:56:4c:77:d5:20:b0:c2:a5:e7:aa:6f: 32:6f:a3:82:d0:97:56:5e:65:39:a9:88:ab:86:f4: 38:80:75:d7:a8:f4:da:cf:b4:cc:5e:59:d8:7b:ea: 97:af:c6:52:7a:56:60:e4:0a:c5:9e:f8:21:13:84: 90:9d:32:7b:11:3c:bb:52:6f:6d:90:7c:80:60:95: 91:81:33:f0:5b:e2:ed:06:11:3e:33:bf:63:17:88: 4f:49:fc:2a:91:c8:0b:98:8b:37:27:33:1e:01:b7: 7b:b6:78:fe:4e:36:6e:7f:bc:f4:01:cf:f4:2d:50: 80:4f:f6:4d:d3:89:d1:75:78:08:55:dc:05:1a:ae: 6a:4a:96:c4:6e:69:c6:7a:e7:52:d1:27:37:2c:20: 53:5a:46:e9:7c:d9:3e:87:28:d8:61:bb:36:84:4f: bd:fe:f2:f9:26:72:a6:1a:50:32:ca:3f:b7:24:59: 7f:93:26:76:8b:a3:43:c3:42:d0:76:55:2e:cd:48: cc:62:43:26:42:84:af:1f:0b:6d:ef:96:14:3d:e8: e7:31:13:17:5c:81:92:84:b9:2f:74:19:f1:6f:9a: 38:3c:61:4f:08:7c:16:15:9a:04:a7:6f:4b:72:5b: 68:48:33:9b:79:2a:b7:bb:0a:bc:be:22:f9:fe:a5: e7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:40:A2:A4:27:3E:1B:50:9B:FF:36:67:11:4B:89:A9:FD:18:26:AD X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:72:6a:68:49:80:4d:4e:15:fc:ca:01:ee:c1:80:ff:6f:45: 12:e4:48:1d:22:6b:fe:65:30:42:15:e9:95:8e:99:bb:e9:04: b3:80:5c:61:cb:9a:8e:dc:0f:e6:ee:70:f2:5b:bb:d2:fe:13: 33:74:06:13:81:88:f2:6f:71:69:87:14:f6:1d:d2:bc:ae:93: bc:8e:75:11:f4:1c:22:da:0a:48:51:a7:a5:38:b5:d4:5a:88: 30:65:82:74:b6:09:5a:cc:c4:95:2e:25:a9:da:b0:48:b2:f8: 06:e5:93:8f:57:0d:a3:90:56:5d:c3:c8:17:58:3d:fb:5b:a0: 7e:ad:10:e7:a6:2b:6a:5f:bb:31:7d:69:2e:42:40:dd:8f:e5: 36:47:f2:9b:a2:46:e6:1e:11:fa:01:c0:93:e0:c2:45:e5:62: a5:77:40:df:0d:47:35:6f:85:42:d8:63:a2:5d:4f:d4:63:3c: 36:0d:2b:79:25:c2:45:c6:84:c9:53:a0:d6:a0:ca:0f:3a:56: 2d:f7:05:b8:9c:2b:8a:30:67:20:c3:85:47:c2:7b:33:86:f6: 95:75:9f:68:b9:5b:8a:f2:c0:ab:f6:d6:3f:81:f3:6f:b7:bf: a5:dc:5d:bf:b2:47:72:f2:21:92:85:d6:ea:20:20:69:c8:d0: c6:10:19:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUxMDE4MjA0OTQzWhcNMjUxMDI1MjA0OTQzWjAYMRYwFAYD VQQDEw02OGYzZmQ2OC1iMWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0zIVkx31SCwwqXnqm8yb6OC0JdWXmU5qYirhvQ4gHXXqPTaz7TMXlnYe+qX r8ZSelZg5ArFnvghE4SQnTJ7ETy7Um9tkHyAYJWRgTPwW+LtBhE+M79jF4hPSfwq kcgLmIs3JzMeAbd7tnj+TjZuf7z0Ac/0LVCAT/ZN04nRdXgIVdwFGq5qSpbEbmnG eudS0Sc3LCBTWkbpfNk+hyjYYbs2hE+9/vL5JnKmGlAyyj+3JFl/kyZ2i6NDw0LQ dlUuzUjMYkMmQoSvHwtt75YUPejnMRMXXIGShLkvdBnxb5o4PGFPCHwWFZoEp29L cltoSDObeSq3uwq8viL5/qXnxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxAoqQn PhtQm/82ZxFLian9GCatMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBcmpoSYBNThX8ygHuwYD/b0US5EgdImv+ZTBCFemVjpm76QSzgFxh y5qO3A/m7nDyW7vS/hMzdAYTgYjyb3FphxT2HdK8rpO8jnUR9Bwi2gpIUaelOLXU WogwZYJ0tglazMSVLiWp2rBIsvgG5ZOPVw2jkFZdw8gXWD37W6B+rRDnpitqX7sx fWkuQkDdj+U2R/KbokbmHhH6AcCT4MJF5WKld0DfDUc1b4VC2GOiXU/UYzw2DSt5 JcJFxoTJU6DWoMoPOlYt9wW4nCuKMGcgw4VHwnszhvaVdZ9ouVuK8sCr9tY/gfNv t7+l3F2/skdy8iGShdbqICBpyNDGEBkq -----END CERTIFICATE-----Generated at Mon Oct 20 11:27:08 2025 by rpki-client