$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: 6P79argCa8cZd9mFwcRhZOx5/1IGGnKbWCke4JVDEBw= Subject key identifier: C7:E3:2C:EE:E7:82:C6:19:66:55:C3:98:FD:8D:20:3D:A9:6A:36:B3 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 0A71 Signing time: Tue 24 Mar 2026 19:25:43 +0000 Manifest this update: Tue 24 Mar 2026 19:25:43 +0000 Manifest next update: Tue 31 Mar 2026 19:25:43 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: OFa1dRmYpL5rtLAJH21nBPWigVMK18FHx1WyFEvwSwY=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 8H0BV2UOGEWlzpdVFnm9AduIVjsTukqf5Aie6oiai8g=) 3: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: qimocfWgJO+7SVIx0Qj7RIltIvyJVQrbiJ35MnQnqvk=) 4: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: TH0pbEZTfFk/7QKlIYRFfHi6YWc6EnwN0PyoqfHcpyU=) 5: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: 2SRueJuk/oI2Z3RrQ/efGcxSLtCYpUo5HpcBPACZQGM=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: swz+w1wHJ+NqyAfABnU3GcK3MY2a0AE7eky2WFH3BSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Mar 24 19:25:43 2026 GMT Not After : Mar 31 19:25:43 2026 GMT Subject: CN=69c2e537-0a86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:62:7e:4a:70:02:4f:8a:95:11:76:40:23:f1: 34:61:2f:40:a3:5c:0f:dd:ae:13:d2:28:5f:ca:c0: 50:7c:60:84:c7:65:52:28:7f:6f:90:88:23:f1:bd: ec:32:cf:d1:8d:1d:af:2a:5c:be:22:62:76:04:fe: 16:07:dd:24:b6:f8:79:d2:2f:60:a2:66:8b:a1:4d: 1b:64:09:64:b2:94:84:d5:14:5e:2c:9a:2d:87:6e: fc:32:fc:dc:7e:51:5b:72:77:de:28:d4:5e:5d:75: 87:48:dc:64:97:18:a6:04:ee:d9:18:28:12:d8:bf: 7f:6d:2b:83:e6:81:58:7b:be:e7:ed:15:f9:36:9f: 8d:33:2d:4b:51:71:c1:8c:18:97:f2:a1:88:cc:f3: c2:88:63:f8:a1:e6:55:ba:b2:fd:e8:40:3a:ab:a0: 3e:41:93:fc:c8:dd:d7:79:a0:09:13:4e:30:49:0b: d1:13:01:3f:e1:67:10:44:e2:62:f1:86:5f:0c:44: e4:bd:54:d3:a9:4c:d1:c7:b3:ea:e2:b9:8d:66:c9: 8a:7a:ef:d6:8d:0a:59:9c:16:df:39:a9:20:0e:50: 89:f9:78:12:bf:d6:b3:ce:44:f1:28:69:7d:b4:b6: ee:56:5c:9c:60:93:7c:b7:9b:89:d3:3e:a6:e8:ed: ff:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E3:2C:EE:E7:82:C6:19:66:55:C3:98:FD:8D:20:3D:A9:6A:36:B3 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e1:f1:7d:3e:26:2f:31:69:66:d2:81:d2:f7:17:b7:ff:c1: 8b:c0:06:8b:c6:d0:d3:ae:fa:89:2b:ce:9c:66:57:cd:0e:a7: e9:32:11:0c:61:ba:02:37:7b:30:24:48:44:d2:b4:f3:da:58: 07:23:2f:6a:77:a2:19:98:ff:33:c5:fc:60:4c:85:cc:7f:37: 46:10:e7:a9:5c:9c:f3:f8:d3:2f:47:57:8f:fc:80:37:1d:5c: 25:8a:17:84:27:d7:30:b4:c2:fa:df:cb:5d:ca:48:f8:d2:21: 5d:d3:81:92:17:54:16:9d:56:47:d6:87:bf:af:ee:39:eb:54: 11:7f:b3:56:d6:b6:a9:26:13:df:5c:70:5e:d2:1f:2a:d7:78: 3a:8f:7a:09:2d:c6:bd:be:2f:7e:ca:22:17:54:4c:c8:4a:c5: ea:3c:5b:2e:46:9f:a2:4b:06:61:65:8d:e6:6b:2a:31:ac:62: 70:1e:c2:db:dd:a7:ad:08:b5:6f:56:3a:bb:af:5b:c2:e8:76: 12:35:a7:29:dd:30:6a:0b:d8:d2:dd:f0:ef:aa:f7:41:f7:e6: 24:a3:be:0c:6e:62:4d:f3:94:34:ea:fc:9e:44:1e:f2:b4:18: 8e:23:ba:48:31:a2:03:9b:ea:93:b3:37:65:0a:a8:f9:5e:3d: e9:fe:9d:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjYwMzI0MTkyNTQzWhcNMjYwMzMxMTkyNTQzWjAYMRYwFAYD VQQDEw02OWMyZTUzNy0wYTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmJ+SnACT4qVEXZAI/E0YS9Ao1wP3a4T0ihfysBQfGCEx2VSKH9vkIgj8b3s Ms/RjR2vKly+ImJ2BP4WB90ktvh50i9gomaLoU0bZAlkspSE1RReLJoth278Mvzc flFbcnfeKNReXXWHSNxklximBO7ZGCgS2L9/bSuD5oFYe77n7RX5Np+NMy1LUXHB jBiX8qGIzPPCiGP4oeZVurL96EA6q6A+QZP8yN3XeaAJE04wSQvREwE/4WcQROJi 8YZfDETkvVTTqUzRx7Pq4rmNZsmKeu/WjQpZnBbfOakgDlCJ+XgSv9azzkTxKGl9 tLbuVlycYJN8t5uJ0z6m6O3/3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMfjLO7n gsYZZlXDmP2NID2pajazMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKuHxfT4mLzFpZtKB0vcXt//Bi8AGi8bQ0676iSvOnGZXzQ6n6TIRDGG6Ajd7 MCRIRNK089pYByMvaneiGZj/M8X8YEyFzH83RhDnqVyc8/jTL0dXj/yANx1cJYoX hCfXMLTC+t/LXcpI+NIhXdOBkhdUFp1WR9aHv6/uOetUEX+zVta2qSYT31xwXtIf Ktd4Oo96CS3Gvb4vfsoiF1RMyErF6jxbLkafoksGYWWN5msqMaxicB7C292nrQi1 b1Y6u69bwuh2EjWnKd0wagvY0t3w76r3QffmJKO+DG5iTfOUNOr8nkQe8rQYjiO6 SDGiA5vqk7M3ZQqo+V496f6diA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:31:55 2026 by rpki-client