$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: kRagKlcfbqa97mYdQl3jzehR3Dvtjf1nALYZh6VxYzM= Subject key identifier: 0B:D4:07:21:69:DA:54:4F:36:88:4D:66:F1:84:FA:7F:2E:1B:FD:6D Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 09F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 09CD Signing time: Wed 14 May 2025 20:06:36 +0000 Manifest this update: Wed 14 May 2025 20:06:36 +0000 Manifest next update: Wed 21 May 2025 20:06:36 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: YmZrP/qGDb4gRlDte2d/mtTON+82a+fOsiMKdzMCRzI=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 0mOETl/OdBfCNtX5dYvxJWUGYIrmCCO9qdnaVBCdeGw=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: /SND4cbujhT7TqEgt/0aWxeQoWtrbzsjgSVcPJIkIEo=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: 6v3m90vLYNtp4AY7tUO3B6KEXg7uMMxAcXi3ddcOJ74=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2551 (0x9f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: May 14 20:06:36 2025 GMT Not After : May 21 20:06:36 2025 GMT Subject: CN=6824f7cc-3b44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c4:93:7f:ed:a9:0b:0f:fa:1b:55:9e:4f:ac: ec:e7:5d:a9:5a:3a:9a:16:f0:2c:04:80:cf:47:66: d7:76:4b:5c:63:85:ce:59:a5:87:2b:ee:a6:10:fc: 67:cf:94:0e:7f:8b:fe:78:cc:af:c8:1e:35:7f:27: 57:1c:81:18:61:d7:46:37:3b:aa:92:9f:63:61:3a: 14:12:cd:73:9c:4c:a7:cc:60:b9:be:9e:70:1d:09: 09:a6:8a:ff:7f:71:f5:5b:95:07:3c:c4:5e:fe:43: 9b:35:d8:88:a2:9e:45:49:7d:7e:48:e7:f8:ab:ee: cc:ac:92:d8:9e:62:9c:20:41:9b:b9:c9:ed:fa:0b: 26:c8:9f:1b:bb:c1:1e:5c:26:a1:d0:f4:28:7d:57: 38:ec:88:5e:ef:d9:97:f1:90:e7:cb:b4:0b:b7:96: 78:6d:c1:68:06:0d:03:0a:ae:1b:03:11:f2:0c:74: 69:62:8e:85:cd:84:0c:f0:26:26:8f:92:41:f5:05: 30:82:d5:06:16:1a:44:9b:e9:ef:30:c8:bc:8a:27: 89:1d:9d:0d:b0:28:93:eb:2b:64:83:0f:f7:39:6f: 4f:84:d4:69:1d:67:c3:5c:66:6b:c6:99:bc:66:f4: 0a:cf:0c:23:5b:87:ed:db:f9:c0:de:42:8c:95:d3: a7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D4:07:21:69:DA:54:4F:36:88:4D:66:F1:84:FA:7F:2E:1B:FD:6D X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:0d:e9:36:96:10:69:be:20:1e:5c:1a:d9:e7:93:31:b2:08: 90:87:4f:31:3a:d2:ae:36:8f:56:5a:5a:72:24:f7:87:cd:fc: 76:42:8b:bd:5f:5e:5d:92:4e:b3:28:25:f8:ec:0c:bf:a0:22: 43:36:43:e0:0e:44:f3:c1:0e:32:b2:a6:55:84:51:ca:28:01: 4b:aa:89:39:51:44:a4:95:7d:d4:9d:ad:19:25:0a:36:76:07: 90:f9:6c:37:38:4d:27:f1:fa:18:52:94:df:0e:11:30:5f:a0: a7:e9:e9:ee:96:ee:3f:ae:7b:f0:2e:a2:b4:04:93:b6:9a:9c: d7:51:84:c6:7b:77:a3:44:14:0c:f7:8f:9f:9c:db:93:aa:39: 4f:82:5f:6b:eb:8b:57:22:18:d5:40:16:9a:42:53:81:8a:54: b5:a5:bc:e2:09:83:18:5d:97:80:c6:a2:be:6a:df:ec:d8:a4: dd:03:c7:27:84:8f:2e:55:33:98:c3:1c:0d:75:c2:ed:ec:0a: bf:4d:5c:b2:a6:6d:2c:c0:03:f9:23:82:47:7c:10:c3:0a:95: 6f:d5:b0:eb:49:ff:4f:09:85:b1:bc:6d:04:8a:ba:eb:6c:c9: 77:26:ea:af:05:da:4d:06:cc:57:f1:ff:03:5e:86:6d:25:ab: b7:f1:09:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUwNTE0MjAwNjM2WhcNMjUwNTIxMjAwNjM2WjAYMRYwFAYD VQQDEw02ODI0ZjdjYy0zYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8STf+2pCw/6G1WeT6zs512pWjqaFvAsBIDPR2bXdktcY4XOWaWHK+6mEPxn z5QOf4v+eMyvyB41fydXHIEYYddGNzuqkp9jYToUEs1znEynzGC5vp5wHQkJpor/ f3H1W5UHPMRe/kObNdiIop5FSX1+SOf4q+7MrJLYnmKcIEGbucnt+gsmyJ8bu8Ee XCah0PQofVc47Ihe79mX8ZDny7QLt5Z4bcFoBg0DCq4bAxHyDHRpYo6FzYQM8CYm j5JB9QUwgtUGFhpEm+nvMMi8iieJHZ0NsCiT6ytkgw/3OW9PhNRpHWfDXGZrxpm8 ZvQKzwwjW4ft2/nA3kKMldOnPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvUByFp 2lRPNohNZvGE+n8uG/1tMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYDek2lhBpviAeXBrZ55MxsgiQh08xOtKuNo9WWlpyJPeHzfx2Qou9 X15dkk6zKCX47Ay/oCJDNkPgDkTzwQ4ysqZVhFHKKAFLqok5UUSklX3Una0ZJQo2 dgeQ+Ww3OE0n8foYUpTfDhEwX6Cn6enulu4/rnvwLqK0BJO2mpzXUYTGe3ejRBQM 94+fnNuTqjlPgl9r64tXIhjVQBaaQlOBilS1pbziCYMYXZeAxqK+at/s2KTdA8cn hI8uVTOYwxwNdcLt7Aq/TVyypm0swAP5I4JHfBDDCpVv1bDrSf9PCYWxvG0Eirrr bMl3JuqvBdpNBsxX8f8DXoZtJau38QlF -----END CERTIFICATE-----Generated at Fri May 16 11:56:08 2025 by rpki-client