$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: Ce/7/HZTzSEr8o4rZ1TquIEomgVXavJmrORJ0eE934o= Subject key identifier: C2:03:F2:85:EB:02:01:94:89:08:1D:E5:3B:65:42:24:55:E1:26:DE Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: E1 Signing time: Mon 21 Jul 2025 05:36:07 +0000 Manifest this update: Mon 21 Jul 2025 05:36:07 +0000 Manifest next update: Mon 28 Jul 2025 05:36:07 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: WVV62w29XwzPcr7Fe2MxEsgbwg9YFKcqz26CPPh+PFw=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Jul 21 05:36:07 2025 GMT Not After : Jul 28 05:36:07 2025 GMT Subject: CN=687dd1c7-1d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:46:c4:b3:6d:ed:fc:d0:df:04:7e:ad:3a:a7: 2a:9e:5b:bf:01:d0:63:b3:8c:8f:0c:0c:59:80:69: b7:5c:19:22:d1:a5:f2:88:35:51:6d:bb:84:2c:88: d2:71:8e:88:92:7d:55:cd:83:15:1f:eb:c4:6b:cd: 0a:a1:a9:1b:56:cb:ba:d9:21:47:00:35:e2:6b:bf: bd:8c:02:81:46:de:64:bf:f5:7b:3b:e0:c6:5e:52: 93:3f:a6:f8:52:e2:d5:bb:0b:87:8a:f2:c5:4a:b1: 9e:1d:04:b8:38:d4:0c:2c:e5:e3:4b:d9:8d:fe:0d: a8:3c:16:c8:8a:62:dc:4d:f5:32:43:43:49:06:dd: 90:10:84:b6:da:35:d5:26:ca:c8:37:90:31:6e:97: 1b:70:84:58:16:df:ee:ff:21:4f:8f:29:4c:2a:59: 2b:6a:3e:4f:56:9e:02:62:9c:a4:30:fc:b0:98:4e: 72:57:99:73:c0:9d:96:ef:bb:47:df:1e:4f:b3:bc: 77:13:35:d4:f5:c3:6b:73:fb:76:77:8e:6d:0b:5d: 10:df:70:e7:09:5f:e4:b0:90:80:11:89:62:40:37: 54:ee:20:4b:3d:26:f9:44:83:9c:0e:a1:21:d4:dc: bb:bc:75:c3:b7:93:94:23:7b:e2:c0:bf:1e:98:66: 83:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:03:F2:85:EB:02:01:94:89:08:1D:E5:3B:65:42:24:55:E1:26:DE X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:fb:df:a0:c8:13:5f:6e:1e:98:8f:89:c1:cd:a6:4c:c3:83: 5c:5b:cb:fb:84:ee:e0:ed:ff:e9:d1:bd:34:31:af:a5:a9:c0: b3:72:84:d6:fb:42:b6:f9:90:4d:08:85:3a:e7:41:6e:bf:ff: 17:4d:2f:20:24:cd:44:b0:eb:d0:53:3c:80:2c:4c:ab:17:97: 58:df:93:8a:41:a2:d9:1b:ad:0f:54:4d:c8:8e:73:5f:31:25: 52:29:8b:32:67:32:2e:e5:1f:ef:32:86:89:ff:9c:40:c0:cd: 77:ae:a3:0d:c0:e3:b8:c6:60:b0:6a:e4:a1:e7:f5:17:2d:99: 4a:5e:26:bc:71:ae:89:05:1d:fd:2a:6f:0f:aa:a2:20:90:c4: 0f:b6:0c:3c:81:b5:6b:c5:fa:57:0f:d8:c7:bd:fc:4b:2c:20: d2:d2:b6:0a:4d:53:48:d9:ca:6d:70:f8:a9:95:e3:08:10:40: cd:ea:1e:41:3b:9a:53:3b:d3:c5:00:b7:2c:ac:66:2d:fa:71: fc:9f:29:19:1f:e9:27:c9:21:fc:c0:fc:6d:af:54:15:97:1e: 73:91:8d:74:94:22:f1:87:7c:26:8f:11:aa:fb:72:bc:9d:d6: 86:ea:1a:76:98:2f:89:30:40:b2:3d:ac:6d:ce:fe:24:72:58: 7b:9f:93:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwNzIxMDUzNjA3WhcNMjUwNzI4MDUzNjA3WjAYMRYwFAYD VQQDEw02ODdkZDFjNy0xZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0bEs23t/NDfBH6tOqcqnlu/AdBjs4yPDAxZgGm3XBki0aXyiDVRbbuELIjS cY6Ikn1VzYMVH+vEa80KoakbVsu62SFHADXia7+9jAKBRt5kv/V7O+DGXlKTP6b4 UuLVuwuHivLFSrGeHQS4ONQMLOXjS9mN/g2oPBbIimLcTfUyQ0NJBt2QEIS22jXV JsrIN5AxbpcbcIRYFt/u/yFPjylMKlkraj5PVp4CYpykMPywmE5yV5lzwJ2W77tH 3x5Ps7x3EzXU9cNrc/t2d45tC10Q33DnCV/ksJCAEYliQDdU7iBLPSb5RIOcDqEh 1Ny7vHXDt5OUI3viwL8emGaDRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMID8oXr AgGUiQgd5TtlQiRV4SbeMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB+9+gyBNfbh6Yj4nBzaZMw4NcW8v7hO7g7f/p0b00Ma+lqcCzcoTW +0K2+ZBNCIU650Fuv/8XTS8gJM1EsOvQUzyALEyrF5dY35OKQaLZG60PVE3IjnNf MSVSKYsyZzIu5R/vMoaJ/5xAwM13rqMNwOO4xmCwauSh5/UXLZlKXia8ca6JBR39 Km8PqqIgkMQPtgw8gbVrxfpXD9jHvfxLLCDS0rYKTVNI2cptcPipleMIEEDN6h5B O5pTO9PFALcsrGYt+nH8nykZH+knySH8wPxtr1QVlx5zkY10lCLxh3wmjxGq+3K8 ndaG6hp2mC+JMECyPaxtzv4kclh7n5NS -----END CERTIFICATE-----Generated at Mon Jul 21 07:18:30 2025 by rpki-client