$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: Q0S0QZDTQn/2HZFozdzd27a2tX1KKeqEAtysbN0Ang0= Subject key identifier: 17:01:30:04:EF:7D:AD:A4:26:03:A4:3A:96:92:DE:98:AA:3C:F5:4B Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: FF Signing time: Wed 17 Sep 2025 05:43:08 +0000 Manifest this update: Wed 17 Sep 2025 05:43:07 +0000 Manifest next update: Wed 24 Sep 2025 05:43:07 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: VnKl74yKt58UoiQdWSTplnu2OUt3Yr81kyqY/XAy9oI=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Sep 17 05:43:07 2025 GMT Not After : Sep 24 05:43:07 2025 GMT Subject: CN=68ca4a6b-9e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:7b:08:e4:e6:27:7e:d7:ed:2b:6d:c0:a9: 92:d8:ac:e9:7d:82:f9:d0:e1:25:32:07:19:d9:9f: 04:8b:8f:ea:1d:3d:a2:f0:6c:6f:42:7f:bd:ce:8a: 53:53:96:d8:96:50:79:af:fa:b7:f6:4f:3b:2b:35: 27:24:0e:95:d9:48:8f:a4:76:e7:36:d0:ed:eb:c3: ce:0d:70:57:25:c4:e2:b5:71:f0:2f:79:5d:03:61: 9e:1e:8d:54:eb:50:bc:e0:cc:6a:46:a1:12:81:1a: 17:bb:7e:c5:9d:b0:ea:ae:c5:21:ba:bf:11:92:12: a6:db:e0:9a:b7:e1:85:41:11:02:c0:e2:55:e4:73: 11:35:c6:9f:8d:80:9b:16:49:16:e1:c4:9f:0b:df: d5:a9:df:1f:e1:a7:2d:d5:05:ad:d2:ea:60:f6:3e: 02:b0:3b:7a:f8:05:f3:0c:fe:cf:a1:70:e5:b4:78: 9b:2d:5b:04:35:ab:fc:bf:40:83:8c:76:18:3e:1c: c4:01:7f:7d:cc:41:a7:e9:55:82:f8:e3:7b:c7:40: c8:a2:3e:02:36:a4:9d:d5:ec:33:0c:d7:51:02:83: 97:11:80:d3:e8:71:60:17:b8:73:de:33:2e:b9:da: 6a:9a:b0:78:53:8f:dc:98:ce:c9:02:a6:6d:a1:7c: 3f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:01:30:04:EF:7D:AD:A4:26:03:A4:3A:96:92:DE:98:AA:3C:F5:4B X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:7b:3c:c3:1a:d0:cc:b1:2b:f7:13:af:36:12:ca:40:89:bb: 49:69:9e:ac:6b:a6:5a:dd:48:32:82:68:3d:2c:74:e5:b7:35: b5:fc:d8:9c:72:1f:31:a9:15:05:80:f4:6e:0f:dd:39:0a:c5: 44:9a:17:9b:bd:c4:fd:76:bb:ce:1f:0a:47:a7:90:b2:9a:c2: c7:c0:ce:54:2d:1e:1f:95:bc:82:8e:20:5e:ce:44:53:c9:4a: 72:96:49:14:ae:d7:20:d2:fa:cb:0f:b1:29:3f:b9:df:dd:e9: f0:73:d5:a7:94:6e:82:69:25:54:17:30:84:e8:c2:5c:5f:ec: 8a:5f:07:b6:f2:d1:3a:76:df:15:e4:6c:89:0a:27:c0:1e:60: 28:89:92:b2:f3:1b:63:2b:42:99:a7:ed:76:61:20:d9:f2:dd: d5:43:3c:be:66:63:3b:fb:ca:14:37:a4:ca:87:31:fb:74:f3: e0:b8:5d:e3:1e:60:4a:12:ca:94:bf:4f:fe:75:76:3f:56:4c: f3:42:dc:79:57:ee:a3:02:ca:55:5f:f9:0d:06:7f:65:3a:6d: 8f:81:b0:ba:e8:c5:4b:42:e1:84:50:da:2b:43:9d:ab:14:df: b1:a4:24:34:2b:a1:f9:5c:41:55:42:fd:f4:f6:ff:21:4f:cf: 59:d9:4d:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwOTE3MDU0MzA3WhcNMjUwOTI0MDU0MzA3WjAYMRYwFAYD VQQDEw02OGNhNGE2Yi05ZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvd7COTmJ37X7SttwKmS2KzpfYL50OElMgcZ2Z8Ei4/qHT2i8GxvQn+9zopT U5bYllB5r/q39k87KzUnJA6V2UiPpHbnNtDt68PODXBXJcTitXHwL3ldA2GeHo1U 61C84MxqRqESgRoXu37FnbDqrsUhur8RkhKm2+Cat+GFQRECwOJV5HMRNcafjYCb FkkW4cSfC9/Vqd8f4act1QWt0upg9j4CsDt6+AXzDP7PoXDltHibLVsENav8v0CD jHYYPhzEAX99zEGn6VWC+ON7x0DIoj4CNqSd1ewzDNdRAoOXEYDT6HFgF7hz3jMu udpqmrB4U4/cmM7JAqZtoXw/tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcBMATv fa2kJgOkOpaS3piqPPVLMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgezzDGtDMsSv3E682EspAibtJaZ6sa6Za3Ugygmg9LHTltzW1/Nic ch8xqRUFgPRuD905CsVEmhebvcT9drvOHwpHp5CymsLHwM5ULR4flbyCjiBezkRT yUpylkkUrtcg0vrLD7EpP7nf3enwc9WnlG6CaSVUFzCE6MJcX+yKXwe28tE6dt8V 5GyJCifAHmAoiZKy8xtjK0KZp+12YSDZ8t3VQzy+ZmM7+8oUN6TKhzH7dPPguF3j HmBKEsqUv0/+dXY/VkzzQtx5V+6jAspVX/kNBn9lOm2PgbC66MVLQuGEUNorQ52r FN+xpCQ0K6H5XEFVQv309v8hT89Z2U2y -----END CERTIFICATE-----Generated at Fri Sep 19 02:55:35 2025 by rpki-client