$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: kiWMtrbW/P4wCMwzQhYp8/vz6SmOVDsA5jFd1EvnuZQ= Subject key identifier: 9D:07:EF:DC:A6:ED:DA:84:F7:82:51:CD:9A:21:14:F5:3A:CE:7F:8E Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: B6 Signing time: Fri 25 Apr 2025 04:59:56 +0000 Manifest this update: Fri 25 Apr 2025 04:59:56 +0000 Manifest next update: Fri 02 May 2025 04:59:56 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: toM7ZRN8Inwxqb4CrgQPKjmzGSXUd6zb6hrPSfkqrMY=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Apr 25 04:59:56 2025 GMT Not After : May 2 04:59:56 2025 GMT Subject: CN=680b16cc-fce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:84:b2:14:65:45:cb:4f:b5:46:c1:a1:7b:7b: 4f:8f:c9:3c:86:cf:b3:66:62:10:de:65:be:eb:e3: e9:c2:2d:25:f3:dd:5f:29:3c:77:79:9f:9c:41:eb: 39:4e:49:66:8f:31:bb:42:fb:b0:05:17:86:87:fc: 87:bb:e4:45:c1:02:0f:af:76:e3:8a:93:db:9d:5d: a4:06:a2:ed:8a:2a:11:d7:62:00:ff:97:0b:d2:6a: f0:6b:ac:68:06:d8:14:3d:ad:be:cd:cf:fa:8a:60: 01:de:a7:f5:33:27:bb:f7:52:4d:10:86:78:ab:52: 9a:03:d4:83:da:c5:b8:66:c1:b8:77:9e:66:58:1f: 7a:60:66:63:1e:61:71:81:42:ba:83:09:6b:46:2c: bd:84:99:10:c8:47:5a:f1:b2:60:d6:82:1c:3c:68: 05:2a:5c:43:c8:4e:e2:4b:e2:71:df:3c:b4:02:82: 82:91:46:24:2b:9c:d4:6e:17:13:16:a7:e7:b0:07: 1a:f0:61:a5:b1:ff:07:31:51:68:3a:b2:d7:0a:3d: 25:ff:60:59:1d:94:1c:7c:31:28:cf:46:a1:00:cf: 22:21:77:af:62:35:4e:bd:7d:fe:26:db:78:10:2b: 9f:31:97:21:bc:c9:df:72:48:4c:04:b3:e5:5a:c7: 72:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:07:EF:DC:A6:ED:DA:84:F7:82:51:CD:9A:21:14:F5:3A:CE:7F:8E X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:7b:64:92:ab:f2:0b:ff:e7:22:e3:01:0f:31:bf:6a:49:27: ea:d5:8b:04:6c:47:32:76:92:e9:ff:c5:25:8a:16:e6:06:b3: cc:15:d2:fe:51:25:a9:e7:77:58:7b:cc:f9:c4:00:0d:bd:57: 23:13:e3:88:a9:74:77:3a:14:b7:86:41:9d:18:d2:52:60:57: cd:03:0a:56:16:5c:e8:b4:86:e8:c8:ea:a7:74:1c:9f:1f:33: 98:d7:e9:a1:02:2f:05:9c:67:82:c4:41:9a:12:c6:fe:dd:28: fe:2a:23:69:10:4f:2a:5a:52:ef:ab:a0:c5:96:38:4c:c3:f1: a3:a4:a3:e5:8b:5b:10:ea:8c:85:f2:14:7e:c0:f8:f8:cd:fa: a2:3e:d2:40:e2:33:d8:22:f8:fe:94:55:60:ec:aa:75:81:19: 06:fc:64:49:0d:0c:e1:2d:02:39:cb:bd:07:07:80:2a:d6:61: d7:26:02:04:70:40:9a:72:e3:e4:aa:bc:a0:8c:d7:6a:97:cd: a2:08:62:46:aa:81:d2:dd:cf:a1:b0:5a:f8:91:66:39:7c:1b: ef:aa:e8:5d:3f:55:15:41:5e:e2:7c:0d:cc:71:1a:d9:d4:62: d3:92:2e:23:b1:1f:ba:8f:84:78:53:11:08:41:01:50:25:27: 37:45:fd:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwNDI1MDQ1OTU2WhcNMjUwNTAyMDQ1OTU2WjAYMRYwFAYD VQQDEw02ODBiMTZjYy1mY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oSyFGVFy0+1RsGhe3tPj8k8hs+zZmIQ3mW+6+Ppwi0l891fKTx3eZ+cQes5 TklmjzG7QvuwBReGh/yHu+RFwQIPr3bjipPbnV2kBqLtiioR12IA/5cL0mrwa6xo BtgUPa2+zc/6imAB3qf1Mye791JNEIZ4q1KaA9SD2sW4ZsG4d55mWB96YGZjHmFx gUK6gwlrRiy9hJkQyEda8bJg1oIcPGgFKlxDyE7iS+Jx3zy0AoKCkUYkK5zUbhcT FqfnsAca8GGlsf8HMVFoOrLXCj0l/2BZHZQcfDEoz0ahAM8iIXevYjVOvX3+Jtt4 ECufMZchvMnfckhMBLPlWsdy8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0H79ym 7dqE94JRzZohFPU6zn+OMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTe2SSq/IL/+ci4wEPMb9qSSfq1YsEbEcydpLp/8UlihbmBrPMFdL+ USWp53dYe8z5xAANvVcjE+OIqXR3OhS3hkGdGNJSYFfNAwpWFlzotIboyOqndByf HzOY1+mhAi8FnGeCxEGaEsb+3Sj+KiNpEE8qWlLvq6DFljhMw/GjpKPli1sQ6oyF 8hR+wPj4zfqiPtJA4jPYIvj+lFVg7Kp1gRkG/GRJDQzhLQI5y70HB4Aq1mHXJgIE cECacuPkqrygjNdql82iCGJGqoHS3c+hsFr4kWY5fBvvquhdP1UVQV7ifA3McRrZ 1GLTki4jsR+6j4R4UxEIQQFQJSc3Rf1x -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:51 2025 by rpki-client