$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: e7EFqCFJotV1d2PL5orBTbbKjA/gJzsckOZlmnbHdJ4= Subject key identifier: 64:13:B0:F3:D5:DC:0B:8E:26:1B:7D:4F:49:CE:C3:15:76:BE:A6:C4 Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: EA Signing time: Thu 07 Aug 2025 05:52:08 +0000 Manifest this update: Thu 07 Aug 2025 05:52:08 +0000 Manifest next update: Thu 14 Aug 2025 05:52:08 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: QmZIlMOBtV+jywN8yTUy0cG4w6qv5L5dKNNfw6ddywE=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Aug 7 05:52:08 2025 GMT Not After : Aug 14 05:52:08 2025 GMT Subject: CN=68943f08-99bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:95:00:c2:71:32:91:c5:91:85:5d:f9:67:09: b6:84:59:4d:0e:fd:96:41:f2:67:cb:f1:55:cf:e4: 3b:09:0e:09:ea:1e:16:ce:c9:94:f8:74:5a:25:92: fb:7c:8b:64:bd:80:ed:3c:f0:e6:f6:a0:55:80:2d: 4c:ce:f9:d4:ba:8e:9f:88:9f:71:6f:6d:ea:88:19: 84:f3:86:f5:90:7a:e0:0f:d8:3a:bf:ad:4b:2d:5e: a6:c2:00:6d:d1:22:8a:f3:36:3d:e0:b6:d9:86:5e: 3e:18:a6:0d:33:ab:35:0c:6c:30:93:f5:43:ea:32: 38:12:49:7d:1d:df:21:a6:ad:9a:90:90:35:11:87: 5c:f3:84:50:f7:b6:37:f4:a0:fd:5a:55:f3:af:4f: eb:52:bf:bc:06:b3:61:1b:f0:c6:44:f2:e8:60:1c: 69:40:4d:40:99:c5:1b:7f:16:81:61:70:81:57:4e: 10:f5:77:5d:38:78:44:07:a9:99:60:45:a2:e3:f1: c2:e3:2a:16:dc:e4:1c:c5:56:bc:62:6d:25:ae:08: 74:ab:8d:f7:a5:70:53:10:11:93:9b:75:4e:0d:27: e0:14:99:38:20:c4:d7:6b:67:c0:d5:5e:87:90:a5: 13:e0:b7:c1:3b:61:11:4e:1d:c2:8c:4c:b0:6f:6f: 59:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:13:B0:F3:D5:DC:0B:8E:26:1B:7D:4F:49:CE:C3:15:76:BE:A6:C4 X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:13:ae:18:8e:72:c1:b0:3e:ff:93:af:6f:be:64:ec:2d:24: 36:92:c3:c6:18:df:c6:f0:e3:b4:ca:ec:6f:fb:a9:07:25:7f: b1:db:da:d5:ce:4c:20:f7:d7:28:f2:16:7b:69:a5:58:22:16: 72:7e:01:d6:6d:aa:2c:5e:9e:59:b9:24:5d:80:08:69:f3:12: f2:7d:22:64:93:7c:c3:28:89:0e:91:1f:1c:bb:44:df:c1:c7: 10:2f:80:d2:5e:55:68:b1:fc:19:d4:86:9c:ee:0b:83:3c:e4: b6:80:a7:65:3c:11:60:08:a6:5e:8d:d0:42:a3:f1:ae:97:0b: 15:5c:0b:98:dc:18:56:9d:df:6b:4b:cc:3f:e4:b5:63:f3:73: b8:74:19:b1:5d:3b:ca:f2:42:58:73:ce:0a:2b:4d:ef:86:89: 58:e9:57:d3:97:54:a1:fd:1f:da:93:04:4d:64:e8:de:21:b1: 83:ef:2c:d9:c9:68:5b:c2:71:69:eb:37:0d:a5:7a:bc:d3:65: e5:33:ad:50:d8:b6:11:44:a8:7a:4e:fa:0b:b6:86:0f:1b:6c: d9:59:31:da:c1:dc:f2:68:6c:31:6b:ec:5f:b1:29:47:9b:45: 6a:b6:5c:89:7a:65:77:d8:d8:4e:56:89:f5:61:2e:24:e6:48: 4b:91:55:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUwODA3MDU1MjA4WhcNMjUwODE0MDU1MjA4WjAYMRYwFAYD VQQDEw02ODk0M2YwOC05OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypUAwnEykcWRhV35Zwm2hFlNDv2WQfJny/FVz+Q7CQ4J6h4WzsmU+HRaJZL7 fItkvYDtPPDm9qBVgC1MzvnUuo6fiJ9xb23qiBmE84b1kHrgD9g6v61LLV6mwgBt 0SKK8zY94LbZhl4+GKYNM6s1DGwwk/VD6jI4Ekl9Hd8hpq2akJA1EYdc84RQ97Y3 9KD9WlXzr0/rUr+8BrNhG/DGRPLoYBxpQE1AmcUbfxaBYXCBV04Q9XddOHhEB6mZ YEWi4/HC4yoW3OQcxVa8Ym0lrgh0q433pXBTEBGTm3VODSfgFJk4IMTXa2fA1V6H kKUT4LfBO2ERTh3CjEywb29ZowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQTsPPV 3AuOJht9T0nOwxV2vqbEMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgE64YjnLBsD7/k69vvmTsLSQ2ksPGGN/G8OO0yuxv+6kHJX+x29rV zkwg99co8hZ7aaVYIhZyfgHWbaosXp5ZuSRdgAhp8xLyfSJkk3zDKIkOkR8cu0Tf wccQL4DSXlVosfwZ1Iac7guDPOS2gKdlPBFgCKZejdBCo/GulwsVXAuY3BhWnd9r S8w/5LVj83O4dBmxXTvK8kJYc84KK03vholY6VfTl1Sh/R/akwRNZOjeIbGD7yzZ yWhbwnFp6zcNpXq802XlM61Q2LYRRKh6TvoLtoYPG2zZWTHawdzyaGwxa+xfsSlH m0VqtlyJemV32NhOVon1YS4k5khLkVU7 -----END CERTIFICATE-----Generated at Fri Aug 8 13:08:32 2025 by rpki-client