$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: Gvl1YWUgBfd1km1DBhH8dArzn8cF35tJGrg2mxHJXNY= Subject key identifier: 18:B4:7E:B9:FE:02:F6:7C:F6:20:2D:15:F7:2F:93:77:F8:34:22:D6 Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02D6 Signing time: Sat 09 Aug 2025 01:52:57 +0000 Manifest this update: Sat 09 Aug 2025 01:52:57 +0000 Manifest next update: Sat 16 Aug 2025 01:52:57 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: Jujp301LIU3WagHwnkBaGUmtDYjrBVxzcMzjU68USkU=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: 2Z67uVkO5VIvy8cXyYQOgy3wzQGOrhac1hYccMZ9uzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Aug 9 01:52:57 2025 GMT Not After : Aug 16 01:52:57 2025 GMT Subject: CN=6896a9f9-4522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c0:48:76:05:95:c1:51:cb:64:8c:cd:73:da: 46:56:8c:9d:a2:6c:52:c2:f4:81:df:c8:9f:a6:50: bd:8f:4c:00:6a:bb:ac:d2:1f:dd:38:f5:d5:2a:e7: 09:58:28:e2:00:c1:3e:9b:45:5a:f8:19:ff:97:b2: 22:a8:75:fc:da:81:20:6e:a7:65:e6:ce:bb:9b:06: 16:e4:79:c7:22:4d:f4:ed:35:96:07:c8:0a:07:4d: bf:dd:a0:56:56:ea:8a:3e:59:0a:b9:d9:58:c9:0b: 7a:f5:5b:06:06:e7:1f:ed:f3:1b:a5:7f:5d:57:bc: fb:39:41:43:58:f9:a7:15:26:ba:1a:0e:d2:d1:9c: 65:fb:8c:eb:8f:13:f0:4b:76:bf:34:49:22:0b:19: 52:6e:34:7a:75:f7:77:4c:32:80:9c:c7:90:44:37: be:f5:ae:6b:fb:b2:bd:c5:37:8d:ad:e3:f2:2e:7f: 53:23:5b:fa:1b:4c:cb:0b:56:ce:10:9a:53:58:ee: 86:33:15:61:d9:4b:48:95:f8:0c:82:12:20:02:46: 9b:57:4f:a1:28:f7:63:2c:29:b8:e0:29:7c:60:70: 71:d9:c6:c3:9f:03:82:6e:fc:68:7d:e6:c9:3a:c3: 2e:0f:81:0d:07:37:10:ff:65:c8:0e:51:5f:bf:8a: be:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B4:7E:B9:FE:02:F6:7C:F6:20:2D:15:F7:2F:93:77:F8:34:22:D6 X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9e:53:3e:ca:74:34:15:58:e9:17:38:64:45:e5:91:02:13: 25:dd:08:32:b3:d0:e0:a9:f6:ee:5f:e3:a5:0f:4e:3d:a9:ae: ea:2f:92:7a:59:f3:a0:96:fa:22:ca:39:4b:4f:61:84:91:f6: 9e:a4:1b:9f:37:94:1d:a5:cd:aa:53:c8:21:f8:72:8d:37:54: 57:69:0a:b7:6e:a7:e7:97:fc:d1:e9:fd:e6:8f:68:66:9b:cd: 1f:fa:f6:ce:d6:08:25:9a:93:1b:a6:68:40:41:1c:ff:08:53: 6f:e9:15:ab:d9:05:37:d5:02:59:05:dd:38:53:47:67:5b:ab: 76:d6:ac:eb:b3:1a:ea:25:ca:ee:26:a1:93:65:97:ab:48:a6: e5:e7:95:ba:36:21:82:9d:47:5b:4e:56:3d:81:4f:5c:f2:59: 1c:77:83:eb:e0:60:6c:d7:ff:8b:a0:3f:5f:ac:90:8e:62:6d: b1:f3:c6:1b:43:89:5f:3a:27:63:b6:aa:de:01:0b:84:d9:3a: a6:15:b5:ce:f6:17:99:52:37:c0:42:46:30:19:a8:c1:af:fd: af:b8:c8:e3:27:39:52:8f:3e:21:89:ff:25:df:1b:d4:6c:10: 93:68:c0:7a:eb:57:70:9a:87:30:cf:31:a9:69:d7:0e:97:37: 7e:bc:aa:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwODA5MDE1MjU3WhcNMjUwODE2MDE1MjU3WjAYMRYwFAYD VQQDEw02ODk2YTlmOS00NTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycBIdgWVwVHLZIzNc9pGVoydomxSwvSB38ifplC9j0wAarus0h/dOPXVKucJ WCjiAME+m0Va+Bn/l7IiqHX82oEgbqdl5s67mwYW5HnHIk307TWWB8gKB02/3aBW VuqKPlkKudlYyQt69VsGBucf7fMbpX9dV7z7OUFDWPmnFSa6Gg7S0Zxl+4zrjxPw S3a/NEkiCxlSbjR6dfd3TDKAnMeQRDe+9a5r+7K9xTeNrePyLn9TI1v6G0zLC1bO EJpTWO6GMxVh2UtIlfgMghIgAkabV0+hKPdjLCm44Cl8YHBx2cbDnwOCbvxofebJ OsMuD4ENBzcQ/2XIDlFfv4q+2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBi0frn+ AvZ89iAtFfcvk3f4NCLWMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYnlM+ynQ0FVjpFzhkReWRAhMl3Qgys9DgqfbuX+OlD049qa7qL5J6 WfOglvoiyjlLT2GEkfaepBufN5Qdpc2qU8gh+HKNN1RXaQq3bqfnl/zR6f3mj2hm m80f+vbO1gglmpMbpmhAQRz/CFNv6RWr2QU31QJZBd04U0dnW6t21qzrsxrqJcru JqGTZZerSKbl55W6NiGCnUdbTlY9gU9c8lkcd4Pr4GBs1/+LoD9frJCOYm2x88Yb Q4lfOidjtqreAQuE2TqmFbXO9heZUjfAQkYwGajBr/2vuMjjJzlSjz4hif8l3xvU bBCTaMB661dwmocwzzGpadcOlzd+vKrP -----END CERTIFICATE-----Generated at Sun Aug 10 18:24:15 2025 by rpki-client