$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: y+h9lFAdvFpWqE7ZSPP9kzPPVyViI5QnoFo0MsNcJHo= Subject key identifier: B8:9D:07:77:EE:B2:78:D7:94:DD:39:71:6B:59:15:84:9E:4D:78:91 Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 0307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 0302 Signing time: Wed 05 Nov 2025 01:15:39 +0000 Manifest this update: Wed 05 Nov 2025 01:15:38 +0000 Manifest next update: Wed 12 Nov 2025 01:15:38 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: zG6JpfFpTCHV1KSoKQamZNgTsYFhIr3V8P5Rb3/TqZY=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: 2Z67uVkO5VIvy8cXyYQOgy3wzQGOrhac1hYccMZ9uzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Nov 5 01:15:38 2025 GMT Not After : Nov 12 01:15:38 2025 GMT Subject: CN=690aa53a-3189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:61:47:86:4f:7d:cd:dc:d5:f3:f7:1a:fe:1c: 08:f1:f2:c1:24:89:61:4f:73:7a:19:f7:a3:e5:7a: 3a:b2:a8:88:0d:77:0b:26:a7:46:e5:3a:09:53:24: e2:9b:aa:2a:8d:9c:fd:db:a7:c7:ff:35:94:4d:46: e7:5f:f7:d6:81:22:6b:d7:53:1d:e3:01:12:1f:08: 31:6b:00:3f:47:38:f2:53:e0:01:5f:7b:9a:0a:a8: 37:7a:29:e9:bf:79:73:10:e3:f3:fd:ce:a8:db:bc: eb:ff:cb:53:37:c9:84:8d:5b:4d:21:c5:ad:8f:41: 62:37:7a:43:6d:6b:8d:6c:9f:5e:ed:eb:ec:d6:64: 11:3a:2b:89:55:5e:c8:1b:12:95:da:81:57:ec:0e: d3:37:27:53:32:38:1e:6e:e7:22:e1:88:29:a6:51: c2:f8:c0:55:c6:7a:15:04:71:ee:f7:2b:29:91:8e: ac:f2:06:3b:4c:7d:36:34:33:00:00:32:b6:69:b5: 59:c0:fe:08:dd:80:24:69:91:88:64:31:28:50:e6: 92:43:58:26:ee:73:1c:0a:33:c0:16:cd:bf:97:6e: fd:e7:d1:dd:6f:64:ae:36:e4:c5:ee:01:6e:e4:5a: 99:af:2f:c8:d5:c0:f3:ec:81:41:9b:b6:25:16:6c: be:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9D:07:77:EE:B2:78:D7:94:DD:39:71:6B:59:15:84:9E:4D:78:91 X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:96:21:b8:36:56:74:c8:04:ac:41:70:8a:59:29:0b:40:26: 07:52:bf:7c:18:3d:52:5a:1f:63:24:a8:08:63:04:6b:7e:d3: ea:41:e0:ae:16:88:26:20:b3:59:ff:dd:cb:ad:94:84:ca:5a: 9c:dd:92:50:ef:df:cc:9b:d9:3b:68:d5:ab:ab:49:0d:54:cb: 1a:77:83:37:3b:f2:4d:ad:45:fe:4e:77:fa:2d:aa:d0:2e:79: 1f:71:9e:14:5a:7a:e0:66:41:9f:49:ac:2d:77:73:9a:e5:2c: 77:8f:f1:56:13:53:89:1d:d2:72:13:5a:39:d8:1a:8e:ba:0c: 3f:1c:c7:8d:2d:6b:b2:bb:13:3f:be:a2:43:74:30:8a:b8:6d: 25:88:c1:fa:9a:37:ab:25:24:16:57:6c:46:c5:5a:86:23:96: e7:e9:f6:aa:36:62:92:9a:94:48:fe:97:a9:15:d3:6c:00:ca: 29:7e:c2:1e:06:d1:7b:06:a3:44:52:8b:35:2a:80:4c:92:7f: 01:06:ab:22:09:4f:2b:11:65:a0:0f:62:d5:4c:47:29:fd:e4: f4:c9:7f:25:8c:72:c1:4d:a4:ec:4d:b2:b1:ee:69:f2:d0:aa: e5:e0:22:8b:57:81:85:c7:a7:5e:dd:0d:f0:96:b8:1c:bf:0f: 16:76:8f:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUxMTA1MDExNTM4WhcNMjUxMTEyMDExNTM4WjAYMRYwFAYD VQQDEw02OTBhYTUzYS0zMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWFHhk99zdzV8/ca/hwI8fLBJIlhT3N6Gfej5Xo6sqiIDXcLJqdG5ToJUyTi m6oqjZz926fH/zWUTUbnX/fWgSJr11Md4wESHwgxawA/RzjyU+ABX3uaCqg3einp v3lzEOPz/c6o27zr/8tTN8mEjVtNIcWtj0FiN3pDbWuNbJ9e7evs1mQROiuJVV7I GxKV2oFX7A7TNydTMjgebuci4YgpplHC+MBVxnoVBHHu9yspkY6s8gY7TH02NDMA ADK2abVZwP4I3YAkaZGIZDEoUOaSQ1gm7nMcCjPAFs2/l27959Hdb2SuNuTF7gFu 5FqZry/I1cDz7IFBm7YlFmy+2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLidB3fu snjXlN05cWtZFYSeTXiRMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPliG4NlZ0yASsQXCKWSkLQCYHUr98GD1SWh9jJKgIYwRrftPqQeCu FogmILNZ/93LrZSEylqc3ZJQ79/Mm9k7aNWrq0kNVMsad4M3O/JNrUX+Tnf6LarQ LnkfcZ4UWnrgZkGfSawtd3Oa5Sx3j/FWE1OJHdJyE1o52BqOugw/HMeNLWuyuxM/ vqJDdDCKuG0liMH6mjerJSQWV2xGxVqGI5bn6faqNmKSmpRI/pepFdNsAMopfsIe BtF7BqNEUos1KoBMkn8BBqsiCU8rEWWgD2LVTEcp/eT0yX8ljHLBTaTsTbKx7mny 0Krl4CKLV4GFx6de3Q3wlrgcvw8Wdo+s -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:10 2025 by rpki-client