$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: SgJIpoQfjXajlTirN2BFmhnMjpZy3DxikEUhqzmAdCM= Subject key identifier: 91:2F:EA:06:4C:BD:F3:9B:C1:CE:C9:27:39:AA:A8:A5:3F:DA:89:55 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DA4 Signing time: Sat 14 Jun 2025 15:29:37 +0000 Manifest this update: Sat 14 Jun 2025 15:29:36 +0000 Manifest next update: Sat 21 Jun 2025 15:29:36 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: wky0lgVd/XfUxjSFRfp7W3JyhXuECZnJ+Ag44pRc8Sc=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8568 (0x2178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Jun 14 15:29:36 2025 GMT Not After : Jun 21 15:29:36 2025 GMT Subject: CN=684d9561-904f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:56:7e:b5:71:91:5d:84:41:0d:26:50:40:bd: bc:2b:6d:08:f4:76:7d:ce:40:e2:46:ba:87:5f:9a: 3d:84:9a:f0:d9:f1:cd:2f:b5:a5:fe:11:13:b8:bb: 4b:bc:47:8a:69:83:33:8c:1e:9c:80:32:2e:a1:1d: a7:ec:60:65:af:0e:51:e5:00:e0:2c:40:cd:a4:a6: 86:59:32:1c:1a:f6:79:71:88:70:2c:84:67:05:2f: 81:7e:52:d3:65:3b:25:79:f0:48:40:cb:4a:a0:ee: 69:79:a4:42:4a:87:2a:27:f2:db:cb:05:e4:a4:9e: a5:1b:ce:a9:0e:73:f7:43:86:35:53:b0:d5:56:e9: e3:5b:2d:ed:09:de:ca:04:b1:8a:9c:3e:44:8d:ac: 5a:09:c1:6e:68:69:b2:84:00:96:2e:19:11:7c:0c: b8:9b:e9:23:8f:06:90:98:c9:51:bf:f7:9e:27:fd: fb:ce:14:21:d3:f6:9c:1c:4a:c4:34:aa:8c:22:71: 6e:64:af:bf:31:06:4f:ed:4a:74:1b:7d:88:6c:a5: 1a:d3:c6:76:0e:95:e8:0f:4e:45:bd:53:d5:9a:5c: 5c:4a:7b:af:93:2a:19:28:a2:05:e4:5e:0e:0b:de: 19:5b:5e:0c:88:ad:61:46:5d:08:e2:b3:70:68:39: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2F:EA:06:4C:BD:F3:9B:C1:CE:C9:27:39:AA:A8:A5:3F:DA:89:55 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:60:b9:35:e8:77:8c:5f:a0:bb:c6:a1:91:bd:19:37:78:19: c7:f6:19:e1:9d:81:92:a9:52:60:a3:ae:96:c3:b1:01:4d:c2: bf:76:7a:d6:88:98:39:67:55:d4:c6:41:b9:f1:fd:23:c9:4f: 67:7b:b1:96:b2:43:5f:3e:e1:bd:d5:07:6d:d0:25:12:38:df: c7:e0:dd:13:d5:63:73:99:d9:65:ad:ec:c0:ba:33:9e:70:73: bd:95:a0:ce:f2:56:fe:36:c0:2a:c3:87:96:0e:fc:fb:37:11: 04:20:a0:60:03:28:53:69:3c:21:a4:82:6b:cd:0c:52:79:be: 8c:d1:e1:47:1f:18:df:26:3e:0e:b9:70:b2:84:8c:07:2c:3c: d3:0f:a0:0c:c1:1b:24:39:2f:ca:08:9b:f4:89:3f:09:bc:a6: 6d:1d:e0:2e:0e:e3:7c:b2:7c:4a:54:69:78:cd:84:16:6c:13: 4b:27:ab:b7:47:88:13:9f:aa:b1:d3:d9:9d:24:09:c8:8b:49: 67:eb:25:e9:67:4e:50:84:e4:01:82:b3:33:12:3a:15:39:31: 48:32:4f:3a:0e:40:72:89:e6:9f:21:9a:a9:41:7e:bc:4f:07: 43:7f:1e:e9:9c:91:9b:0a:07:43:f4:4e:1f:35:ee:f4:14:1b: 38:38:08:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNjE0MTUyOTM2WhcNMjUwNjIxMTUyOTM2WjAYMRYwFAYD VQQDEw02ODRkOTU2MS05MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFZ+tXGRXYRBDSZQQL28K20I9HZ9zkDiRrqHX5o9hJrw2fHNL7Wl/hETuLtL vEeKaYMzjB6cgDIuoR2n7GBlrw5R5QDgLEDNpKaGWTIcGvZ5cYhwLIRnBS+BflLT ZTslefBIQMtKoO5peaRCSocqJ/LbywXkpJ6lG86pDnP3Q4Y1U7DVVunjWy3tCd7K BLGKnD5EjaxaCcFuaGmyhACWLhkRfAy4m+kjjwaQmMlRv/eeJ/37zhQh0/acHErE NKqMInFuZK+/MQZP7Up0G32IbKUa08Z2DpXoD05FvVPVmlxcSnuvkyoZKKIF5F4O C94ZW14MiK1hRl0I4rNwaDkI+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEv6gZM vfObwc7JJzmqqKU/2olVMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbYLk16HeMX6C7xqGRvRk3eBnH9hnhnYGSqVJgo66Ww7EBTcK/dnrW iJg5Z1XUxkG58f0jyU9ne7GWskNfPuG91Qdt0CUSON/H4N0T1WNzmdllrezAujOe cHO9laDO8lb+NsAqw4eWDvz7NxEEIKBgAyhTaTwhpIJrzQxSeb6M0eFHHxjfJj4O uXCyhIwHLDzTD6AMwRskOS/KCJv0iT8JvKZtHeAuDuN8snxKVGl4zYQWbBNLJ6u3 R4gTn6qx09mdJAnIi0ln6yXpZ05QhOQBgrMzEjoVOTFIMk86DkByieafIZqpQX68 TwdDfx7pnJGbCgdD9E4fNe70FBs4OAgX -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:19 2025 by rpki-client