$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: QPEKnUmKH6opVaFTFqaKN6t5lsZDvjPtVlYQ+k+ww28= Subject key identifier: A2:65:95:7F:B3:7D:11:2C:5C:AE:D2:E7:BF:EB:DF:C0:DF:65:EB:A9 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2E2D Signing time: Mon 02 Mar 2026 02:09:33 +0000 Manifest this update: Mon 02 Mar 2026 02:09:31 +0000 Manifest next update: Mon 09 Mar 2026 02:09:31 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: bbOMsiqopFge//K73wOCntAnPUErSG6X7N3jZpZg+KU=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: i7fXEe5dFhoCqlarIdJgicuElCLx9uKqz6dvNHqKFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8708 (0x2204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Mar 2 02:09:31 2026 GMT Not After : Mar 9 02:09:31 2026 GMT Subject: CN=69a4f15c-d642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:16:79:87:b9:f2:20:22:3d:b2:d6:51:00:9f: c1:c8:04:94:2e:2e:6c:b2:e1:2f:c8:15:58:c5:97: 6a:8f:89:9e:eb:54:62:0d:3c:45:bc:72:cd:ae:8e: bb:64:f5:2f:f3:4d:fa:5d:fe:7a:82:41:69:bc:11: 7c:35:16:6e:ea:4d:60:34:3d:33:80:f8:66:f6:44: 9f:c7:02:59:b0:69:93:fb:5c:7e:0a:52:81:0b:98: d7:c1:93:7d:0f:a7:bf:c7:ff:87:80:8d:03:db:cb: f4:c6:d0:bf:c9:cc:a0:40:bb:07:3e:3f:b9:fb:b0: 13:b9:9c:d1:f0:8c:ba:61:65:6a:0c:ed:07:5f:45: 19:74:d9:f0:a3:8a:e4:b2:a6:20:30:78:9b:81:0f: 35:10:c6:5f:8e:d2:4f:1b:70:0c:40:c4:a8:d6:e3: 46:20:c7:99:67:30:04:7e:3f:91:c8:76:53:34:43: d8:9f:11:ce:6e:08:7c:e8:4f:17:8d:9e:6a:3b:94: af:b6:9c:a7:48:d6:a0:c2:3f:b6:9f:74:bf:51:be: 74:8e:44:46:cd:11:1c:e5:51:01:c7:f3:2c:e8:72: f2:80:0e:cf:ff:01:af:37:d0:37:33:33:df:1d:8a: 69:f4:7f:1f:36:b3:bc:0e:f1:bd:6d:51:54:b1:5f: 3d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:65:95:7F:B3:7D:11:2C:5C:AE:D2:E7:BF:EB:DF:C0:DF:65:EB:A9 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8b:e6:db:70:64:61:04:c5:a0:41:21:2d:3b:6e:fb:34:21: 39:03:f9:3b:06:c8:ca:bc:c6:bd:ed:62:a2:93:14:b7:01:86: c7:fd:83:f5:43:dc:8c:35:c8:07:76:c4:fa:20:87:b6:74:5a: dc:4e:fe:d8:17:db:bb:a3:f8:3d:56:51:d0:2a:05:24:3e:3c: ea:3e:35:3d:32:6f:0d:20:c7:b5:0e:45:3c:fb:ae:6f:9a:a3: 41:9b:80:91:f2:88:ac:c1:89:85:eb:64:9b:f3:c9:fc:6f:76: b3:bb:09:32:eb:8f:5d:42:e6:9b:73:68:37:dc:d9:68:9d:94: 88:8d:0c:80:9e:74:0f:bc:7b:bf:1d:58:8c:22:2c:05:90:28: 42:81:00:2f:0a:4d:75:01:a4:7a:26:f2:fb:c8:11:dc:b4:29: 8b:b1:c6:14:4b:9d:39:17:80:56:70:12:87:1b:84:87:2a:13: 7c:21:06:40:b7:bb:e5:e8:bd:eb:e8:3c:59:3c:4e:dc:31:79: 49:56:f8:13:1b:93:7c:04:55:ef:d2:37:12:fe:49:22:3a:01: 03:64:cd:66:1b:09:60:bf:bd:88:3c:a3:d3:53:34:23:1d:bd: 57:72:aa:51:fb:62:06:a4:db:e4:4f:c2:ad:43:f5:91:b4:16: 02:a0:0e:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjYwMzAyMDIwOTMxWhcNMjYwMzA5MDIwOTMxWjAYMRYwFAYD VQQDEw02OWE0ZjE1Yy1kNjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRZ5h7nyICI9stZRAJ/ByASULi5ssuEvyBVYxZdqj4me61RiDTxFvHLNro67 ZPUv8036Xf56gkFpvBF8NRZu6k1gND0zgPhm9kSfxwJZsGmT+1x+ClKBC5jXwZN9 D6e/x/+HgI0D28v0xtC/ycygQLsHPj+5+7ATuZzR8Iy6YWVqDO0HX0UZdNnwo4rk sqYgMHibgQ81EMZfjtJPG3AMQMSo1uNGIMeZZzAEfj+RyHZTNEPYnxHObgh86E8X jZ5qO5SvtpynSNagwj+2n3S/Ub50jkRGzREc5VEBx/Ms6HLygA7P/wGvN9A3MzPf HYpp9H8fNrO8DvG9bVFUsV890QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKJllX+z fREsXK7S57/r38DfZeupMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPYvm23BkYQTFoEEhLTtu+zQhOQP5OwbIyrzGve1iopMUtwGGx/2D9UPcjDXI B3bE+iCHtnRa3E7+2Bfbu6P4PVZR0CoFJD486j41PTJvDSDHtQ5FPPuub5qjQZuA kfKIrMGJhetkm/PJ/G92s7sJMuuPXULmm3NoN9zZaJ2UiI0MgJ50D7x7vx1YjCIs BZAoQoEALwpNdQGkeiby+8gR3LQpi7HGFEudOReAVnAShxuEhyoTfCEGQLe75ei9 6+g8WTxO3DF5SVb4ExuTfARV79I3Ev5JIjoBA2TNZhsJYL+9iDyj01M0Ix29V3Kq UftiBqTb5E/CrUP1kbQWAqAOmA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:18:13 2026 by rpki-client