$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: V/UnmeOnu2eX83dVnvAUcV+GdJQWh5nNe7AcTDVXp7g= Subject key identifier: A6:B5:40:4A:43:61:C6:BF:E0:34:77:5A:0B:55:59:4F:8F:96:C2:73 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DC3 Signing time: Sun 10 Aug 2025 15:27:54 +0000 Manifest this update: Sun 10 Aug 2025 15:27:53 +0000 Manifest next update: Sun 17 Aug 2025 15:27:53 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: MEBEpHqUpF/ETfzJzyUFlIIjSKrTVDAHLDOU7VE5r5Y=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8600 (0x2198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Aug 10 15:27:53 2025 GMT Not After : Aug 17 15:27:53 2025 GMT Subject: CN=6898ba7a-81bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:86:5a:98:77:6d:91:cb:af:d4:90:09:7a:e5: e1:e4:fa:d4:ff:ef:03:6a:ef:7d:ec:f6:93:39:04: 7d:e9:72:e3:48:6e:19:5c:c0:af:78:ff:9d:26:d4: 92:27:0c:89:1e:0a:35:8e:d8:c5:9f:bb:3b:0a:ec: a3:16:80:bf:91:11:19:84:64:c0:89:ba:47:0e:af: e0:1f:06:92:4d:4f:2f:39:92:47:4d:87:10:ed:1d: 93:98:a0:70:29:3c:1d:8f:29:11:27:54:91:7e:ed: 5e:d5:b5:3b:b9:73:9d:aa:53:60:b7:18:50:44:bf: fd:5f:0e:f7:35:db:fd:0b:45:56:a3:a6:0b:b2:f7: 5b:d7:6a:d4:11:83:35:7d:46:43:ff:b5:83:a7:3f: 12:15:8e:6c:ea:26:99:4d:2c:e9:a0:a5:8e:be:a0: f2:cd:91:5d:01:98:e2:4d:8a:2a:f0:cc:a7:7b:1e: c3:6e:a9:da:fa:cf:dd:f5:ea:dc:f9:37:27:34:43: b6:62:ad:bb:ea:4d:83:14:10:fe:2e:52:ff:8f:74: 8d:80:47:a1:a4:3c:a5:58:5d:fe:78:df:f9:d0:dc: 8f:8c:b3:36:d0:d7:0c:48:4c:e9:88:c8:57:ea:f3: 78:c4:92:ba:5f:2f:0b:2b:d5:b5:7d:a5:7a:1a:74: 62:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B5:40:4A:43:61:C6:BF:E0:34:77:5A:0B:55:59:4F:8F:96:C2:73 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:af:9d:41:57:85:25:cc:db:af:2e:91:7a:9a:3f:14:ed:f9: 01:bb:e9:2b:99:2e:63:54:b0:1f:70:43:48:74:bc:34:d3:10: de:45:86:d3:52:95:e2:71:08:5d:1c:2d:cb:22:74:18:b4:76: f2:c9:34:0d:5d:6f:59:b8:81:15:bb:f5:0d:84:71:b2:60:9a: 7d:9f:ed:4b:44:13:78:b8:75:99:0e:be:23:23:4b:be:3d:99: e4:95:70:a3:29:52:ed:a4:9b:fb:57:f2:6b:f1:11:34:a8:1a: db:fc:41:e1:fa:4c:34:78:a7:24:d0:a8:5d:dd:2a:cc:f7:11: bc:5c:92:66:38:f6:4a:0a:24:91:c1:e0:ce:b9:01:fe:38:5f: 60:2a:e7:22:81:6f:e7:57:bd:2f:24:ef:d3:f0:eb:a7:5a:07: b4:79:0f:3b:3a:87:23:dd:67:91:69:8e:f9:65:a4:87:d7:96: 90:9c:a6:e7:df:b1:1b:df:97:19:09:4d:51:06:ad:6a:2e:7f: d8:cd:61:48:98:4b:d0:ba:1d:4b:ad:58:a8:04:a8:86:f5:cb: 51:b6:70:a9:6e:df:92:13:cd:52:7c:ba:8c:bc:15:64:29:18: 3d:1e:49:3e:b6:0b:2a:09:93:29:f6:36:c8:1d:f3:24:4d:46: b4:a8:f4:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwODEwMTUyNzUzWhcNMjUwODE3MTUyNzUzWjAYMRYwFAYD VQQDEw02ODk4YmE3YS04MWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oZamHdtkcuv1JAJeuXh5PrU/+8Dau997PaTOQR96XLjSG4ZXMCveP+dJtSS JwyJHgo1jtjFn7s7CuyjFoC/kREZhGTAibpHDq/gHwaSTU8vOZJHTYcQ7R2TmKBw KTwdjykRJ1SRfu1e1bU7uXOdqlNgtxhQRL/9Xw73Ndv9C0VWo6YLsvdb12rUEYM1 fUZD/7WDpz8SFY5s6iaZTSzpoKWOvqDyzZFdAZjiTYoq8Mynex7Dbqna+s/d9erc +TcnNEO2Yq276k2DFBD+LlL/j3SNgEehpDylWF3+eN/50NyPjLM20NcMSEzpiMhX 6vN4xJK6Xy8LK9W1faV6GnRiuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa1QEpD Yca/4DR3WgtVWU+PlsJzMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2r51BV4UlzNuvLpF6mj8U7fkBu+krmS5jVLAfcENIdLw00xDeRYbT UpXicQhdHC3LInQYtHbyyTQNXW9ZuIEVu/UNhHGyYJp9n+1LRBN4uHWZDr4jI0u+ PZnklXCjKVLtpJv7V/Jr8RE0qBrb/EHh+kw0eKck0Khd3SrM9xG8XJJmOPZKCiSR weDOuQH+OF9gKucigW/nV70vJO/T8OunWge0eQ87Oocj3WeRaY75ZaSH15aQnKbn 37Eb35cZCU1RBq1qLn/YzWFImEvQuh1LrVioBKiG9ctRtnCpbt+SE81SfLqMvBVk KRg9Hkk+tgsqCZMp9jbIHfMkTUa0qPSW -----END CERTIFICATE-----Generated at Mon Aug 11 09:34:37 2025 by rpki-client