$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: AHGWIa33G5zcmpkegrfK+lScCPN9QcF7fc29uKr1daE= Subject key identifier: 74:A6:7D:EF:F5:28:74:DF:99:1E:B0:77:02:EA:E9:F1:03:4C:C0:A0 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 215E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2D8A Signing time: Thu 24 Apr 2025 15:31:22 +0000 Manifest this update: Thu 24 Apr 2025 15:31:22 +0000 Manifest next update: Thu 01 May 2025 15:31:22 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: vDPWQlFtpLF3ziowEda6OagCHeyQRPRSx1KiTICsCh0=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8542 (0x215e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Apr 24 15:31:22 2025 GMT Not After : May 1 15:31:22 2025 GMT Subject: CN=680a594a-08a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:04:79:7c:5c:63:3d:57:99:cf:8d:3a:fb: e1:57:e2:8a:44:d9:af:c5:1c:5f:c0:bc:96:8a:30: 44:fe:04:6b:21:f1:0c:e5:77:7a:4c:83:e9:52:8d: d4:e5:83:e4:b3:eb:56:08:d8:9c:c3:21:a1:e0:aa: 4f:5e:39:d3:6b:e1:68:7c:a1:1b:b8:8a:76:8e:cd: cd:4e:78:49:73:b9:f4:50:c6:ba:4d:0f:2a:1b:1a: aa:29:dc:5f:41:91:cb:f6:cc:31:88:5d:bf:52:39: 36:8e:d4:96:a5:f3:ba:11:7d:77:7f:3f:2a:b9:c0: 52:33:92:ab:9e:61:fb:68:5e:a0:c6:98:dd:54:1c: 72:a5:17:96:4f:59:33:01:2a:87:eb:d6:de:f7:08: e9:2c:1c:2d:17:02:f4:84:79:ae:6c:c3:77:ba:4c: 31:9b:8a:04:04:10:38:f4:fc:30:78:6c:0b:41:88: 5c:f5:99:62:60:3d:3f:95:ea:59:a5:61:c0:ab:4b: 65:94:7c:ef:6d:0f:1d:c4:a7:c5:b1:9b:f8:7f:6c: 2f:a4:dd:77:57:cf:80:06:c9:cb:28:3c:c8:70:38: fb:8a:da:81:2e:e9:65:05:53:63:87:2d:ee:bc:be: 46:c4:57:92:6c:81:f0:1a:c4:c6:78:0c:92:f7:85: c6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A6:7D:EF:F5:28:74:DF:99:1E:B0:77:02:EA:E9:F1:03:4C:C0:A0 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:0b:88:30:a2:7a:87:fe:54:71:95:c1:00:2e:e2:4b:52:e2: 2d:71:d0:61:bf:a3:ff:d7:f0:e2:51:2d:7f:4b:55:39:5a:35: 62:4f:4b:7b:93:73:97:37:13:d9:85:5d:33:24:25:dd:e4:0f: d4:1e:ff:ca:0e:d1:2a:0b:a8:a0:e7:68:dc:89:94:ba:ca:f2: 7e:c5:55:a4:66:c4:1f:b1:cc:af:30:64:0f:20:bb:cb:3b:da: 71:06:01:37:49:a4:b6:24:a4:2a:40:f6:34:39:bf:0a:d6:80: e2:12:b5:e7:21:9d:09:95:ee:3f:e2:05:8b:93:83:7c:b7:8e: c3:41:f4:9a:a3:d5:9c:2d:ed:3f:54:7b:3a:43:18:c2:b2:4d: 18:6c:c8:5c:c1:b8:c4:fc:cf:11:a8:da:56:79:19:4f:58:d1: b4:aa:9b:e9:63:8c:5f:33:78:9a:0e:2d:c6:46:bd:6a:35:1a: 65:e5:21:46:44:5d:c9:2a:9c:2a:b4:9c:b3:22:76:1d:1f:23: d4:05:3a:34:f0:70:80:4c:11:c4:cc:90:73:eb:34:24:69:c7: 17:51:4b:2b:35:c6:6b:74:8f:fc:e3:ab:26:9f:02:a3:03:36: f6:fe:8a:31:20:3d:5d:cc:0b:81:5d:34:4d:b0:73:e4:41:c3: d7:bf:74:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNDI0MTUzMTIyWhcNMjUwNTAxMTUzMTIyWjAYMRYwFAYD VQQDEw02ODBhNTk0YS0wOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxEEeXxcYz1Xmc+NOvvhV+KKRNmvxRxfwLyWijBE/gRrIfEM5Xd6TIPpUo3U 5YPks+tWCNicwyGh4KpPXjnTa+FofKEbuIp2js3NTnhJc7n0UMa6TQ8qGxqqKdxf QZHL9swxiF2/Ujk2jtSWpfO6EX13fz8qucBSM5KrnmH7aF6gxpjdVBxypReWT1kz ASqH69be9wjpLBwtFwL0hHmubMN3ukwxm4oEBBA49PwweGwLQYhc9ZliYD0/lepZ pWHAq0tllHzvbQ8dxKfFsZv4f2wvpN13V8+ABsnLKDzIcDj7itqBLullBVNjhy3u vL5GxFeSbIHwGsTGeAyS94XGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSmfe/1 KHTfmR6wdwLq6fEDTMCgMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnC4gwonqH/lRxlcEALuJLUuItcdBhv6P/1/DiUS1/S1U5WjViT0t7 k3OXNxPZhV0zJCXd5A/UHv/KDtEqC6ig52jciZS6yvJ+xVWkZsQfscyvMGQPILvL O9pxBgE3SaS2JKQqQPY0Ob8K1oDiErXnIZ0Jle4/4gWLk4N8t47DQfSao9WcLe0/ VHs6QxjCsk0YbMhcwbjE/M8RqNpWeRlPWNG0qpvpY4xfM3iaDi3GRr1qNRpl5SFG RF3JKpwqtJyzInYdHyPUBTo08HCATBHEzJBz6zQkaccXUUsrNcZrdI/846smnwKj Azb2/ooxID1dzAuBXTRNsHPkQcPXv3Sq -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:24 2025 by rpki-client