$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: gAvqbdzffuN5l1K1WwdB/d54PfwjjkfjU+V3Nhkzlt8= Subject key identifier: CF:61:DF:8B:B1:2A:5A:34:29:5E:34:B6:7A:CA:D0:B1:22:0A:71:57 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 218A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DB6 Signing time: Sun 20 Jul 2025 15:31:55 +0000 Manifest this update: Sun 20 Jul 2025 15:31:54 +0000 Manifest next update: Sun 27 Jul 2025 15:31:54 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: k5mRF9nWsjLlM0JtPVaL6BKEP2PdndVrHrETiDhAKMs=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8586 (0x218a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Jul 20 15:31:54 2025 GMT Not After : Jul 27 15:31:54 2025 GMT Subject: CN=687d0beb-9ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1f:d0:4d:6c:40:eb:71:7f:ce:e5:2a:c3:16: f2:96:68:8f:85:fa:32:7a:c7:de:85:0d:f6:c7:ef: 13:e5:3e:c5:1c:b8:96:f6:ba:f9:47:97:c3:94:0d: b8:f2:67:e0:84:a7:27:3b:e5:4e:94:13:9c:61:61: f4:47:97:a2:e4:89:ff:13:b5:74:aa:99:e7:c9:a3: e6:22:1d:58:47:39:a4:9c:fc:c3:2d:f4:5e:9b:da: cb:26:39:a6:b0:66:6a:03:de:b7:7b:b2:9b:9e:2c: d8:d3:04:fd:69:82:7e:ac:fd:5e:09:24:65:fb:a5: 12:47:ca:b2:34:a1:04:ad:ff:ab:20:70:00:4c:ec: f6:19:be:bd:c6:ff:7e:db:73:b5:b8:e6:aa:a6:88: 47:f8:3d:43:5c:cc:11:8b:38:8b:95:34:ff:25:88: c9:bd:29:1d:cf:d4:83:07:05:1a:a8:a3:f4:e4:3c: 9f:a1:e4:3e:3e:6b:8e:0e:16:2f:ba:a6:a0:dd:db: ae:7c:3d:7c:e1:0e:74:bd:55:83:98:93:20:c2:03: bd:e9:75:d8:a2:25:d9:35:de:67:1b:b2:30:cf:6d: 27:21:fe:73:56:21:57:b3:dd:c5:31:9d:fa:11:c3: 80:42:28:3c:73:4a:82:70:3a:fa:19:06:5b:e9:75: 33:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:61:DF:8B:B1:2A:5A:34:29:5E:34:B6:7A:CA:D0:B1:22:0A:71:57 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:2b:11:e1:85:57:27:62:8a:23:52:8d:92:48:e9:6b:cb:8c: 2a:50:6a:18:df:b4:0c:57:a5:00:36:c6:51:b6:34:d5:4e:22: fd:b0:d0:25:ff:e1:6a:59:23:40:98:5f:cc:4f:d6:1e:14:90: a4:78:ae:dc:b4:a9:66:f9:5b:e2:5a:73:b1:5c:65:a7:bf:c9: c6:2b:d9:b6:ac:65:d4:bd:5c:0b:d0:d2:d5:53:b5:ce:c2:34: 9e:70:31:e5:fc:4c:a8:c7:36:34:11:dd:e3:24:4d:89:28:6b: 6a:e7:0e:62:5a:39:12:51:06:96:76:85:19:3c:e2:ee:b9:77: fa:68:fc:4e:8b:6c:0e:c2:cc:01:ac:cb:72:67:f5:2e:b6:81: 26:46:cc:b4:47:bf:64:9f:69:a0:c4:86:a5:8e:79:f0:4e:ef: 1f:62:44:56:42:d5:fc:c1:d4:65:43:a1:40:27:da:96:89:f1: 4c:c7:03:49:89:7c:f9:76:51:78:97:fd:c2:9d:16:61:be:a4: 19:c4:81:65:db:c6:1c:75:96:fe:3c:77:63:b8:41:45:65:ae: 8b:c6:5a:e7:d6:5b:6d:fc:d3:a1:96:86:4f:bb:61:37:b5:56: fd:f7:04:14:49:b1:5f:39:f6:d3:82:d7:b3:55:15:73:a8:54: 20:6a:9a:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNzIwMTUzMTU0WhcNMjUwNzI3MTUzMTU0WjAYMRYwFAYD VQQDEw02ODdkMGJlYi05YWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0B/QTWxA63F/zuUqwxbylmiPhfoyesfehQ32x+8T5T7FHLiW9rr5R5fDlA24 8mfghKcnO+VOlBOcYWH0R5ei5In/E7V0qpnnyaPmIh1YRzmknPzDLfRem9rLJjmm sGZqA963e7KbnizY0wT9aYJ+rP1eCSRl+6USR8qyNKEErf+rIHAATOz2Gb69xv9+ 23O1uOaqpohH+D1DXMwRiziLlTT/JYjJvSkdz9SDBwUaqKP05DyfoeQ+PmuODhYv uqag3duufD184Q50vVWDmJMgwgO96XXYoiXZNd5nG7Iwz20nIf5zViFXs93FMZ36 EcOAQig8c0qCcDr6GQZb6XUz2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9h34ux Klo0KV40tnrK0LEiCnFXMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbKxHhhVcnYoojUo2SSOlry4wqUGoY37QMV6UANsZRtjTVTiL9sNAl /+FqWSNAmF/MT9YeFJCkeK7ctKlm+VviWnOxXGWnv8nGK9m2rGXUvVwL0NLVU7XO wjSecDHl/EyoxzY0Ed3jJE2JKGtq5w5iWjkSUQaWdoUZPOLuuXf6aPxOi2wOwswB rMtyZ/UutoEmRsy0R79kn2mgxIaljnnwTu8fYkRWQtX8wdRlQ6FAJ9qWifFMxwNJ iXz5dlF4l/3CnRZhvqQZxIFl28YcdZb+PHdjuEFFZa6Lxlrn1ltt/NOhloZPu2E3 tVb99wQUSbFfOfbTgtezVRVzqFQgappF -----END CERTIFICATE-----Generated at Mon Jul 21 08:06:53 2025 by rpki-client