$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: BYEdbLnSQzKNnSddPlbAlZ9BJwc5kEg3D5EC7ycYW1o= Subject key identifier: 01:99:DE:97:09:29:84:CA:CC:DB:C7:CB:F3:0F:62:EA:36:35:07:AD Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02DD Signing time: Sat 23 Aug 2025 01:34:10 +0000 Manifest this update: Sat 23 Aug 2025 01:34:09 +0000 Manifest next update: Sat 30 Aug 2025 01:34:09 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: NnO9gyAA6gqzp1VIfggnObSr5cdakU/1bQNpCZOjQVc=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: 2Z67uVkO5VIvy8cXyYQOgy3wzQGOrhac1hYccMZ9uzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 738 (0x2e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Aug 23 01:34:09 2025 GMT Not After : Aug 30 01:34:09 2025 GMT Subject: CN=68a91a92-9fbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:3a:2e:48:72:ec:0a:a9:07:c4:ad:7b:01: 39:36:76:23:00:a6:c2:e2:8d:2e:a0:ca:9f:3e:a7: 17:3b:7f:35:5d:ad:7b:6b:af:e4:80:14:fe:23:ef: 7b:d7:80:20:5b:bd:3b:3e:1b:ac:ef:e3:34:36:4b: 03:7b:82:46:79:57:90:6f:78:8b:44:08:f8:60:bb: 4c:28:a2:1e:6f:af:63:0b:1a:68:55:a1:1d:6a:22: 0c:82:b6:8c:3c:bc:cd:8d:91:67:eb:7a:1d:64:2b: 44:ac:88:1c:8c:36:22:1e:fd:ef:53:43:6f:48:0a: da:1b:21:0f:9f:6b:96:e4:05:ec:1c:22:7e:db:09: ef:5b:a3:70:ef:38:87:55:96:db:2b:0d:9f:80:de: a5:ed:3f:0a:9b:f6:52:42:4a:be:f2:a1:25:34:12: 58:a4:40:ea:ea:03:17:38:44:a7:e1:85:27:30:84: 38:06:8b:2c:98:f3:60:fa:fd:bb:11:7d:e7:6b:fb: fa:4e:69:84:88:0a:58:d3:65:78:9c:80:26:f5:59: 8b:7a:1e:53:1c:69:b8:32:63:e1:b2:54:42:86:df: 24:9d:e6:17:b1:a7:df:bf:7e:8f:fd:46:11:f7:be: eb:42:76:b5:e3:cc:5c:c2:5c:d8:8c:ff:90:40:b3: 43:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:99:DE:97:09:29:84:CA:CC:DB:C7:CB:F3:0F:62:EA:36:35:07:AD X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:2d:0e:f7:55:99:ff:fa:64:f2:9b:c5:52:d6:57:8f:f3:a8: 85:40:37:2c:e2:cb:4d:db:ef:b3:c0:f2:93:56:2e:93:f9:ff: 5c:e9:d1:3d:59:ac:47:f8:c5:90:b4:81:72:f1:ef:ce:c4:c6: 88:2c:41:54:ed:de:a5:49:ec:49:a5:24:e6:d1:cc:7f:d6:17: 3f:79:4d:b2:e0:d6:1f:da:4f:9e:35:59:a5:f3:8d:81:7d:56: 10:5f:bf:57:ec:6f:15:ea:1d:c6:61:cc:69:24:ca:0c:22:8a: 9e:b7:d3:f7:33:6c:dd:d4:d6:9a:5a:62:5f:fe:6f:13:51:5a: 4d:b5:8c:bb:d1:f6:1c:91:9c:cb:26:73:04:eb:ee:46:8a:7b: c5:25:88:b5:22:5f:55:ee:ad:50:fe:17:8d:d5:72:9a:89:d3: e3:d3:11:f7:87:fc:76:60:9b:b3:62:df:87:6f:8d:ee:83:cd: 22:2a:82:8a:c8:c8:a5:d8:11:4a:bb:2e:1f:74:1d:58:2f:dd: 2c:e8:ad:5c:92:6d:e0:fb:46:54:48:f4:b9:9c:0c:43:5f:c6: 36:8c:07:cd:a8:61:ee:8e:2c:a6:4c:eb:64:7b:44:a2:86:a7: 8b:cf:ab:5a:1d:ec:0e:10:54:73:56:11:5a:6a:79:62:29:a3: 43:bd:ac:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwODIzMDEzNDA5WhcNMjUwODMwMDEzNDA5WjAYMRYwFAYD VQQDEw02OGE5MWE5Mi05ZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxU6Lkhy7AqpB8StewE5NnYjAKbC4o0uoMqfPqcXO381Xa17a6/kgBT+I+97 14AgW707Phus7+M0NksDe4JGeVeQb3iLRAj4YLtMKKIeb69jCxpoVaEdaiIMgraM PLzNjZFn63odZCtErIgcjDYiHv3vU0NvSAraGyEPn2uW5AXsHCJ+2wnvW6Nw7ziH VZbbKw2fgN6l7T8Km/ZSQkq+8qElNBJYpEDq6gMXOESn4YUnMIQ4BossmPNg+v27 EX3na/v6TmmEiApY02V4nIAm9VmLeh5THGm4MmPhslRCht8kneYXsaffv36P/UYR 977rQna148xcwlzYjP+QQLND9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGZ3pcJ KYTKzNvHy/MPYuo2NQetMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCLQ73VZn/+mTym8VS1leP86iFQDcs4stN2++zwPKTVi6T+f9c6dE9 WaxH+MWQtIFy8e/OxMaILEFU7d6lSexJpSTm0cx/1hc/eU2y4NYf2k+eNVml842B fVYQX79X7G8V6h3GYcxpJMoMIoqet9P3M2zd1NaaWmJf/m8TUVpNtYy70fYckZzL JnME6+5GinvFJYi1Il9V7q1Q/heN1XKaidPj0xH3h/x2YJuzYt+Hb43ug80iKoKK yMil2BFKuy4fdB1YL90s6K1ckm3g+0ZUSPS5nAxDX8Y2jAfNqGHujiymTOtke0Si hqeLz6taHewOEFRzVhFaanliKaNDvaxX -----END CERTIFICATE-----Generated at Sun Aug 24 22:16:09 2025 by rpki-client