$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: iQA2eFAaeCdDFUiyGSCScCt6S5orVPvWsYvUNOkDnKU= Subject key identifier: 53:9A:10:98:92:AB:D3:F6:53:D6:79:A7:E4:D3:70:39:1B:43:CC:3D Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 0301 Signing time: Mon 03 Nov 2025 01:07:57 +0000 Manifest this update: Mon 03 Nov 2025 01:07:57 +0000 Manifest next update: Mon 10 Nov 2025 01:07:57 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: ziIcsXoJZFrV8+vz2L1qsMMc3owuhPi/zXRlArvpfjI=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: 2Z67uVkO5VIvy8cXyYQOgy3wzQGOrhac1hYccMZ9uzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Nov 3 01:07:57 2025 GMT Not After : Nov 10 01:07:57 2025 GMT Subject: CN=6908006d-5453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0d:30:13:f9:f1:e1:84:f5:f4:05:7e:5c:6f: 03:31:79:28:2a:72:1c:a8:28:45:9b:ac:f1:01:ec: d6:c4:aa:ec:26:5a:c2:73:60:2d:89:d6:42:2f:59: 7a:ff:cb:35:87:60:9a:96:34:e2:dd:d1:98:d9:79: ba:07:56:43:e3:90:cf:ed:be:ac:1c:0d:12:ec:a2: 63:8b:6d:df:74:b4:0d:77:71:c2:0f:ee:87:4b:9b: 14:19:41:b7:0c:d8:48:70:08:15:a8:7a:83:a0:fc: 98:17:2a:11:f6:ba:4a:11:80:6a:ee:00:62:b7:41: c9:c4:a1:ee:31:79:a8:01:bd:82:4e:37:1c:66:25: 9f:61:37:f6:a7:c8:89:ee:2d:aa:af:8b:49:3a:32: bc:9d:5a:1b:a8:87:58:63:d5:59:71:ad:9b:38:ff: 32:80:9b:6f:5d:9c:c0:94:53:ad:b1:8d:49:95:80: 8b:db:de:43:56:35:52:1c:fe:ba:ac:d1:db:24:6a: 8b:bf:80:bc:5a:8a:7a:1c:58:37:09:31:be:60:b0: 7f:b4:26:27:e6:84:33:d6:cb:06:c7:47:85:02:f4: 4a:7b:b6:42:c4:74:c1:b6:0b:c8:ca:2c:df:e0:f6: 75:9b:6d:92:6b:7a:c7:21:eb:c4:e5:93:1d:ed:7a: 88:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9A:10:98:92:AB:D3:F6:53:D6:79:A7:E4:D3:70:39:1B:43:CC:3D X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:51:62:0c:6f:fc:ac:39:50:4c:78:2b:00:4e:ce:36:da:1f: c4:80:99:36:af:ba:a9:7b:25:69:02:6d:b9:f8:8b:29:e8:e0: 34:1c:f0:1c:6c:3b:86:5b:b2:a8:57:dd:4c:48:06:80:f5:45: 1c:68:0b:ea:4f:be:da:4f:83:51:69:0f:4c:10:dc:83:56:2c: 3e:bc:03:51:ed:1f:25:75:2b:d0:e4:a9:48:16:3d:f5:ff:c6: 46:d6:23:f4:c3:d0:64:8c:a2:8d:6e:cc:4b:ec:d4:bb:b0:38: 87:c3:77:01:27:53:7a:54:11:7f:32:51:fd:81:f9:54:8a:a5: 7f:32:d0:83:43:03:75:2c:ce:4f:7b:3e:07:8c:e9:fc:a2:17: ef:68:db:b1:6f:8c:fd:2d:bb:48:cb:50:41:06:ef:be:30:5f: 71:0c:1c:66:c2:e1:b2:37:b2:25:97:a8:fe:eb:d6:8b:40:97: 04:de:04:8e:55:2e:60:fb:f7:79:6c:99:22:91:f5:c2:3a:6e: 65:a4:e6:c7:4b:2d:e3:ab:46:d0:b9:10:bd:3c:67:5d:e3:33: 87:9a:9d:f4:1c:07:99:ea:4e:dd:ed:7c:c7:66:89:97:77:ec: 21:96:72:b4:94:db:f3:c7:59:ae:4f:03:75:e8:b4:94:16:98: f5:c0:17:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUxMTAzMDEwNzU3WhcNMjUxMTEwMDEwNzU3WjAYMRYwFAYD VQQDEw02OTA4MDA2ZC01NDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQ0wE/nx4YT19AV+XG8DMXkoKnIcqChFm6zxAezWxKrsJlrCc2AtidZCL1l6 /8s1h2CaljTi3dGY2Xm6B1ZD45DP7b6sHA0S7KJji23fdLQNd3HCD+6HS5sUGUG3 DNhIcAgVqHqDoPyYFyoR9rpKEYBq7gBit0HJxKHuMXmoAb2CTjccZiWfYTf2p8iJ 7i2qr4tJOjK8nVobqIdYY9VZca2bOP8ygJtvXZzAlFOtsY1JlYCL295DVjVSHP66 rNHbJGqLv4C8Wop6HFg3CTG+YLB/tCYn5oQz1ssGx0eFAvRKe7ZCxHTBtgvIyizf 4PZ1m22Sa3rHIevE5ZMd7XqI9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOaEJiS q9P2U9Z5p+TTcDkbQ8w9MB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUUWIMb/ysOVBMeCsATs422h/EgJk2r7qpeyVpAm25+Isp6OA0HPAc bDuGW7KoV91MSAaA9UUcaAvqT77aT4NRaQ9MENyDViw+vANR7R8ldSvQ5KlIFj31 /8ZG1iP0w9BkjKKNbsxL7NS7sDiHw3cBJ1N6VBF/MlH9gflUiqV/MtCDQwN1LM5P ez4HjOn8ohfvaNuxb4z9LbtIy1BBBu++MF9xDBxmwuGyN7Ill6j+69aLQJcE3gSO VS5g+/d5bJkikfXCOm5lpObHSy3jq0bQuRC9PGdd4zOHmp30HAeZ6k7d7XzHZomX d+whlnK0lNvzx1muTwN16LSUFpj1wBcf -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:35 2025 by rpki-client