$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: BM+Aqp3Co3Hk2Y06FnM5G4XRGyjDVPbZMpKdRswzJFc= Subject key identifier: E3:4F:93:6A:15:35:92:24:41:5C:F9:56:7D:D8:69:E9:EC:1F:01:9E Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 21C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DEE Signing time: Sun 02 Nov 2025 15:30:12 +0000 Manifest this update: Sun 02 Nov 2025 15:30:11 +0000 Manifest next update: Sun 09 Nov 2025 15:30:11 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: fOP9emaVzdOQbPLj+YIxkRzfPp49QBSzPbxSzedY/wE=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:30:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8643 (0x21c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Nov 2 15:30:11 2025 GMT Not After : Nov 9 15:30:11 2025 GMT Subject: CN=69077904-3671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:da:f2:52:6a:54:61:43:9b:a1:97:d9:bd:15: 81:d7:e9:1f:8a:6c:63:da:95:c6:37:93:ae:fe:bc: dd:76:c8:a6:c7:7b:9c:2a:e7:e5:09:10:39:9e:17: 97:e5:df:c1:c8:a1:6b:6f:be:f3:40:da:38:f8:12: 99:33:67:98:bc:8d:99:06:a5:28:b6:6f:96:20:63: 1d:12:cd:84:22:28:43:81:54:b9:7f:82:7f:6d:d1: 9d:29:36:12:d0:68:27:98:7a:fd:9b:0e:6a:02:15: bf:7f:a3:1f:b0:2a:5f:c0:68:af:3e:1d:58:25:b9: 01:f1:3f:9d:f4:8e:d1:93:2b:ca:8f:6b:b8:44:2c: 7c:a5:f3:ef:1b:91:42:ea:c7:0c:75:65:5c:33:7f: 3c:25:30:90:60:7e:e5:b0:54:68:c3:1c:33:9b:ac: 8d:ba:4e:1d:18:44:03:e1:8d:99:9b:d3:f6:fc:b8: 47:4a:a8:9e:75:b7:d6:8d:68:18:b4:02:7f:fd:23: 54:49:91:6c:8f:35:46:65:82:bd:01:96:69:b7:3f: 30:1a:f3:ca:85:58:7e:0c:4d:5a:25:f8:f0:be:31: 85:a9:bb:41:08:fe:60:3a:1b:8d:2d:95:9f:99:4f: 8f:17:5e:bd:f2:ad:2a:31:eb:68:11:f9:63:a1:3a: c9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4F:93:6A:15:35:92:24:41:5C:F9:56:7D:D8:69:E9:EC:1F:01:9E X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:4d:d8:c3:ac:8c:09:bc:d7:ad:64:f3:3d:9b:84:6d:6f:a2: a1:6e:84:d6:0c:63:11:96:a2:5e:bc:b5:fc:17:78:ec:f9:e1: 58:ac:d5:78:9e:6b:d7:69:d4:7c:c7:e4:fb:27:f4:8a:3d:43: 36:ca:19:bc:c9:5d:a4:9e:0b:ee:a8:18:aa:05:4e:2e:22:f7: 79:8a:62:a2:46:0b:1f:89:0c:d4:14:c0:83:90:96:5b:2a:10: c8:db:eb:d5:8b:1f:3d:b3:e7:2d:06:f0:08:63:58:39:d2:76: ff:f3:ec:16:e7:76:f7:6c:ab:5b:44:95:4f:4a:71:ed:47:28: 29:81:a4:47:7e:c1:24:c7:39:57:90:33:6c:7d:a9:61:8a:d6: 3f:72:71:80:0a:38:b7:13:00:cd:1f:f1:c4:48:68:34:12:fd: cf:85:6c:67:dd:8b:d7:62:a1:0f:1f:c9:ef:75:37:59:83:c3: 3b:04:2d:9b:5e:ad:40:a2:d9:b9:1b:95:f8:f4:ff:bf:c4:87: 8d:c8:c1:82:b8:10:cf:9f:48:98:9f:ee:e4:4c:78:21:78:c7: 2d:a8:4b:b0:cf:b8:20:7a:f3:63:d7:d2:cb:01:3d:b9:65:75: df:83:f4:97:94:20:5b:56:db:94:2f:8a:b4:1c:6e:31:79:84: 39:91:83:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUxMTAyMTUzMDExWhcNMjUxMTA5MTUzMDExWjAYMRYwFAYD VQQDEw02OTA3NzkwNC0zNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29ryUmpUYUOboZfZvRWB1+kfimxj2pXGN5Ou/rzddsimx3ucKuflCRA5nheX 5d/ByKFrb77zQNo4+BKZM2eYvI2ZBqUotm+WIGMdEs2EIihDgVS5f4J/bdGdKTYS 0GgnmHr9mw5qAhW/f6MfsCpfwGivPh1YJbkB8T+d9I7RkyvKj2u4RCx8pfPvG5FC 6scMdWVcM388JTCQYH7lsFRowxwzm6yNuk4dGEQD4Y2Zm9P2/LhHSqiedbfWjWgY tAJ//SNUSZFsjzVGZYK9AZZptz8wGvPKhVh+DE1aJfjwvjGFqbtBCP5gOhuNLZWf mU+PF1698q0qMetoEfljoTrJ9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONPk2oV NZIkQVz5Vn3YaensHwGeMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMTdjDrIwJvNetZPM9m4Rtb6KhboTWDGMRlqJevLX8F3js+eFYrNV4 nmvXadR8x+T7J/SKPUM2yhm8yV2kngvuqBiqBU4uIvd5imKiRgsfiQzUFMCDkJZb KhDI2+vVix89s+ctBvAIY1g50nb/8+wW53b3bKtbRJVPSnHtRygpgaRHfsEkxzlX kDNsfalhitY/cnGACji3EwDNH/HESGg0Ev3PhWxn3YvXYqEPH8nvdTdZg8M7BC2b Xq1Aotm5G5X49P+/xIeNyMGCuBDPn0iYn+7kTHgheMctqEuwz7ggevNj19LLAT25 ZXXfg/SXlCBbVtuUL4q0HG4xeYQ5kYMO -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:36 2025 by rpki-client