$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: rejTLoZIIfKUm4TQfwVEOxNgj+E6Q4p7aOXxu+ilPg8= Subject key identifier: C9:C7:4E:20:89:AC:D2:74:68:86:09:CF:D2:4C:7D:5C:BC:BE:B6:9C Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 21A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DD2 Signing time: Mon 08 Sep 2025 15:28:50 +0000 Manifest this update: Mon 08 Sep 2025 15:28:50 +0000 Manifest next update: Mon 15 Sep 2025 15:28:50 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: T5LmZRibnJbhXvFBsKge/Brg0eNHRMzhyCb3cfurTTE=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8615 (0x21a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Sep 8 15:28:50 2025 GMT Not After : Sep 15 15:28:50 2025 GMT Subject: CN=68bef632-a39e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1b:e2:7a:29:6b:fc:50:55:d0:04:58:17:9b: 19:cf:d5:ba:8a:bc:ba:9b:9d:44:3d:51:d3:5f:11: cb:b9:64:a4:72:9b:36:e6:e1:bf:7f:a7:b3:7e:d5: 4c:21:1a:1d:9e:37:21:99:28:41:ab:da:d9:c7:1c: a6:f1:6d:3c:92:54:db:cf:53:1b:b8:56:12:3a:fe: 36:33:79:6d:af:6d:28:46:1b:84:50:82:33:89:fe: b6:e3:33:8a:1d:7e:61:fe:03:04:97:21:d8:1d:35: bb:4a:c9:55:15:72:bb:17:6d:3f:20:b4:81:6d:a5: c4:fe:3d:fa:e5:13:91:5d:0f:6a:3f:c1:70:c4:20: 26:73:7a:cc:93:c2:dc:67:57:be:61:82:21:bc:9c: 3d:ff:e3:98:36:45:ee:d7:2c:c0:f2:ec:3a:ca:f2: fa:f2:81:b5:13:8d:13:e9:72:c6:d5:2b:0e:e0:ef: 77:d5:ac:2a:a5:e8:9b:2d:4d:12:e4:cd:52:23:6f: ca:03:4e:5b:ab:b0:9f:cf:39:6e:20:f3:36:af:2e: 64:be:69:72:d8:3f:55:d4:94:b1:8b:ac:8d:a5:53: 8b:4e:fd:0d:7a:d1:e8:0c:52:a6:e3:8c:31:92:a0: 7f:5c:38:72:a7:1e:f5:5b:10:c9:d8:60:25:19:23: 48:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C7:4E:20:89:AC:D2:74:68:86:09:CF:D2:4C:7D:5C:BC:BE:B6:9C X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:cd:89:24:b3:25:55:af:16:33:92:1a:d9:f0:eb:e8:02:ec: fb:11:b1:7f:be:84:16:61:21:b0:97:f7:b1:b5:1d:e8:d4:f8: d5:dc:4d:6e:70:75:91:8c:ae:10:a9:d8:a7:54:ea:f2:a4:a0: 4f:70:25:8f:dc:8f:d3:ae:cf:88:40:2f:3d:c7:08:78:cd:f7: 3e:76:2e:64:b3:53:2c:d5:0f:48:f5:a5:a9:52:c5:10:f6:51: 97:89:4e:b6:ad:a6:62:c6:05:7e:ab:79:bd:43:8a:a7:92:ca: 87:27:21:01:db:f8:c8:fa:e3:c1:81:0d:55:78:6d:a5:fb:a9: de:73:ce:ee:a3:79:07:09:eb:e6:cb:69:74:af:b1:ab:54:32: d2:63:8a:57:ff:86:b7:9f:4e:9c:09:cb:00:95:a7:06:57:8f: 63:85:7e:63:eb:e7:ca:38:1a:01:2f:07:4a:01:4a:c1:bb:d7: 5e:3c:6a:a1:9c:d5:7c:63:d3:e9:67:ca:c4:dc:9e:89:0b:f2: 77:db:4a:91:16:fe:fe:5e:ce:7f:f9:ce:ce:78:a7:72:05:d7: 3e:52:6e:19:10:fa:48:9a:ab:25:25:39:dd:91:e1:cd:21:11: 98:41:2e:c6:8e:86:1f:b5:c9:66:32:9a:19:8d:18:b1:1a:17: 83:c9:f7:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwOTA4MTUyODUwWhcNMjUwOTE1MTUyODUwWjAYMRYwFAYD VQQDEw02OGJlZjYzMi1hMzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxvieilr/FBV0ARYF5sZz9W6iry6m51EPVHTXxHLuWSkcps25uG/f6ezftVM IRodnjchmShBq9rZxxym8W08klTbz1MbuFYSOv42M3ltr20oRhuEUIIzif624zOK HX5h/gMElyHYHTW7SslVFXK7F20/ILSBbaXE/j365RORXQ9qP8FwxCAmc3rMk8Lc Z1e+YYIhvJw9/+OYNkXu1yzA8uw6yvL68oG1E40T6XLG1SsO4O931awqpeibLU0S 5M1SI2/KA05bq7CfzzluIPM2ry5kvmly2D9V1JSxi6yNpVOLTv0NetHoDFKm44wx kqB/XDhypx71WxDJ2GAlGSNIwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnHTiCJ rNJ0aIYJz9JMfVy8vracMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlzYkksyVVrxYzkhrZ8OvoAuz7EbF/voQWYSGwl/extR3o1PjV3E1u cHWRjK4QqdinVOrypKBPcCWP3I/Trs+IQC89xwh4zfc+di5ks1Ms1Q9I9aWpUsUQ 9lGXiU62raZixgV+q3m9Q4qnksqHJyEB2/jI+uPBgQ1VeG2l+6nec87uo3kHCevm y2l0r7GrVDLSY4pX/4a3n06cCcsAlacGV49jhX5j6+fKOBoBLwdKAUrBu9dePGqh nNV8Y9PpZ8rE3J6JC/J320qRFv7+Xs5/+c7OeKdyBdc+Um4ZEPpImqslJTndkeHN IRGYQS7GjoYftclmMpoZjRixGheDyfeJ -----END CERTIFICATE-----Generated at Tue Sep 9 23:14:52 2025 by rpki-client