$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: Yy0ia1hZG4dAHVQqXCOmsoavtaUSxRtwwrQgVVhf05c= Subject key identifier: B6:8A:0D:DD:39:13:1E:0C:9D:93:77:FC:C5:CF:E8:9C:70:7D:E0:DC Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2D9D Signing time: Sat 31 May 2025 15:29:31 +0000 Manifest this update: Sat 31 May 2025 15:29:31 +0000 Manifest next update: Sat 07 Jun 2025 15:29:31 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: /zs66iTqe3R/lRSCk+yIVUtxJZZalWjYA+KPzfocC/E=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8561 (0x2171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: May 31 15:29:31 2025 GMT Not After : Jun 7 15:29:31 2025 GMT Subject: CN=683b205b-f019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:71:55:3b:b4:88:bc:31:32:0c:88:85:31:b0: 77:bb:55:4d:40:40:14:83:bf:d4:ac:81:a6:97:6a: 37:61:93:0b:1d:aa:72:fd:91:fb:31:6b:f6:fc:86: e0:64:95:1f:df:32:36:73:2a:4c:f9:90:1b:c8:55: 66:d9:3a:44:52:d0:c3:f2:f6:b3:a6:3a:1d:32:77: f7:41:55:d0:fe:99:d3:37:90:a0:b3:e5:e8:3f:67: 52:8d:69:b0:b0:2d:91:3d:8a:77:a6:32:77:ef:95: ac:4b:67:d0:4b:26:5c:14:26:98:6b:c8:a4:87:27: 5c:e4:8c:26:ad:fe:4e:54:3f:f6:14:da:98:75:ef: 64:85:bf:26:54:9b:e0:d8:b8:f2:23:a7:04:3c:b4: 3e:6a:91:fc:27:5b:9f:f4:42:28:68:6b:42:dc:b1: 80:c8:ba:f3:51:2f:38:5c:30:40:c5:4a:5d:04:00: 0c:59:36:df:f8:59:53:9a:d1:97:48:a5:03:83:35: b3:bf:3e:cd:41:84:87:17:94:2f:af:53:5a:40:75: fe:9e:c2:82:25:4a:aa:a3:95:d0:a2:ec:81:c2:ab: f3:7c:ff:6a:09:9c:6a:f7:5b:7f:65:10:d1:a8:c4: 1c:21:e9:64:b4:53:52:76:5c:de:a2:2f:d7:70:b1: 5c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8A:0D:DD:39:13:1E:0C:9D:93:77:FC:C5:CF:E8:9C:70:7D:E0:DC X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:87:8a:44:fc:19:e4:dd:98:60:bd:cb:30:24:b8:ff:a7:1b: 01:23:5a:23:41:02:67:d2:8a:dd:1f:ef:59:ee:70:5c:82:05: 1f:d9:f1:d5:af:7f:f3:c4:7d:83:cb:df:81:01:52:9b:1e:d5: 0d:ca:d2:36:88:00:4f:c5:05:bc:54:e7:91:7a:51:57:5c:e6: 3a:69:58:b9:63:49:8e:85:0d:82:bd:a9:31:6f:81:80:57:d4: f7:92:ec:21:92:15:ce:84:f1:5f:cb:35:e1:7e:5c:16:17:3b: e1:9f:08:62:b1:3f:8f:af:7e:07:92:0a:44:9e:41:5d:5f:b3: 31:d3:85:a1:13:e6:f6:6e:b3:5e:3e:d2:2f:73:b1:bf:d9:4b: 7e:97:21:fe:f8:7a:9e:64:1c:95:73:98:f8:5f:cc:46:8e:07: 69:d4:bc:f3:96:f9:b5:fb:52:6d:c8:9f:e2:fc:4b:da:d9:a4: a0:0e:91:62:29:75:a7:ce:21:5a:6f:55:c3:db:7b:cf:b4:65: 98:4a:9f:46:82:a0:50:7e:c4:8c:e8:8c:1d:ca:a8:1c:8e:3e: 8e:c5:f3:e0:f2:87:6e:0f:9c:73:a7:08:f9:f8:25:cd:c6:58: 1b:68:33:6b:d4:2f:da:3a:af:81:c5:17:fa:0a:73:2b:8c:98: 33:5d:9c:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNTMxMTUyOTMxWhcNMjUwNjA3MTUyOTMxWjAYMRYwFAYD VQQDEw02ODNiMjA1Yi1mMDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXFVO7SIvDEyDIiFMbB3u1VNQEAUg7/UrIGml2o3YZMLHapy/ZH7MWv2/Ibg ZJUf3zI2cypM+ZAbyFVm2TpEUtDD8vazpjodMnf3QVXQ/pnTN5Cgs+XoP2dSjWmw sC2RPYp3pjJ375WsS2fQSyZcFCaYa8ikhydc5Iwmrf5OVD/2FNqYde9khb8mVJvg 2LjyI6cEPLQ+apH8J1uf9EIoaGtC3LGAyLrzUS84XDBAxUpdBAAMWTbf+FlTmtGX SKUDgzWzvz7NQYSHF5Qvr1NaQHX+nsKCJUqqo5XQouyBwqvzfP9qCZxq91t/ZRDR qMQcIelktFNSdlzeoi/XcLFciwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaKDd05 Ex4MnZN3/MXP6JxwfeDcMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJh4pE/Bnk3ZhgvcswJLj/pxsBI1ojQQJn0ordH+9Z7nBcggUf2fHV r3/zxH2Dy9+BAVKbHtUNytI2iABPxQW8VOeRelFXXOY6aVi5Y0mOhQ2Cvakxb4GA V9T3kuwhkhXOhPFfyzXhflwWFzvhnwhisT+Pr34HkgpEnkFdX7Mx04WhE+b2brNe PtIvc7G/2Ut+lyH++HqeZByVc5j4X8xGjgdp1Lzzlvm1+1JtyJ/i/Eva2aSgDpFi KXWnziFab1XD23vPtGWYSp9GgqBQfsSM6Iwdyqgcjj6OxfPg8oduD5xzpwj5+CXN xlgbaDNr1C/aOq+BxRf6CnMrjJgzXZzL -----END CERTIFICATE-----Generated at Sat May 31 17:51:32 2025 by rpki-client