$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: oofJmmGEsxJ7s1gx+wkI9N0+VchibO+rdQAlC0JtKqA= Subject key identifier: AF:0F:77:93:AC:BD:98:41:FD:A3:DF:6F:BF:C8:25:E6:BC:36:F6:A8 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 221D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2E43 Signing time: Tue 31 Mar 2026 02:07:18 +0000 Manifest this update: Tue 31 Mar 2026 02:07:17 +0000 Manifest next update: Tue 07 Apr 2026 02:07:17 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: q2oIj0vmO4yRLmRITvVPrxwjBtY1lSjv0vGAqbdfaYk=) 2: 44A88C482CA611F1A847C919C5833773.roa (hash: XIvcZhXRx87BSwov/Ulx76fwgEzGaA5I0TxUrYuAlrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8733 (0x221d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Mar 31 02:07:17 2026 GMT Not After : Apr 7 02:07:17 2026 GMT Subject: CN=69cb2c56-b972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:d0:19:61:88:14:ec:c1:f7:f2:0f:b4:6d: 55:56:1d:6b:30:f9:c2:cf:ed:8c:1e:3a:9c:65:43: d1:43:68:5a:8a:33:a8:b1:9f:a1:ff:54:77:d7:69: ef:73:54:0d:1e:50:24:c0:a1:53:b4:36:0e:2c:79: 17:ca:e3:05:86:d0:d1:dd:a6:19:8e:11:7b:db:52: 90:9e:6e:5e:78:1f:92:a1:07:d4:72:2d:b8:c8:0a: 2c:63:de:75:53:df:ea:ff:7f:c1:bb:1d:31:ff:69: d5:9c:08:f7:ea:09:b4:47:fd:e5:56:73:a4:9f:e8: 73:53:97:14:57:c9:a6:d6:61:3d:e6:24:8e:13:e2: 5b:20:0d:d9:93:66:b7:9d:7d:36:01:49:71:4a:93: 34:a8:cb:9c:f5:aa:7d:9f:e0:16:94:1b:e6:b0:a2: 35:b5:e7:19:55:f2:28:f4:ef:f0:98:18:9a:39:01: 4f:b2:f9:e6:36:2d:2e:a1:58:14:ba:36:3d:08:1e: 9a:34:96:ca:fb:ab:b1:30:70:3b:37:27:88:6c:82: fe:31:70:26:95:a1:07:25:8b:81:e9:37:42:05:5a: 07:c8:c6:48:16:7c:95:6c:76:5b:73:9e:27:c5:ed: b0:5c:73:41:bc:ae:d5:83:a5:98:95:47:5f:9d:74: d9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0F:77:93:AC:BD:98:41:FD:A3:DF:6F:BF:C8:25:E6:BC:36:F6:A8 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:8c:06:41:30:72:f8:31:14:61:27:95:b8:57:1b:f9:48:76: 69:72:86:b2:95:49:55:13:90:b2:20:33:a5:97:7b:1b:3d:ce: 81:56:3f:03:cb:39:61:13:5b:5a:3e:7b:90:99:13:62:48:79: ad:b4:b6:65:a5:94:d5:ed:91:53:f5:b4:a2:3d:87:20:51:9a: 8b:f5:8a:ef:d5:79:84:64:61:81:aa:8d:27:41:3b:67:7f:2d: 71:02:fe:93:b5:dc:6e:a2:e6:3f:76:51:14:e5:09:31:5e:e2: eb:b1:6e:9c:46:35:52:88:a3:06:af:41:04:8d:92:c6:9f:0d: da:0e:00:54:de:a1:b5:2d:bc:cd:e6:32:e0:e3:1f:78:06:9f: 26:e7:39:fc:80:1e:1f:35:a4:0b:21:82:42:b8:fa:06:49:8f: ac:59:4c:ae:d8:29:8d:c4:25:e4:1b:2c:4a:78:e4:7f:74:0b: c4:35:31:a8:cb:ae:e1:f9:f1:cc:7d:69:f6:33:d4:f4:b2:01: 83:84:8d:b0:39:45:5b:e4:38:18:59:cc:46:6d:e3:1f:a3:9b: 24:1a:7b:70:95:f6:f0:06:cf:c7:03:90:3e:8f:8f:bb:ee:a1: d6:2b:0f:65:80:4e:98:ee:20:3e:c9:74:11:4b:38:4a:94:c8: 05:01:b8:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjYwMzMxMDIwNzE3WhcNMjYwNDA3MDIwNzE3WjAYMRYwFAYD VQQDEw02OWNiMmM1Ni1iOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsfQGWGIFOzB9/IPtG1VVh1rMPnCz+2MHjqcZUPRQ2haijOosZ+h/1R312nv c1QNHlAkwKFTtDYOLHkXyuMFhtDR3aYZjhF721KQnm5eeB+SoQfUci24yAosY951 U9/q/3/Bux0x/2nVnAj36gm0R/3lVnOkn+hzU5cUV8mm1mE95iSOE+JbIA3Zk2a3 nX02AUlxSpM0qMuc9ap9n+AWlBvmsKI1tecZVfIo9O/wmBiaOQFPsvnmNi0uoVgU ujY9CB6aNJbK+6uxMHA7NyeIbIL+MXAmlaEHJYuB6TdCBVoHyMZIFnyVbHZbc54n xe2wXHNBvK7Vg6WYlUdfnXTZvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8Pd5Os vZhB/aPfb7/IJea8NvaoMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr4wGQTBy+DEUYSeVuFcb+Uh2aXKGspVJVROQsiAzpZd7Gz3OgVY/A8s5YRNb Wj57kJkTYkh5rbS2ZaWU1e2RU/W0oj2HIFGai/WK79V5hGRhgaqNJ0E7Z38tcQL+ k7XcbqLmP3ZRFOUJMV7i67FunEY1UoijBq9BBI2Sxp8N2g4AVN6htS28zeYy4OMf eAafJuc5/IAeHzWkCyGCQrj6BkmPrFlMrtgpjcQl5BssSnjkf3QLxDUxqMuu4fnx zH1p9jPU9LIBg4SNsDlFW+Q4GFnMRm3jH6ObJBp7cJX28AbPxwOQPo+Pu+6h1isP ZYBOmO4gPsl0EUs4SpTIBQG4EA== -----END CERTIFICATE-----Generated at Tue Mar 31 15:34:35 2026 by rpki-client