$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: 1c0YTBVQkps59pmgefXI4wg2MTAUrohy+WVNRc7ham0= Subject key identifier: 39:92:8D:A7:58:A5:18:A9:1E:00:93:1D:10:0A:DC:07:D2:60:AB:B6 Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02FA Signing time: Sun 19 Oct 2025 03:17:58 +0000 Manifest this update: Sun 19 Oct 2025 03:17:58 +0000 Manifest next update: Sun 26 Oct 2025 03:17:58 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: gok6oFWgHeKv3/1UsqfOoSYSKgJBYqNUcPyi1OAVoCo=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: 2Z67uVkO5VIvy8cXyYQOgy3wzQGOrhac1hYccMZ9uzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Oct 19 03:17:58 2025 GMT Not After : Oct 26 03:17:58 2025 GMT Subject: CN=68f45866-9269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:89:77:d8:87:aa:26:95:de:67:a2:cf:7d:58: 05:a4:62:8d:43:cf:6b:1f:10:4a:15:f9:85:60:6b: c2:78:de:13:b3:9b:87:b8:0b:73:9a:48:d1:40:c3: 2c:fb:f5:a1:d3:12:5d:d2:7f:b0:e9:20:37:92:ae: 5c:94:af:2d:b2:64:27:4d:01:8e:bd:82:83:1b:fe: d7:3a:4f:3d:a4:6a:89:cc:92:30:05:66:8f:ae:23: 98:37:aa:dd:c2:40:93:42:ec:50:8c:53:45:37:13: 8e:96:fc:2b:9e:8e:54:28:8a:89:03:91:16:ac:c2: d0:bd:14:74:d5:b3:5f:7d:f4:90:ae:a6:44:05:e0: e2:e4:82:b7:5f:ac:b1:e5:4c:d6:8d:67:59:a9:d2: 52:b3:f5:51:51:78:aa:a9:91:99:fb:e3:01:a8:cb: 4c:09:72:14:4a:24:66:02:7e:6e:cc:cd:ca:12:6a: 55:0c:7d:d7:2b:1b:9d:13:a1:f7:42:58:b4:22:a5: 35:60:22:95:6a:0e:34:e3:1f:b1:14:67:db:11:7e: da:cd:5f:c2:79:97:df:ba:14:85:ed:19:25:e7:23: e5:bf:f4:6a:54:9d:1b:96:e0:52:22:34:44:17:2a: 51:7b:24:04:b8:10:05:53:00:76:f8:cb:6c:4b:3d: f0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:92:8D:A7:58:A5:18:A9:1E:00:93:1D:10:0A:DC:07:D2:60:AB:B6 X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ef:de:d4:66:9b:fe:db:9f:09:8e:d0:a4:6c:0c:1b:cf:78: fd:c7:ca:6f:bc:f4:e8:cc:28:70:f4:2c:d9:4a:d0:5d:f9:6d: cf:5d:82:98:f4:65:1e:fe:66:88:95:03:0e:86:cd:bf:8a:f0: 6c:a4:e3:fb:79:48:3f:90:44:f3:ed:0e:9e:81:e8:b6:31:56: a4:62:11:34:b2:dd:59:26:b7:f7:59:0c:6a:e1:c1:a3:10:56: 77:22:bc:a7:f6:08:19:54:32:bb:6f:7b:ea:af:23:27:b3:25: f6:15:bd:7d:cd:96:f7:d6:41:b8:07:3a:e5:97:80:48:6e:59: 10:28:52:86:be:8e:ce:51:31:a4:4e:4c:30:91:6c:b3:56:40: bf:4b:89:b5:28:14:78:7d:1d:87:cd:39:ff:52:18:98:af:67: 0b:5d:b0:90:37:ff:8a:2d:dc:10:0b:95:74:5e:7c:9f:32:00: 10:20:cb:a3:58:49:a6:47:73:68:45:a8:eb:0a:4b:97:a7:44: ed:1e:03:1a:5e:80:c6:3e:1e:48:43:9f:ad:fb:86:ea:a7:8a: 81:ef:14:84:51:3f:4c:30:15:72:ba:03:33:4f:c2:a8:0d:bd: 7c:61:1f:21:fc:0f:9b:fb:c7:0a:7d:6e:33:4a:14:d6:de:20: 48:91:ba:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUxMDE5MDMxNzU4WhcNMjUxMDI2MDMxNzU4WjAYMRYwFAYD VQQDEw02OGY0NTg2Ni05MjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYl32IeqJpXeZ6LPfVgFpGKNQ89rHxBKFfmFYGvCeN4Ts5uHuAtzmkjRQMMs +/Wh0xJd0n+w6SA3kq5clK8tsmQnTQGOvYKDG/7XOk89pGqJzJIwBWaPriOYN6rd wkCTQuxQjFNFNxOOlvwrno5UKIqJA5EWrMLQvRR01bNfffSQrqZEBeDi5IK3X6yx 5UzWjWdZqdJSs/VRUXiqqZGZ++MBqMtMCXIUSiRmAn5uzM3KEmpVDH3XKxudE6H3 Qli0IqU1YCKVag404x+xFGfbEX7azV/CeZffuhSF7Rkl5yPlv/RqVJ0bluBSIjRE FypReyQEuBAFUwB2+MtsSz3wmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmSjadY pRipHgCTHRAK3AfSYKu2MB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4797UZpv+258JjtCkbAwbz3j9x8pvvPTozChw9CzZStBd+W3PXYKY 9GUe/maIlQMOhs2/ivBspOP7eUg/kETz7Q6egei2MVakYhE0st1ZJrf3WQxq4cGj EFZ3Iryn9ggZVDK7b3vqryMnsyX2Fb19zZb31kG4Bzrll4BIblkQKFKGvo7OUTGk TkwwkWyzVkC/S4m1KBR4fR2HzTn/UhiYr2cLXbCQN/+KLdwQC5V0XnyfMgAQIMuj WEmmR3NoRajrCkuXp0TtHgMaXoDGPh5IQ5+t+4bqp4qB7xSEUT9MMBVyugMzT8Ko Db18YR8h/A+b+8cKfW4zShTW3iBIkbpH -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:47 2025 by rpki-client