$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: pkvNagRfI2yED1NSj/T9gI8AXf1VzkGLEOyPApFXNew= Subject key identifier: 65:9D:46:B5:EA:83:8A:55:BB:EA:D4:07:86:8A:E3:8E:82:07:83:E5 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DAD Signing time: Wed 02 Jul 2025 15:37:29 +0000 Manifest this update: Wed 02 Jul 2025 15:37:28 +0000 Manifest next update: Wed 09 Jul 2025 15:37:28 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: lQzggR953noa53outGR52DmSYfgIgXgLEpu9oad8V90=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8577 (0x2181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Jul 2 15:37:28 2025 GMT Not After : Jul 9 15:37:28 2025 GMT Subject: CN=68655238-b57b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3f:cb:91:30:d2:e9:35:3e:22:8d:07:9c:a4: fb:1a:9e:ab:4a:3d:3b:35:23:40:21:2e:19:e9:ce: 3f:4c:7d:ae:29:02:d8:da:b7:22:41:0e:cf:b9:0f: 59:07:a1:39:8f:02:90:b5:28:f4:a6:c5:c3:03:30: 6b:ab:44:70:cf:f8:44:03:25:47:c5:7b:9f:7a:ed: 47:15:e8:e2:09:e0:17:41:e2:70:21:c9:a7:d1:8a: 8b:b5:18:f2:7c:7f:32:6f:a1:d5:86:ab:10:c5:e1: 19:0b:37:c4:8a:84:0b:8c:f3:e9:37:aa:3b:62:70: 1a:14:cf:4f:f5:c5:6e:35:67:ec:3e:1d:04:fe:0b: 40:7d:ab:12:cc:60:c0:91:4d:19:94:f8:f0:a5:24: 57:2c:73:4d:59:a5:09:d0:b4:37:67:47:52:65:c2: 97:87:55:ef:37:30:32:4a:90:55:24:5c:62:6e:53: 99:18:20:15:ef:26:1e:5d:35:5d:d5:10:aa:e6:69: 1d:9a:6d:5f:6b:57:fb:71:30:5e:7b:a7:6a:3e:38: 11:9f:98:ed:e2:d8:f0:a9:2f:37:1a:d3:db:09:6a: ba:c7:d3:e3:4c:5e:e4:1c:cb:03:5f:ad:fd:f0:b5: ac:87:ff:bd:b9:b7:60:7b:a8:f0:9a:5a:46:e6:eb: 1d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9D:46:B5:EA:83:8A:55:BB:EA:D4:07:86:8A:E3:8E:82:07:83:E5 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:dd:64:1c:70:48:5d:13:b0:85:c4:ad:6f:43:d0:25:d8:5d: 79:4e:cb:96:6f:88:c0:dc:f2:d9:78:13:97:74:90:36:b5:43: c8:11:71:3b:7b:f1:51:1a:27:a8:cd:0c:bd:8e:70:30:4b:01: f6:ba:c2:c4:63:ec:ca:c4:81:6b:60:ce:ec:3a:64:ce:bd:a0: 44:64:47:2c:7a:d3:44:b9:aa:ce:84:ec:4b:8d:c7:ec:86:5d: 53:2c:8d:a5:57:ce:60:e1:a3:94:e2:5c:20:ff:a9:41:ec:86: ab:ed:f3:bb:f3:81:d9:56:6a:a6:ab:02:97:d0:d0:b3:bf:9a: 27:5e:8f:dc:0e:ee:54:70:17:17:73:9a:0d:7d:03:99:c8:a4: f9:8a:b8:11:21:f8:c2:e8:a5:c5:e3:f1:7c:3c:7a:56:f3:85: 29:3a:6f:0a:00:7b:70:2d:98:57:b5:95:da:87:48:5d:24:9f: 03:d6:ed:ad:cb:5c:c0:de:9c:0a:b5:81:aa:ff:6c:aa:9b:4c: 4c:e3:40:b7:bf:6a:dd:92:f5:2b:36:80:b6:d9:02:2a:fc:3f: b8:b8:52:02:38:b6:1a:a2:fa:36:89:fb:67:18:aa:72:75:6c: 09:00:a9:85:5f:94:18:ae:53:7d:ec:f5:2e:27:d1:d9:12:e8: c9:7f:62:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNzAyMTUzNzI4WhcNMjUwNzA5MTUzNzI4WjAYMRYwFAYD VQQDEw02ODY1NTIzOC1iNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzT/LkTDS6TU+Io0HnKT7Gp6rSj07NSNAIS4Z6c4/TH2uKQLY2rciQQ7PuQ9Z B6E5jwKQtSj0psXDAzBrq0Rwz/hEAyVHxXufeu1HFejiCeAXQeJwIcmn0YqLtRjy fH8yb6HVhqsQxeEZCzfEioQLjPPpN6o7YnAaFM9P9cVuNWfsPh0E/gtAfasSzGDA kU0ZlPjwpSRXLHNNWaUJ0LQ3Z0dSZcKXh1XvNzAySpBVJFxiblOZGCAV7yYeXTVd 1RCq5mkdmm1fa1f7cTBee6dqPjgRn5jt4tjwqS83GtPbCWq6x9PjTF7kHMsDX639 8LWsh/+9ubdge6jwmlpG5usd8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWdRrXq g4pVu+rUB4aK446CB4PlMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm3WQccEhdE7CFxK1vQ9Al2F15TsuWb4jA3PLZeBOXdJA2tUPIEXE7 e/FRGieozQy9jnAwSwH2usLEY+zKxIFrYM7sOmTOvaBEZEcsetNEuarOhOxLjcfs hl1TLI2lV85g4aOU4lwg/6lB7Iar7fO784HZVmqmqwKX0NCzv5onXo/cDu5UcBcX c5oNfQOZyKT5irgRIfjC6KXF4/F8PHpW84UpOm8KAHtwLZhXtZXah0hdJJ8D1u2t y1zA3pwKtYGq/2yqm0xM40C3v2rdkvUrNoC22QIq/D+4uFICOLYaovo2iftnGKpy dWwJAKmFX5QYrlN97PUuJ9HZEujJf2Ip -----END CERTIFICATE-----Generated at Thu Jul 3 18:08:59 2025 by rpki-client