$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: RQXtWcgCfFrLO168xfXrwMc1HZ4tJTbSsmM8Tq7B2gY= Subject key identifier: 4C:A4:07:F6:13:83:76:B0:9C:77:69:E5:44:65:AA:91:73:1B:F6:68 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 21BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DE7 Signing time: Mon 20 Oct 2025 15:38:50 +0000 Manifest this update: Mon 20 Oct 2025 15:38:50 +0000 Manifest next update: Mon 27 Oct 2025 15:38:50 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: AHuuTVP+tNyPD35CGlq1Yf5ENlmC3P0D60kqjefBNzk=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8636 (0x21bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Oct 20 15:38:50 2025 GMT Not After : Oct 27 15:38:50 2025 GMT Subject: CN=68f6578a-d904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:71:1f:ef:20:41:da:62:ad:e4:9f:b0:95: 8b:b5:64:2b:db:ac:60:d8:0b:07:2f:3e:c5:73:1d: 17:f0:4d:86:6b:5d:6e:f7:7f:62:c5:3f:b8:74:fa: 14:83:3d:28:ee:35:5c:b2:a8:89:83:3e:d7:33:40: 84:13:fc:e1:12:d1:c3:a0:93:cc:0d:39:fe:c6:22: e2:32:e4:60:47:8a:23:18:10:cb:bd:1e:aa:aa:55: 89:fb:2e:0b:05:74:c9:dc:c6:3a:31:d5:54:bf:0a: 37:e3:21:c2:d4:84:9b:43:88:c4:6e:eb:98:43:c3: 2f:c4:18:cc:06:88:03:1d:80:e2:64:12:22:ab:86: cd:fe:77:56:77:3f:ff:a2:78:72:5b:a7:92:f0:46: 14:50:0f:6b:35:ac:e0:cd:71:fe:61:5b:ee:b5:d2: 02:6e:06:9d:c4:3b:a0:99:3f:4f:ce:52:fb:12:23: f3:70:9f:5c:34:7a:bf:dc:86:bb:8f:c8:79:31:fe: 2b:e1:ce:7f:36:8b:18:84:29:51:67:86:45:78:1c: 1a:e4:26:ce:04:46:a4:5c:c6:b2:58:e3:a7:3a:44: 03:d7:3e:a6:60:7a:16:78:7b:c0:de:65:34:96:06: 00:b7:18:31:b1:33:c9:4d:0f:30:60:43:15:a9:c2: 79:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A4:07:F6:13:83:76:B0:9C:77:69:E5:44:65:AA:91:73:1B:F6:68 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:63:30:0e:1e:d5:48:0b:80:df:97:c4:05:91:8b:6f:d2:9b: d0:24:5b:07:79:2e:e5:c8:1d:ef:63:09:58:0a:6f:12:30:70: db:31:6c:ea:d1:fb:47:5a:d2:eb:32:72:52:39:62:f4:b0:d3: b9:c9:b2:68:e3:8f:d8:9c:d8:0f:18:1c:a1:4f:5b:09:b2:8d: 1d:ab:dd:93:01:60:20:d5:cf:74:a4:ac:a5:fa:5f:ba:a6:bb: 5f:c2:72:bf:84:fa:b4:2c:57:ab:ed:67:04:00:ad:09:e4:88: 0a:23:d1:b3:43:f1:7c:62:23:0f:3a:05:48:e3:70:5b:7c:19: 90:ac:7a:47:06:1a:22:e7:46:6d:df:49:8f:ad:3c:1b:31:74: 7f:9b:f3:cf:14:e0:13:48:96:d1:15:48:b9:50:48:26:11:55: c5:c0:80:ea:cb:41:82:9f:06:60:dc:7c:25:5c:f8:1c:44:48: e5:11:c3:fc:0c:1e:f9:bb:38:67:ab:6c:0f:72:7c:81:87:e8: e9:58:ce:b0:14:e2:6d:51:ef:f5:07:75:66:fe:21:b9:19:65: 37:1d:f4:ac:19:55:25:9e:a2:2c:81:9f:c2:15:b7:7b:0c:ff: 8d:ea:db:91:b6:30:62:13:7b:f8:8e:79:43:d9:2a:0b:65:74: 98:5c:d3:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUxMDIwMTUzODUwWhcNMjUxMDI3MTUzODUwWjAYMRYwFAYD VQQDEw02OGY2NTc4YS1kOTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZFxH+8gQdpireSfsJWLtWQr26xg2AsHLz7Fcx0X8E2Ga11u939ixT+4dPoU gz0o7jVcsqiJgz7XM0CEE/zhEtHDoJPMDTn+xiLiMuRgR4ojGBDLvR6qqlWJ+y4L BXTJ3MY6MdVUvwo34yHC1ISbQ4jEbuuYQ8MvxBjMBogDHYDiZBIiq4bN/ndWdz// onhyW6eS8EYUUA9rNazgzXH+YVvutdICbgadxDugmT9PzlL7EiPzcJ9cNHq/3Ia7 j8h5Mf4r4c5/NosYhClRZ4ZFeBwa5CbOBEakXMayWOOnOkQD1z6mYHoWeHvA3mU0 lgYAtxgxsTPJTQ8wYEMVqcJ5SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEykB/YT g3awnHdp5URlqpFzG/ZoMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjYzAOHtVIC4Dfl8QFkYtv0pvQJFsHeS7lyB3vYwlYCm8SMHDbMWzq 0ftHWtLrMnJSOWL0sNO5ybJo44/YnNgPGByhT1sJso0dq92TAWAg1c90pKyl+l+6 prtfwnK/hPq0LFer7WcEAK0J5IgKI9GzQ/F8YiMPOgVI43BbfBmQrHpHBhoi50Zt 30mPrTwbMXR/m/PPFOATSJbRFUi5UEgmEVXFwIDqy0GCnwZg3HwlXPgcREjlEcP8 DB75uzhnq2wPcnyBh+jpWM6wFOJtUe/1B3Vm/iG5GWU3HfSsGVUlnqIsgZ/CFbd7 DP+N6tuRtjBiE3v4jnlD2SoLZXSYXNPy -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:30 2025 by rpki-client