$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: oYPSMolaYyBLXn9TMd+rAmmQqJkoERIJvLus4aw7tX0= Subject key identifier: 4C:99:2B:E4:4C:CB:40:4A:EA:0E:EC:86:98:A1:75:12:EA:53:03:98 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 219E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2DC9 Signing time: Fri 22 Aug 2025 15:33:23 +0000 Manifest this update: Fri 22 Aug 2025 15:33:23 +0000 Manifest next update: Fri 29 Aug 2025 15:33:23 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: OhTw6sW8s7Gt2zzsR5Yg5ZPQ1b1QXa8D303w9FT+u5M=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8606 (0x219e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Aug 22 15:33:23 2025 GMT Not After : Aug 29 15:33:23 2025 GMT Subject: CN=68a88dc3-5769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:50:25:81:51:fb:01:75:4c:51:50:42:08:fa: 36:f0:63:f0:12:6f:e8:f8:8b:00:ca:5d:98:c3:b1: 14:b1:10:cc:65:45:99:cb:e4:57:bf:0a:2a:17:29: 24:8c:7e:ad:1b:bf:bc:b8:fb:2e:50:68:95:e5:28: 3f:77:ae:5e:24:db:17:3c:9d:67:bd:6d:bc:49:f1: 13:ca:a4:4c:f9:71:a1:87:c2:53:ea:97:ee:14:83: 86:fb:f0:c8:55:42:e6:14:6f:cb:03:65:ac:c3:0a: f9:0c:7e:d0:7b:71:c7:d3:87:da:80:94:e3:a7:72: 77:54:40:e6:6c:8b:ce:6d:a8:47:5b:92:8f:98:68: ff:08:67:21:8d:47:97:0c:dd:8b:f1:0f:91:b6:58: d3:89:a5:fb:6b:71:8a:9e:bc:96:2c:fe:4f:70:db: d6:18:fb:fb:19:ae:48:1a:b0:45:ab:db:54:d7:ea: 88:f3:9a:ac:ab:0a:28:1a:ff:32:c8:25:db:97:af: ae:78:ed:d3:c4:9a:02:2f:a8:15:dd:ea:f9:ce:fe: 95:36:4e:6d:ff:60:92:cd:99:ab:15:d4:ee:49:dc: f4:99:14:d9:6c:0b:56:f7:e2:e4:ec:9f:d8:6c:98: 5e:57:01:5b:58:7f:9b:5d:e0:1b:58:7f:3a:f7:65: f1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:99:2B:E4:4C:CB:40:4A:EA:0E:EC:86:98:A1:75:12:EA:53:03:98 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:2d:70:91:85:3e:5f:b5:a8:a4:b7:50:ca:5e:ce:23:fe:9e: d7:05:2b:21:a3:07:22:1e:91:86:1e:f1:e1:55:78:b7:c6:0a: c0:95:83:84:88:e9:9f:fb:08:07:cd:21:20:3e:b4:4b:f6:ea: 76:4d:36:1b:6c:7e:e7:d0:0c:57:5b:08:00:db:9c:61:cf:bf: 05:bc:42:2b:ea:90:96:5a:87:c0:64:72:fe:c9:10:e0:b3:77: 49:86:53:67:58:a3:48:70:3e:0a:5f:da:7d:a7:fc:ca:6d:63: 93:f8:5a:24:40:6f:51:cb:5a:39:8d:e2:73:68:81:82:ca:69: e7:d8:33:ab:d1:2b:23:d6:e1:bb:81:3d:d2:0c:0b:1b:82:bc: ed:56:c6:19:4f:9e:05:55:c1:ea:3b:b4:a1:18:e4:a2:ba:8a: 84:07:8e:51:49:56:d6:b2:49:25:0c:1a:b0:37:28:20:fd:5f: 28:34:51:27:d7:fd:df:46:34:cd:39:f6:da:e0:68:93:c7:66: 76:d3:c0:45:78:11:8b:31:72:a9:91:ce:59:6c:d8:73:48:61: 55:01:ec:8c:eb:64:f3:ab:65:65:cb:4c:f6:da:12:9b:b0:45: 06:5c:eb:58:ec:7d:17:a4:e6:17:68:a7:19:c3:fd:3c:bc:57: 8f:80:d0:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwODIyMTUzMzIzWhcNMjUwODI5MTUzMzIzWjAYMRYwFAYD VQQDEw02OGE4OGRjMy01NzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVAlgVH7AXVMUVBCCPo28GPwEm/o+IsAyl2Yw7EUsRDMZUWZy+RXvwoqFykk jH6tG7+8uPsuUGiV5Sg/d65eJNsXPJ1nvW28SfETyqRM+XGhh8JT6pfuFIOG+/DI VULmFG/LA2Wswwr5DH7Qe3HH04fagJTjp3J3VEDmbIvObahHW5KPmGj/CGchjUeX DN2L8Q+RtljTiaX7a3GKnryWLP5PcNvWGPv7Ga5IGrBFq9tU1+qI85qsqwooGv8y yCXbl6+ueO3TxJoCL6gV3er5zv6VNk5t/2CSzZmrFdTuSdz0mRTZbAtW9+Lk7J/Y bJheVwFbWH+bXeAbWH8692XxLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyZK+RM y0BK6g7shpihdRLqUwOYMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYLXCRhT5ftaikt1DKXs4j/p7XBSshowciHpGGHvHhVXi3xgrAlYOE iOmf+wgHzSEgPrRL9up2TTYbbH7n0AxXWwgA25xhz78FvEIr6pCWWofAZHL+yRDg s3dJhlNnWKNIcD4KX9p9p/zKbWOT+FokQG9Ry1o5jeJzaIGCymnn2DOr0Ssj1uG7 gT3SDAsbgrztVsYZT54FVcHqO7ShGOSiuoqEB45RSVbWskklDBqwNygg/V8oNFEn 1/3fRjTNOfba4GiTx2Z208BFeBGLMXKpkc5ZbNhzSGFVAeyM62Tzq2Vly0z22hKb sEUGXOtY7H0XpOYXaKcZw/08vFePgNDt -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:54 2025 by rpki-client