$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: VvRRl10JbtsnCj1Pc/xjC6nUD3xknXKxCDuqCi4uOJc= Subject key identifier: 83:EB:69:7E:B8:83:8E:2B:68:58:C4:A6:90:61:19:A7:BC:B2:80:C3 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2D95 Signing time: Fri 16 May 2025 15:42:16 +0000 Manifest this update: Fri 16 May 2025 15:42:16 +0000 Manifest next update: Fri 23 May 2025 15:42:16 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: lIfhFHYk8jFALdbOvPq5J0Idqp4zQnu0ltkO4P+5Z7o=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8553 (0x2169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: May 16 15:42:16 2025 GMT Not After : May 23 15:42:16 2025 GMT Subject: CN=68275cd8-ff88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c7:9b:1b:32:7f:d3:db:99:0e:30:23:d3:87: 6a:77:91:c0:f1:01:3c:23:f3:89:86:bb:d5:81:82: b0:1c:ba:48:89:28:8e:6f:f2:2d:3f:66:b6:b7:2d: 5d:26:be:99:07:2e:89:ff:f4:7a:c1:b6:8f:43:9c: 62:75:0d:fc:5b:82:12:84:ca:56:63:19:ae:b6:e2: cd:f1:f3:03:21:6d:1a:96:1f:0d:33:56:ef:88:f5: cd:d3:b0:34:8a:f6:2e:d7:c8:ec:ab:92:d2:0d:2e: 08:73:ed:18:fb:1e:b8:5a:b8:33:9e:19:3a:a2:3c: 59:8c:50:1e:3c:46:89:b5:a0:82:69:73:cb:3e:4a: 00:d8:65:2d:68:58:b8:b2:b6:58:5c:08:9e:be:9b: 1a:c8:76:20:6f:14:08:c3:7d:6f:50:b1:50:e1:8c: a6:25:b2:a7:e7:ba:8f:81:e3:5b:35:bf:b7:ee:6d: e7:38:16:14:05:92:48:04:0c:53:46:94:92:eb:49: 86:64:1f:9a:ee:39:a5:16:7b:85:17:57:90:4c:03: 6c:e5:d4:97:d0:54:12:04:d3:6f:15:05:83:d4:bc: 45:7d:8f:0e:c9:00:95:71:b3:c8:fe:ba:2e:fb:46: 9a:df:97:77:32:75:e4:df:a4:8f:71:1c:09:db:df: 7f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:EB:69:7E:B8:83:8E:2B:68:58:C4:A6:90:61:19:A7:BC:B2:80:C3 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:cd:89:b2:c9:f3:6d:e2:65:55:85:cd:5a:e9:44:9c:30:d3: a7:50:07:19:cb:27:df:94:2a:cc:55:9a:26:f1:22:a7:a8:ea: 2c:ee:0d:4b:b0:46:55:1d:e3:fe:48:79:0b:50:78:b7:a3:7e: 6b:e0:37:d2:a6:da:82:7b:69:eb:11:49:5c:c8:7c:4a:a0:92: d6:79:ab:37:27:0a:7c:d8:02:19:6e:b9:f1:5d:05:e1:62:0f: c8:2b:38:95:cd:05:f4:42:e9:df:7f:0b:73:bb:1f:b5:5b:cb: 77:42:2e:1a:d1:3f:61:6e:32:57:2b:14:76:87:a6:40:47:6a: c6:90:20:29:00:1c:f5:a9:f3:d1:48:10:74:69:f7:24:d7:cb: c7:9b:93:b7:59:7d:2b:3f:d4:60:99:17:87:54:37:93:b8:a9: 44:12:4a:36:56:93:ca:65:7b:d8:3d:e0:6c:27:12:09:93:55: 66:f7:ca:43:25:37:b4:30:ff:4b:31:46:33:66:41:e3:02:14: 90:71:35:0d:0a:88:aa:b4:cb:6f:87:19:4d:ee:16:c7:da:e3: c1:1e:66:c1:37:0c:59:71:f8:e4:25:bf:d9:78:7b:94:b3:a0: 7b:31:99:11:e3:45:df:83:b3:43:11:75:ec:99:6d:9f:c7:d0: 76:a2:b7:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNTE2MTU0MjE2WhcNMjUwNTIzMTU0MjE2WjAYMRYwFAYD VQQDEw02ODI3NWNkOC1mZjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMebGzJ/09uZDjAj04dqd5HA8QE8I/OJhrvVgYKwHLpIiSiOb/ItP2a2ty1d Jr6ZBy6J//R6wbaPQ5xidQ38W4IShMpWYxmutuLN8fMDIW0alh8NM1bviPXN07A0 ivYu18jsq5LSDS4Ic+0Y+x64Wrgznhk6ojxZjFAePEaJtaCCaXPLPkoA2GUtaFi4 srZYXAievpsayHYgbxQIw31vULFQ4YymJbKn57qPgeNbNb+37m3nOBYUBZJIBAxT RpSS60mGZB+a7jmlFnuFF1eQTANs5dSX0FQSBNNvFQWD1LxFfY8OyQCVcbPI/rou +0aa35d3MnXk36SPcRwJ299/VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPraX64 g44raFjEppBhGae8soDDMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNzYmyyfNt4mVVhc1a6UScMNOnUAcZyyfflCrMVZom8SKnqOos7g1L sEZVHeP+SHkLUHi3o35r4DfSptqCe2nrEUlcyHxKoJLWeas3Jwp82AIZbrnxXQXh Yg/IKziVzQX0Qunffwtzux+1W8t3Qi4a0T9hbjJXKxR2h6ZAR2rGkCApABz1qfPR SBB0afck18vHm5O3WX0rP9RgmReHVDeTuKlEEko2VpPKZXvYPeBsJxIJk1Vm98pD JTe0MP9LMUYzZkHjAhSQcTUNCoiqtMtvhxlN7hbH2uPBHmbBNwxZcfjkJb/ZeHuU s6B7MZkR40Xfg7NDEXXsmW2fx9B2orf8 -----END CERTIFICATE-----Generated at Sat May 17 01:11:40 2025 by rpki-client