$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: MoC5Ej98BS13MQBRPvcPojTOjjFg/EraT9vfHQslu90= Subject key identifier: 7E:2E:DB:AC:F3:A4:31:F9:18:48:76:47:B8:64:E0:8C:E6:80:EE:EB Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2D8C Signing time: Mon 28 Apr 2025 15:36:02 +0000 Manifest this update: Mon 28 Apr 2025 15:36:01 +0000 Manifest next update: Mon 05 May 2025 15:36:01 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: Y7B5ABVnNdvAgJnjHBJRdcThlwaGp5yDKXvjVQYZTRI=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8544 (0x2160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Apr 28 15:36:01 2025 GMT Not After : May 5 15:36:01 2025 GMT Subject: CN=680fa061-8f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:86:f8:51:f1:76:8a:cd:9c:bb:40:f1:d4:e4: 16:ab:0b:66:76:1e:d8:2c:29:4d:91:1a:d0:a2:a7: 9b:fd:a8:bb:df:5b:07:9f:79:96:5c:b5:c5:34:d4: 66:3e:b5:7b:f1:00:1e:20:c9:56:95:10:bd:ac:22: 68:62:96:d8:8e:89:93:c1:a6:86:05:f0:d4:e9:ee: 08:f6:03:97:ce:b1:e7:3e:24:0f:cc:ce:e2:86:c0: eb:9d:46:ba:ac:55:56:99:54:30:46:31:19:5a:53: 13:8f:b3:e9:42:d2:32:ba:a2:d3:29:bf:69:03:da: 39:29:37:b1:c8:2c:4e:3e:16:45:a2:2a:0a:da:8f: 5c:43:5e:00:c8:33:07:70:a2:cf:f8:42:88:54:71: ca:e5:97:28:bc:d8:24:e1:ae:d3:b4:a3:cf:2c:14: a1:5f:9c:5e:ed:1c:6c:02:28:0b:fb:56:6b:ae:e5: b6:b6:07:68:c2:7d:3d:e0:70:71:35:6f:da:61:f3: be:17:da:2a:c4:62:41:aa:b1:1c:b3:17:07:2e:8c: a7:b0:ba:64:f3:f1:b5:20:b8:7f:a0:da:20:6d:12: ff:88:96:07:7d:6f:2d:91:51:24:c7:df:1a:4e:a4: 00:c1:d9:ba:1c:2c:ac:2a:2f:7f:1b:0e:5c:be:39: de:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2E:DB:AC:F3:A4:31:F9:18:48:76:47:B8:64:E0:8C:E6:80:EE:EB X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:21:8c:3d:6f:74:9a:75:40:b8:50:90:c1:49:25:48:55:d8: 72:2b:dc:75:a0:d7:d6:da:31:37:d2:b7:41:17:90:1e:6e:b9: 7f:b3:f2:e7:14:6c:13:06:1f:da:3c:02:5e:98:c8:5d:bd:3b: d8:9e:c4:b9:06:73:21:5c:83:bc:6f:21:1f:17:db:b0:52:68: 5f:f3:73:46:8d:be:32:5d:8c:9d:54:72:69:82:da:24:46:9e: 72:86:b0:1f:6b:f1:a7:8d:74:03:90:00:89:0b:29:da:2d:dc: c2:ff:72:5a:cc:e3:6e:12:c5:f8:51:f2:8a:18:3a:29:e7:9b: db:3d:7e:b4:96:df:31:24:a2:79:ba:7c:ea:b1:39:87:0e:29: 34:2a:0e:17:f9:83:d6:d4:0a:dd:c1:72:1f:2c:e6:95:bf:a9: 3b:c4:50:8b:70:b7:45:ed:f5:66:f0:4d:ab:5f:1d:b6:b4:9e: 73:e8:f8:2f:9d:c9:11:b1:52:12:fa:03:25:bd:a4:9f:a8:47: 37:f1:9c:60:57:f6:32:66:7f:4b:b0:96:e7:c3:30:0d:5e:20: ab:50:c8:bb:b8:b4:f2:83:4c:23:2f:c7:6e:39:45:14:bc:08: b1:56:9f:96:a3:0d:0f:68:b8:38:fc:9e:c6:bb:c4:34:57:a5: 17:0d:fc:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNDI4MTUzNjAxWhcNMjUwNTA1MTUzNjAxWjAYMRYwFAYD VQQDEw02ODBmYTA2MS04ZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ob4UfF2is2cu0Dx1OQWqwtmdh7YLClNkRrQoqeb/ai731sHn3mWXLXFNNRm PrV78QAeIMlWlRC9rCJoYpbYjomTwaaGBfDU6e4I9gOXzrHnPiQPzM7ihsDrnUa6 rFVWmVQwRjEZWlMTj7PpQtIyuqLTKb9pA9o5KTexyCxOPhZFoioK2o9cQ14AyDMH cKLP+EKIVHHK5ZcovNgk4a7TtKPPLBShX5xe7RxsAigL+1ZrruW2tgdown094HBx NW/aYfO+F9oqxGJBqrEcsxcHLoynsLpk8/G1ILh/oNogbRL/iJYHfW8tkVEkx98a TqQAwdm6HCysKi9/Gw5cvjnebQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4u26zz pDH5GEh2R7hk4IzmgO7rMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJIYw9b3SadUC4UJDBSSVIVdhyK9x1oNfW2jE30rdBF5Aebrl/s/Ln FGwTBh/aPAJemMhdvTvYnsS5BnMhXIO8byEfF9uwUmhf83NGjb4yXYydVHJpgtok Rp5yhrAfa/GnjXQDkACJCynaLdzC/3JazONuEsX4UfKKGDop55vbPX60lt8xJKJ5 unzqsTmHDik0Kg4X+YPW1ArdwXIfLOaVv6k7xFCLcLdF7fVm8E2rXx22tJ5z6Pgv nckRsVIS+gMlvaSfqEc38ZxgV/YyZn9LsJbnwzANXiCrUMi7uLTyg0wjL8duOUUU vAixVp+Wow0PaLg4/J7Gu8Q0V6UXDfyE -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:07 2025 by rpki-client on console.sobornost.net