$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: RZulSYJ0y7QgfWR9aZAom+RMDnctEzCCzza9bosTugQ= Subject key identifier: 0D:9F:19:11:CE:3B:32:BC:96:12:9A:B9:4E:A8:98:51:1A:3A:A6:4E Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 08FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 08F6 Signing time: Wed 02 Jul 2025 20:37:33 +0000 Manifest this update: Wed 02 Jul 2025 20:37:32 +0000 Manifest next update: Wed 09 Jul 2025 20:37:32 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: AIypbbfssH6A0GRf5+b8ZgxVZkpqxiGP4cvtjfcZif8=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Jul 2 20:37:32 2025 GMT Not After : Jul 9 20:37:32 2025 GMT Subject: CN=6865988c-3316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:85:93:8d:1a:6b:73:08:39:80:00:9f:86:35: 28:a0:e8:fa:3f:ad:66:80:b0:8a:f5:c0:8d:5f:e2: 51:a6:d8:54:54:a8:25:94:b5:d6:e5:40:12:d3:ef: 86:87:cd:90:5f:d6:52:a7:df:cc:0d:37:5b:a4:27: 98:f6:f1:85:f4:68:40:b7:7a:aa:48:48:a6:93:c2: 68:16:4b:97:fd:39:61:0f:9f:f3:06:17:71:2a:9e: b3:c2:96:27:a0:30:f2:8b:b0:b5:69:b7:09:f9:17: 57:d3:02:51:a1:23:4d:67:f5:bf:fe:a8:53:8c:0a: 8c:82:39:0a:4c:b5:6a:a8:a7:8d:84:c7:d7:ad:33: fa:69:40:e3:8b:24:d2:10:d9:80:86:a4:e5:a0:0f: 65:1b:71:d1:8f:b8:b9:2a:d4:f0:9f:1d:89:bc:23: 9c:5c:5e:2b:e1:d5:59:6b:b4:3e:0f:2f:e8:7d:6d: 2d:79:e3:81:18:75:9d:87:23:f2:f8:64:b2:27:2e: f4:60:3f:80:8e:eb:ba:05:47:5a:f2:b5:cd:87:0d: 9f:49:b2:f4:fc:91:68:2a:86:54:1d:1c:dc:f8:ee: 54:87:1e:8d:15:34:a5:8a:1d:ce:c7:4d:f8:e7:a2: 91:5f:f5:8a:e5:f6:28:92:26:42:b8:bb:7a:83:7b: 47:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9F:19:11:CE:3B:32:BC:96:12:9A:B9:4E:A8:98:51:1A:3A:A6:4E X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:48:5a:f6:3e:ff:27:cd:bf:e3:41:a8:8a:22:47:8f:30:e6: 10:a7:56:bf:39:74:33:be:5e:20:f0:bf:2c:c8:12:86:c6:4a: f1:86:a2:6e:0f:65:d5:fc:30:84:ca:4c:73:33:d6:8e:35:b3: 41:7a:e1:6a:a4:65:a0:fd:76:d3:a8:32:12:3d:01:c4:2b:88: 9e:a4:e4:47:db:ce:b4:73:be:db:ae:7b:f2:87:8a:fe:da:9e: da:8a:d6:c8:b6:cb:a2:2e:b9:23:f5:ac:63:12:2c:36:62:7e: 02:05:f1:de:d9:e7:90:f7:da:a9:21:c9:51:32:cb:1d:20:c2: 0c:22:07:ed:c5:c0:7c:a7:cf:44:4e:8b:c0:e2:14:c8:dd:06: 7e:49:b6:92:84:9c:45:a6:0e:89:e0:ac:03:fa:bc:12:15:8f: 35:d8:36:fb:85:b8:57:14:4e:8a:83:fd:dd:2a:3f:97:f4:8c: ff:af:ff:05:13:0a:3e:fb:8a:ae:6e:62:51:3a:cf:8d:cd:09: a6:6a:a9:52:44:d3:16:59:9f:fa:de:f6:98:41:9d:2e:bb:43: 92:77:3e:9f:78:7b:52:8d:0d:94:10:b0:55:6c:25:3a:f2:eb: 7e:00:af:13:54:3f:26:ed:a2:6b:a6:8a:39:23:4f:0c:a1:d3: f2:2b:d8:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwNzAyMjAzNzMyWhcNMjUwNzA5MjAzNzMyWjAYMRYwFAYD VQQDEw02ODY1OTg4Yy0zMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IWTjRprcwg5gACfhjUooOj6P61mgLCK9cCNX+JRpthUVKgllLXW5UAS0++G h82QX9ZSp9/MDTdbpCeY9vGF9GhAt3qqSEimk8JoFkuX/TlhD5/zBhdxKp6zwpYn oDDyi7C1abcJ+RdX0wJRoSNNZ/W//qhTjAqMgjkKTLVqqKeNhMfXrTP6aUDjiyTS ENmAhqTloA9lG3HRj7i5KtTwnx2JvCOcXF4r4dVZa7Q+Dy/ofW0teeOBGHWdhyPy +GSyJy70YD+Ajuu6BUda8rXNhw2fSbL0/JFoKoZUHRzc+O5Uhx6NFTSlih3Ox034 56KRX/WK5fYokiZCuLt6g3tHsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2fGRHO OzK8lhKauU6omFEaOqZOMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3SFr2Pv8nzb/jQaiKIkePMOYQp1a/OXQzvl4g8L8syBKGxkrxhqJu D2XV/DCEykxzM9aONbNBeuFqpGWg/XbTqDISPQHEK4iepORH2860c77brnvyh4r+ 2p7aitbItsuiLrkj9axjEiw2Yn4CBfHe2eeQ99qpIclRMssdIMIMIgftxcB8p89E TovA4hTI3QZ+SbaShJxFpg6J4KwD+rwSFY812Db7hbhXFE6Kg/3dKj+X9Iz/r/8F Ewo++4qubmJROs+NzQmmaqlSRNMWWZ/63vaYQZ0uu0OSdz6feHtSjQ2UELBVbCU6 8ut+AK8TVD8m7aJrpoo5I08ModPyK9je -----END CERTIFICATE-----Generated at Fri Jul 4 21:10:50 2025 by rpki-client