$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: Efy86k7/JsYXoV+YbtxQ2N8OTPGzHB3dUucAwHOJMRI= Subject key identifier: 74:DA:21:6E:09:A6:31:92:81:B2:60:67:FA:D0:C8:03:3D:AD:64:A5 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0988 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 0980 Signing time: Tue 24 Mar 2026 19:49:36 +0000 Manifest this update: Tue 24 Mar 2026 19:49:36 +0000 Manifest next update: Tue 31 Mar 2026 19:49:36 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: J8uqL84dJ4YXLt/t/ZLxuG1rPz7c2i8XwPBb76oAUfY=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: oL+E2occgF2Rh0xxZmLpozavtSN8h7g27TX6pQxOEn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Mar 24 19:49:36 2026 GMT Not After : Mar 31 19:49:36 2026 GMT Subject: CN=69c2ead0-624f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:f9:85:e5:84:52:2c:9f:e0:c3:aa:4e:d6: d1:22:e8:54:a1:19:97:9c:79:35:0b:b2:92:82:aa: 4e:31:76:dd:94:57:4d:c0:68:cd:2f:ac:7d:08:58: d1:de:7a:27:b1:90:29:3e:d6:21:1b:66:d9:a3:cf: 12:a8:8d:6b:be:e7:b7:ad:1b:de:2c:eb:81:2f:47: ac:0e:83:d4:d8:5f:84:a2:52:0b:d2:3a:38:bc:8b: dd:bb:7b:e6:35:a8:c4:79:54:7e:23:d5:63:62:92: ac:22:c1:fd:b8:8d:70:ee:75:a6:6d:7d:fe:ac:17: 06:4c:3f:57:1f:1f:54:53:6f:13:c0:7a:f5:00:f7: 29:47:32:92:95:a1:13:58:eb:94:17:f6:d7:eb:8a: 87:3b:2f:6f:04:17:48:d9:e3:f5:c4:0e:df:d6:17: c4:4b:d7:95:ea:7d:32:ce:3d:30:34:0e:b8:b1:4f: 7c:dd:33:68:b3:2b:62:5a:5f:fc:f7:1f:b3:8a:39: e4:e1:df:09:fe:db:5c:d2:72:01:17:11:01:7c:83: 97:70:5a:fa:99:f4:1a:0e:90:0b:b9:2a:b8:65:2b: 17:33:9f:2e:44:63:ff:db:68:7f:d0:c9:ea:0f:82: 70:dc:04:da:cd:1a:2d:03:af:77:f1:64:7c:d3:f0: bc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DA:21:6E:09:A6:31:92:81:B2:60:67:FA:D0:C8:03:3D:AD:64:A5 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ce:ff:f8:18:4c:1e:95:2a:52:cb:86:b0:cd:c5:54:bb:c3: 05:3c:05:45:81:5a:5a:c0:68:96:11:76:2e:3f:e6:7a:6a:82: 9d:ef:e6:9c:a9:87:b7:56:0c:1c:46:28:ef:26:44:9e:5a:43: d4:1d:3f:30:b8:b8:e8:b1:06:37:40:85:7a:c9:ce:32:48:93: 08:1b:17:30:13:cc:aa:16:1e:b0:78:36:7d:2e:5e:3d:eb:33: 17:2c:3b:de:80:84:05:01:9f:54:54:e0:51:4c:52:19:af:53: 17:58:ea:1e:b5:f3:36:bd:6b:9f:22:e3:a1:39:13:dd:68:0a: f0:3d:02:c4:6d:b5:c7:51:0a:2c:8d:15:d5:11:f8:0b:29:98: 3e:9b:96:63:c4:9c:53:02:64:40:27:c7:46:77:ca:55:6f:5d: 6a:9e:38:28:83:94:b5:3a:76:bf:b7:03:ef:f5:77:2e:cc:e8: 2a:d3:9e:ed:80:17:d5:ba:e5:be:a6:4e:09:87:3a:0d:d9:db: d0:24:1e:32:c0:c5:aa:93:51:d3:c4:a4:f5:ad:ae:5b:dd:ef: e4:7c:31:22:37:d9:51:07:ac:d3:a8:43:07:ff:11:b9:9f:b2: c3:1a:01:d1:74:9f:5f:35:37:95:e6:de:33:93:16:61:65:b1: fc:43:bd:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjYwMzI0MTk0OTM2WhcNMjYwMzMxMTk0OTM2WjAYMRYwFAYD VQQDEw02OWMyZWFkMC02MjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuND5heWEUiyf4MOqTtbRIuhUoRmXnHk1C7KSgqpOMXbdlFdNwGjNL6x9CFjR 3nonsZApPtYhG2bZo88SqI1rvue3rRveLOuBL0esDoPU2F+EolIL0jo4vIvdu3vm NajEeVR+I9VjYpKsIsH9uI1w7nWmbX3+rBcGTD9XHx9UU28TwHr1APcpRzKSlaET WOuUF/bX64qHOy9vBBdI2eP1xA7f1hfES9eV6n0yzj0wNA64sU983TNosytiWl/8 9x+zijnk4d8J/ttc0nIBFxEBfIOXcFr6mfQaDpALuSq4ZSsXM58uRGP/22h/0Mnq D4Jw3ATazRotA6938WR80/C8xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHTaIW4J pjGSgbJgZ/rQyAM9rWSlMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKc7/+BhMHpUqUsuGsM3FVLvDBTwFRYFaWsBolhF2Lj/memqCne/mnKmHt1YM HEYo7yZEnlpD1B0/MLi46LEGN0CFesnOMkiTCBsXMBPMqhYesHg2fS5ePeszFyw7 3oCEBQGfVFTgUUxSGa9TF1jqHrXzNr1rnyLjoTkT3WgK8D0CxG21x1EKLI0V1RH4 CymYPpuWY8ScUwJkQCfHRnfKVW9dap44KIOUtTp2v7cD7/V3LszoKtOe7YAX1brl vqZOCYc6Ddnb0CQeMsDFqpNR08Sk9a2uW93v5HwxIjfZUQes06hDB/8RuZ+ywxoB 0XSfXzU3lebeM5MWYWWx/EO9xw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:10:54 2026 by rpki-client