$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: nN8ewSRsEZ4KVDKAGm8GCjhKUqQH34SO4OaXHkO3q1c= Subject key identifier: 60:09:E9:39:A5:CA:1F:F8:82:4D:61:07:CB:3E:70:C2:1C:7B:C2:64 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0917 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 0910 Signing time: Fri 22 Aug 2025 20:26:31 +0000 Manifest this update: Fri 22 Aug 2025 20:26:31 +0000 Manifest next update: Fri 29 Aug 2025 20:26:31 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: FSxndrJWmlJTSBluAoeJDRKsq8/WNkPkdTEy+TbEIn8=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:26:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Aug 22 20:26:31 2025 GMT Not After : Aug 29 20:26:31 2025 GMT Subject: CN=68a8d277-20d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:94:58:77:99:3d:8f:72:90:7b:e6:2c:2b:45: c6:27:30:b9:ea:03:26:b2:a3:eb:db:b5:af:8a:bd: 13:5e:76:00:ee:54:2e:7c:b9:53:ef:41:90:0c:53: 35:d7:55:8a:f1:88:b9:5b:2e:5b:55:35:51:fc:50: 9d:06:57:d7:10:d6:42:02:1e:6e:13:0a:e2:04:b9: 4a:7a:61:a5:77:23:6c:cf:4f:e6:00:de:45:25:b7: a5:0b:24:00:92:14:c4:b5:84:ed:ae:c9:55:22:58: 44:0e:25:3e:17:63:9b:bd:04:23:16:ce:fa:8a:83: 67:e2:1a:23:e8:1f:8a:27:60:02:2e:f1:ad:6d:ca: 7c:dc:eb:8b:f3:51:67:06:5c:43:ad:1a:3d:23:7b: 0a:ec:06:cc:d3:cd:d4:26:13:c8:26:83:02:c0:18: d0:07:4a:e0:c3:3b:9c:4d:31:fe:ed:ec:c8:90:ec: 3a:aa:4a:32:09:83:3a:45:de:52:f7:63:f5:d8:6d: 65:8a:f7:ec:f5:d7:3f:45:9d:34:64:1e:5c:0a:24: 64:35:e0:f4:9b:78:d4:df:c7:5e:28:a4:fd:e8:f7: bc:a4:7f:8d:7a:30:47:e2:3f:24:56:e7:a1:7b:c0: 70:24:e4:98:a5:9b:74:e5:a7:0f:d7:c8:6e:0c:06: 38:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:09:E9:39:A5:CA:1F:F8:82:4D:61:07:CB:3E:70:C2:1C:7B:C2:64 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:54:b9:6c:2e:4d:f1:a5:e9:ba:fc:2c:e2:e6:9f:90:73:17: 92:55:f1:45:fc:3f:84:13:bf:61:72:7d:1f:a3:f2:7e:19:15: eb:47:24:03:0b:9d:af:63:85:1b:a4:f2:c4:0c:92:c1:a7:c8: c1:65:ae:86:c0:99:88:63:0e:62:80:61:9d:bd:6e:55:43:b3: c0:81:da:a7:dc:bf:da:c2:bc:8d:59:ff:e6:3f:21:ed:42:1b: 85:4c:70:de:8e:5c:8d:8d:9c:07:22:26:71:19:75:a3:cc:77: 2b:e9:ab:c5:7d:cc:cf:f9:03:33:42:fd:df:dc:50:09:b2:ef: 45:ce:20:62:61:da:b8:c7:05:a5:cb:28:96:b0:6f:56:62:0d: de:a3:70:c6:80:21:4b:d7:e8:ee:8d:dc:a1:15:84:c8:9c:d1: 56:04:e0:d7:aa:01:a3:1b:80:29:39:c2:33:e0:b0:f8:b9:aa: 84:ef:a1:e8:69:92:b3:fb:4a:63:83:a2:1e:a0:d0:a4:cb:af: 2b:d2:81:82:f2:72:19:07:69:4a:a8:01:79:84:7a:f2:8e:b0: 22:1d:7c:b6:ec:f1:5e:84:c2:e0:9e:50:7f:27:08:e4:7b:a8: 13:1d:fa:93:b8:aa:d3:5b:ff:b0:be:30:58:85:20:5f:12:ef: 27:7b:c7:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwODIyMjAyNjMxWhcNMjUwODI5MjAyNjMxWjAYMRYwFAYD VQQDEw02OGE4ZDI3Ny0yMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJRYd5k9j3KQe+YsK0XGJzC56gMmsqPr27Wvir0TXnYA7lQufLlT70GQDFM1 11WK8Yi5Wy5bVTVR/FCdBlfXENZCAh5uEwriBLlKemGldyNsz0/mAN5FJbelCyQA khTEtYTtrslVIlhEDiU+F2ObvQQjFs76ioNn4hoj6B+KJ2ACLvGtbcp83OuL81Fn BlxDrRo9I3sK7AbM083UJhPIJoMCwBjQB0rgwzucTTH+7ezIkOw6qkoyCYM6Rd5S 92P12G1livfs9dc/RZ00ZB5cCiRkNeD0m3jU38deKKT96Pe8pH+NejBH4j8kVueh e8BwJOSYpZt05acP18huDAY4NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAJ6Tml yh/4gk1hB8s+cMIce8JkMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEVLlsLk3xpem6/Czi5p+QcxeSVfFF/D+EE79hcn0fo/J+GRXrRyQD C52vY4UbpPLEDJLBp8jBZa6GwJmIYw5igGGdvW5VQ7PAgdqn3L/awryNWf/mPyHt QhuFTHDejlyNjZwHIiZxGXWjzHcr6avFfczP+QMzQv3f3FAJsu9FziBiYdq4xwWl yyiWsG9WYg3eo3DGgCFL1+jujdyhFYTInNFWBODXqgGjG4ApOcIz4LD4uaqE76Ho aZKz+0pjg6IeoNCky68r0oGC8nIZB2lKqAF5hHryjrAiHXy27PFehMLgnlB/Jwjk e6gTHfqTuKrTW/+wvjBYhSBfEu8ne8dZ -----END CERTIFICATE-----Generated at Sat Aug 23 23:19:14 2025 by rpki-client