$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: nu3gv8472cI52UkRGV+NiYHVd1YvT64OFvmwoQY/cdQ= Subject key identifier: 1B:97:D2:16:47:6D:98:44:BE:E1:67:56:F4:E3:A6:38:E3:3F:F5:F2 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 08E0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 08DA Signing time: Sat 10 May 2025 20:08:59 +0000 Manifest this update: Sat 10 May 2025 20:08:59 +0000 Manifest next update: Sat 17 May 2025 20:08:59 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: nHhLERkNkYx2U6PV7w2bVyVyYa48VaGr+OdGsmjrM1Q=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: 7BeIC/3MCE4ltdZdNYUXGP6p5TOokjZ4G97ql300lNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: May 10 20:08:59 2025 GMT Not After : May 17 20:08:59 2025 GMT Subject: CN=681fb25b-722b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:54:56:6f:23:a0:6b:24:27:d2:23:1e:3a:d9: 73:2e:35:c4:c5:f0:4b:ad:8a:24:e8:08:95:c8:79: 76:17:63:78:7a:cf:8d:c0:64:81:72:42:20:c2:7a: 6e:0b:17:11:98:6f:b1:f3:73:f4:5d:32:c9:2c:c6: 0b:e8:f8:ae:f7:d6:ec:4c:ea:85:b3:46:d1:14:98: ff:dc:45:83:eb:2f:85:3e:26:5a:e9:38:35:93:ea: 22:23:ba:e1:a8:ae:a3:cb:e4:cb:03:63:74:f4:e1: f7:69:ab:e6:4d:96:94:cc:86:6e:07:f4:2e:88:5a: e4:39:44:b9:b3:52:39:fe:11:9c:6d:2c:e9:47:1e: 33:47:64:89:69:27:54:3a:97:dc:fa:8e:ba:b3:cb: 5a:72:a0:d4:0e:fb:b8:35:5b:bc:f4:dd:4e:2a:9b: 32:cd:c4:ad:12:7a:cd:1d:fa:ea:9d:bd:e9:6b:3d: 54:fe:bc:9a:6d:f9:0b:36:cf:b9:a0:6e:ea:ca:87: 13:b1:43:ae:8c:25:07:fa:24:3d:43:2c:a6:3d:88: dc:5c:db:c7:ea:22:39:ed:6d:95:ff:1f:5b:3c:0b: 2c:ac:5f:9c:8c:d4:e8:54:85:b0:aa:36:f5:22:55: ec:56:c3:38:fd:8c:c4:ab:ae:4e:42:04:63:cf:10: 1d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:97:D2:16:47:6D:98:44:BE:E1:67:56:F4:E3:A6:38:E3:3F:F5:F2 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:7c:91:ef:d9:e8:19:c4:38:a3:f9:72:74:5e:15:cb:4f:51: 45:a3:58:50:52:5f:28:2f:1d:bd:16:5c:a7:02:78:5f:b7:d3: e3:be:ec:24:6f:df:85:e2:52:d1:69:fa:aa:0c:8e:fb:de:69: 59:29:bd:83:1b:b5:98:4f:9f:82:69:d9:1f:6b:04:9c:a8:32: 13:18:1f:a1:b4:6a:f9:fc:52:33:1e:7b:05:26:7a:b9:e6:39: c7:5d:b6:2b:de:32:27:fc:62:b7:5e:22:cd:c1:14:54:9b:84: ae:11:9c:f4:14:76:01:e0:19:a3:f7:8e:bc:ef:e3:d7:ff:9f: 1d:9a:76:5d:b2:04:d8:ac:4a:7c:4d:b1:a9:79:b0:42:2c:b5: 78:3f:8c:1a:d1:4a:32:a1:b9:95:ce:e1:ae:ab:34:0d:60:33: b3:3e:2a:67:8e:af:87:fb:f0:93:d3:ad:8e:bb:9a:e1:d5:bb: d9:84:e7:9a:5d:73:9d:31:3e:47:b2:b7:3b:ec:00:60:30:1e: 81:ae:d5:a6:8f:01:0b:81:8c:98:a3:4b:23:40:a8:fc:6a:b7: 97:e6:50:1d:e7:a9:4e:5a:3f:da:ab:a8:8f:01:2c:75:cf:59: 9a:47:49:bf:6e:fa:d6:cc:c6:5f:97:c9:0c:7c:8b:ef:36:bc: 79:39:bb:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwNTEwMjAwODU5WhcNMjUwNTE3MjAwODU5WjAYMRYwFAYD VQQDEw02ODFmYjI1Yi03MjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslRWbyOgayQn0iMeOtlzLjXExfBLrYok6AiVyHl2F2N4es+NwGSBckIgwnpu CxcRmG+x83P0XTLJLMYL6Piu99bsTOqFs0bRFJj/3EWD6y+FPiZa6Tg1k+oiI7rh qK6jy+TLA2N09OH3aavmTZaUzIZuB/QuiFrkOUS5s1I5/hGcbSzpRx4zR2SJaSdU Opfc+o66s8tacqDUDvu4NVu89N1OKpsyzcStEnrNHfrqnb3paz1U/ryabfkLNs+5 oG7qyocTsUOujCUH+iQ9QyymPYjcXNvH6iI57W2V/x9bPAssrF+cjNToVIWwqjb1 IlXsVsM4/YzEq65OQgRjzxAd7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBuX0hZH bZhEvuFnVvTjpjjjP/XyMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJfJHv2egZxDij+XJ0XhXLT1FFo1hQUl8oLx29FlynAnhft9Pjvuwk b9+F4lLRafqqDI773mlZKb2DG7WYT5+CadkfawScqDITGB+htGr5/FIzHnsFJnq5 5jnHXbYr3jIn/GK3XiLNwRRUm4SuEZz0FHYB4Bmj94687+PX/58dmnZdsgTYrEp8 TbGpebBCLLV4P4wa0UoyobmVzuGuqzQNYDOzPipnjq+H+/CT062Ou5rh1bvZhOea XXOdMT5Hsrc77ABgMB6BrtWmjwELgYyYo0sjQKj8areX5lAd56lOWj/aq6iPASx1 z1maR0m/bvrWzMZfl8kMfIvvNrx5Obve -----END CERTIFICATE-----Generated at Mon May 12 20:18:43 2025 by rpki-client