$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: IDRHCkR8UnTJPN7/CHN8gvxhUZRUBdL0p0zTfX2LuKE= Subject key identifier: 55:07:D6:53:E7:38:8B:E3:4D:E7:BF:C5:CC:A3:9F:57:98:CB:44:BC Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0996 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 098E Signing time: Mon 20 Apr 2026 19:56:18 +0000 Manifest this update: Mon 20 Apr 2026 19:56:17 +0000 Manifest next update: Mon 27 Apr 2026 19:56:17 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: +Ao6U0kgfLuYHSTzNvNBIqLQKq16CIiyCNSbjTN1Gd4=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: oL+E2occgF2Rh0xxZmLpozavtSN8h7g27TX6pQxOEn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 19:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2454 (0x996) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Apr 20 19:56:17 2026 GMT Not After : Apr 27 19:56:17 2026 GMT Subject: CN=69e684e1-55d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:68:da:d1:0e:a0:0c:e7:91:aa:83:63:a8:2a: 08:bd:2e:d2:b4:45:77:ec:5a:b2:6d:2b:cc:83:f5: 1a:ad:2d:fa:37:c3:ad:d2:0a:76:4f:b0:b6:34:43: 8b:eb:40:db:25:b3:ea:82:2b:1f:f5:b5:3f:c0:2a: b0:4b:51:dd:2a:1c:26:ec:3b:73:f6:e2:41:9c:19: a7:a4:7f:79:00:82:41:a7:8a:90:cc:bb:ab:9b:49: 0b:db:13:18:08:87:38:cd:75:d2:47:6d:e6:21:91: 10:ea:bd:05:fd:ad:1c:ce:d9:e2:a9:a5:94:5c:bf: d8:5e:d1:dc:b1:1f:97:f8:77:8b:70:7c:ef:f0:9f: 72:cb:8b:c6:a5:1b:37:70:94:3d:36:2e:09:1d:41: 46:db:c9:f1:9e:ff:d3:43:61:aa:18:2c:ee:5b:4b: e0:6b:da:43:18:9f:5e:e4:7c:a6:22:6b:05:f4:9c: a5:2b:99:6b:5c:76:c5:a1:1b:dd:b3:0f:9c:aa:0d: 2c:38:b9:fb:b7:8d:a8:fe:5d:06:1b:64:1b:2d:ef: fd:1e:e7:3b:1b:1f:f7:6a:2e:31:22:29:86:12:55: a8:28:7b:13:d5:6d:87:d2:e3:31:21:17:4a:34:27: c1:05:04:7a:3d:26:d5:05:54:40:4b:20:d5:9f:80: fb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:07:D6:53:E7:38:8B:E3:4D:E7:BF:C5:CC:A3:9F:57:98:CB:44:BC X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8e:d0:7e:87:a1:f7:c4:7e:a0:65:55:32:73:22:6c:e9:9c: b1:3a:76:14:d4:cf:6c:ec:b9:b5:d3:95:09:a8:ce:d4:19:fa: d2:28:e6:61:a1:d5:2b:72:c8:69:77:90:a4:39:94:a3:33:67: 75:0e:84:33:c9:14:0f:a7:dd:a3:ab:a7:6b:f3:41:49:3e:d8: c8:c3:0a:d2:78:6b:c6:73:9e:c6:8d:ca:16:2d:61:1c:ab:aa: a9:de:8c:41:6e:7c:d7:6b:78:fc:00:c1:eb:59:5d:b0:eb:12: e8:c4:51:a2:7a:63:6a:b2:06:1e:6e:cb:38:cc:2e:a4:89:13: 1a:a6:1a:50:3e:d2:d3:e3:09:c0:e0:88:c4:ab:fd:e3:83:39: 70:6f:b9:e1:07:e7:8d:32:07:00:4d:b8:26:0e:0f:e4:07:e2: 5f:c7:b6:5b:0a:71:a7:ed:ba:37:fa:bf:14:b4:1c:82:fe:ff: b6:7c:ad:19:7e:25:88:36:8c:ca:89:ae:ab:d9:08:15:b0:2e: 60:9a:fd:e6:79:c0:d3:16:da:58:62:d3:f5:a0:48:c2:5b:75: f3:33:ef:d5:83:d8:28:ad:f7:9e:d0:b6:49:4b:fc:ab:bf:5c: d4:11:f1:8e:d4:1b:70:e8:69:8a:6e:50:ec:45:ac:ac:80:eb: 75:bb:e1:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjYwNDIwMTk1NjE3WhcNMjYwNDI3MTk1NjE3WjAYMRYwFAYD VQQDEw02OWU2ODRlMS01NWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2ja0Q6gDOeRqoNjqCoIvS7StEV37FqybSvMg/UarS36N8Ot0gp2T7C2NEOL 60DbJbPqgisf9bU/wCqwS1HdKhwm7Dtz9uJBnBmnpH95AIJBp4qQzLurm0kL2xMY CIc4zXXSR23mIZEQ6r0F/a0cztniqaWUXL/YXtHcsR+X+HeLcHzv8J9yy4vGpRs3 cJQ9Ni4JHUFG28nxnv/TQ2GqGCzuW0vga9pDGJ9e5HymImsF9JylK5lrXHbFoRvd sw+cqg0sOLn7t42o/l0GG2QbLe/9Huc7Gx/3ai4xIimGElWoKHsT1W2H0uMxIRdK NCfBBQR6PSbVBVRASyDVn4D7VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFUH1lPn OIvjTee/xcyjn1eYy0S8MB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmI7Qfoeh98R+oGVVMnMibOmcsTp2FNTPbOy5tdOVCajO1Bn60ijmYaHVK3LI aXeQpDmUozNndQ6EM8kUD6fdo6una/NBST7YyMMK0nhrxnOexo3KFi1hHKuqqd6M QW5812t4/ADB61ldsOsS6MRRonpjarIGHm7LOMwupIkTGqYaUD7S0+MJwOCIxKv9 44M5cG+54QfnjTIHAE24Jg4P5AfiX8e2Wwpxp+26N/q/FLQcgv7/tnytGX4liDaM yomuq9kIFbAuYJr95nnA0xbaWGLT9aBIwlt18zPv1YPYKK33ntC2SUv8q79c1BHx jtQbcOhpim5Q7EWsrIDrdbvhFg== -----END CERTIFICATE-----Generated at Tue Apr 21 21:33:44 2026 by rpki-client