$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: CUTdgSX0PDTf/aJpafDYYiA/6Xh8CeCu3cB/6jDilOs= Subject key identifier: 45:D5:39:FD:CA:56:20:A7:64:A1:7B:FE:3F:79:6E:F1:14:32:29:7E Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 093C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 0935 Signing time: Sun 02 Nov 2025 20:10:40 +0000 Manifest this update: Sun 02 Nov 2025 20:10:40 +0000 Manifest next update: Sun 09 Nov 2025 20:10:40 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: KL6vLBddLXS4j5hLXI3T3NcDIS3iONn1PDi8DCN6KR4=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Nov 2 20:10:40 2025 GMT Not After : Nov 9 20:10:40 2025 GMT Subject: CN=6907bac0-4d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e5:35:67:66:bf:5d:54:40:1b:52:43:ed:c8: 03:05:d8:d5:ac:65:81:80:fc:ac:66:a3:0e:c0:b6: e5:7c:0b:0b:38:07:a0:d0:c5:86:52:75:f9:de:95: bf:77:45:25:6f:d5:5d:95:c2:d5:f1:05:fb:6e:ed: c9:77:d7:9e:b0:af:97:6e:4c:73:aa:8f:6c:7f:5c: b1:79:7c:b6:5e:17:ce:d7:11:cd:17:2c:c5:b2:ae: 09:dd:b1:94:a3:2a:c6:f2:23:fc:e8:9a:11:a9:1a: 28:bf:f0:01:b9:05:ba:f3:68:5b:fa:f4:a4:d2:79: 3c:5d:2e:cd:81:55:c0:15:ff:05:5c:2e:87:67:ba: b2:38:aa:75:39:ff:34:eb:a2:11:36:a5:12:ee:12: bc:82:47:b2:a8:ee:c1:15:34:4f:b0:4a:de:07:e8: 1d:52:4f:b6:1e:71:51:56:b9:fe:18:c4:41:ab:7a: 21:d7:73:16:0c:d7:c9:b8:8a:52:25:e5:1e:d5:aa: 2b:49:0d:d0:28:98:3a:0b:62:05:d9:47:b2:79:fb: 55:89:d8:aa:ae:65:d8:03:99:14:6d:01:96:ee:fd: 50:a8:0a:76:8f:05:ee:23:70:94:ab:81:b7:f1:ab: d7:1b:01:03:19:0e:5b:f8:3a:54:d2:ec:95:20:27: d9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D5:39:FD:CA:56:20:A7:64:A1:7B:FE:3F:79:6E:F1:14:32:29:7E X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c7:9e:8f:d8:eb:ed:04:d3:9a:15:29:6a:43:03:09:bb:e1: a7:b8:0e:2c:bc:bc:35:2b:ea:5b:bc:33:84:a1:9a:1b:eb:18: ae:10:bb:eb:25:d5:85:80:6b:85:91:d3:d5:e4:1e:a2:e0:d5: 91:7a:d9:5b:5f:70:78:e1:5e:37:eb:8b:da:6c:40:40:cf:53: 8b:9f:f4:3b:ad:11:73:66:62:2a:fa:58:60:00:89:2f:d9:92: 20:a0:c0:8f:6d:2f:7f:92:d6:25:39:38:b5:34:bf:70:35:a3: e2:7a:43:3c:f0:f1:ff:46:7b:f9:31:4e:7a:6d:e0:bf:07:37: 1c:83:f2:42:65:e8:4f:29:f1:82:37:99:3f:12:3e:4d:b2:fc: 5c:a5:6b:49:69:9a:07:95:e9:fa:46:e7:99:dd:6b:a1:b3:ec: 9d:27:f8:41:8f:49:ba:4c:04:35:84:df:6e:d7:6f:d6:83:7e: e2:a0:7d:35:0a:ec:7c:0b:39:3b:48:37:85:6e:34:de:1e:fc: 47:87:d8:ac:b6:70:bb:9c:d6:1e:6c:2f:19:8b:0e:7c:75:4a: 80:2f:8e:bc:3c:0e:f1:48:39:1f:ea:52:24:fc:b1:3c:78:61: 57:2f:29:81:5e:fd:bc:32:95:6a:d6:9d:d9:8e:02:1f:13:39: 99:5c:09:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUxMTAyMjAxMDQwWhcNMjUxMTA5MjAxMDQwWjAYMRYwFAYD VQQDEw02OTA3YmFjMC00ZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+U1Z2a/XVRAG1JD7cgDBdjVrGWBgPysZqMOwLblfAsLOAeg0MWGUnX53pW/ d0Ulb9VdlcLV8QX7bu3Jd9eesK+Xbkxzqo9sf1yxeXy2XhfO1xHNFyzFsq4J3bGU oyrG8iP86JoRqRoov/ABuQW682hb+vSk0nk8XS7NgVXAFf8FXC6HZ7qyOKp1Of80 66IRNqUS7hK8gkeyqO7BFTRPsEreB+gdUk+2HnFRVrn+GMRBq3oh13MWDNfJuIpS JeUe1aorSQ3QKJg6C2IF2UeyeftVidiqrmXYA5kUbQGW7v1QqAp2jwXuI3CUq4G3 8avXGwEDGQ5b+DpU0uyVICfZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXVOf3K ViCnZKF7/j95bvEUMil+MB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAox56P2OvtBNOaFSlqQwMJu+GnuA4svLw1K+pbvDOEoZob6xiuELvr JdWFgGuFkdPV5B6i4NWRetlbX3B44V4364vabEBAz1OLn/Q7rRFzZmIq+lhgAIkv 2ZIgoMCPbS9/ktYlOTi1NL9wNaPiekM88PH/Rnv5MU56beC/Bzccg/JCZehPKfGC N5k/Ej5NsvxcpWtJaZoHlen6RueZ3Wuhs+ydJ/hBj0m6TAQ1hN9u12/Wg37ioH01 Cux8Czk7SDeFbjTeHvxHh9istnC7nNYebC8Ziw58dUqAL468PA7xSDkf6lIk/LE8 eGFXLymBXv28MpVq1p3ZjgIfEzmZXAkU -----END CERTIFICATE-----Generated at Tue Nov 4 21:10:40 2025 by rpki-client