$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: M2EG6Sm3w1Xbo0QMETx+qPqXdoIXioPfhT508y/Aj54= Subject key identifier: F5:3D:AF:64:1B:E1:A5:5A:87:E9:47:AB:68:D3:21:A8:71:4A:28:68 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0918 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 0911 Signing time: Sun 24 Aug 2025 20:19:56 +0000 Manifest this update: Sun 24 Aug 2025 20:19:55 +0000 Manifest next update: Sun 31 Aug 2025 20:19:55 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: ySYSjbRFVuocMegZtyAYxZefZIXP8QnKe10HAppUBO0=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 20:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Aug 24 20:19:55 2025 GMT Not After : Aug 31 20:19:55 2025 GMT Subject: CN=68ab73ec-991f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6e:da:d4:93:c5:a1:08:fc:ab:af:46:69:3a: c8:4a:f2:b1:f5:32:ac:cf:e4:f1:93:74:12:4d:02: bc:6b:27:2c:ac:30:ee:a7:46:76:e4:e8:c2:93:21: bc:f4:2c:9f:48:27:a1:a6:42:6a:b6:5c:33:da:07: a1:09:a5:8a:b9:f6:df:2d:63:13:0c:2f:f0:9c:68: bd:93:89:bd:b2:d0:ed:45:0a:59:e8:b4:12:22:95: 67:79:78:fb:c7:b8:0b:45:50:29:71:8d:54:e2:ac: 64:cd:e9:f9:fe:05:e8:ce:ba:29:c0:ef:e8:11:91: c4:3b:23:55:11:e8:e6:78:9a:81:83:92:c7:74:0a: da:3a:a7:6b:ed:8c:8b:ec:42:23:74:3f:bf:72:f9: 8d:38:16:99:84:3d:7a:92:ea:84:27:e3:d5:6d:3b: 67:45:6b:83:b2:0c:fb:ce:3b:c7:30:46:41:59:ad: dd:ca:22:f0:20:67:2a:44:dc:c3:9b:7e:13:88:79: b0:b5:24:ef:00:51:ef:78:43:4e:d3:38:25:d5:a1: 2f:1d:76:6b:d2:c9:41:6b:76:f9:6f:37:17:d9:38: 73:64:57:6b:92:18:e3:5c:a4:ae:ff:7e:e0:26:02: 32:27:a8:e4:f8:8f:ac:45:50:19:9d:6f:e7:46:98: 96:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:3D:AF:64:1B:E1:A5:5A:87:E9:47:AB:68:D3:21:A8:71:4A:28:68 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:23:b9:fe:52:4d:d0:e6:a3:2b:e2:4d:b0:7e:7b:0d:e7:e9: b3:e1:38:3e:66:f4:97:b7:fe:e7:39:5f:d4:35:51:4c:c5:58: d8:5f:ea:bc:4b:27:25:b7:1a:3c:0c:ed:7e:9c:06:fa:68:ce: 9a:41:5d:52:90:12:61:80:f0:80:4b:55:11:c3:8e:cf:f8:ec: 3e:de:4e:f9:0f:89:33:7f:8c:41:65:e0:75:65:54:82:04:89: fc:a4:d7:f3:d4:b0:90:b8:71:d0:7f:94:5e:07:66:a7:b9:f5: a4:08:9a:38:c2:07:28:dc:19:4e:4b:66:e2:46:de:99:ad:3e: 02:c3:96:e4:ad:09:14:b4:d1:a2:ef:17:0b:6d:79:52:9f:ff: df:43:c1:35:46:a3:24:1e:7a:9d:fa:bb:3a:70:c1:ec:7a:ca: 9b:9c:86:7a:00:e9:84:e2:ec:3d:f3:60:22:88:5a:c4:35:96: 95:9a:92:24:38:fe:05:d2:df:d0:33:73:60:30:f5:c8:e8:67: 21:98:e1:b3:62:94:ff:a6:8f:d2:65:ba:d7:4d:97:c4:fb:6d: 9c:65:c8:db:76:04:77:44:66:1d:40:68:6d:08:f7:0c:33:89: 6f:3e:4d:26:a8:6e:c0:ad:33:ea:00:80:3b:3d:ba:67:ae:76: 64:c2:43:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwODI0MjAxOTU1WhcNMjUwODMxMjAxOTU1WjAYMRYwFAYD VQQDEw02OGFiNzNlYy05OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3G7a1JPFoQj8q69GaTrISvKx9TKsz+Txk3QSTQK8aycsrDDup0Z25OjCkyG8 9CyfSCehpkJqtlwz2gehCaWKufbfLWMTDC/wnGi9k4m9stDtRQpZ6LQSIpVneXj7 x7gLRVApcY1U4qxkzen5/gXozropwO/oEZHEOyNVEejmeJqBg5LHdAraOqdr7YyL 7EIjdD+/cvmNOBaZhD16kuqEJ+PVbTtnRWuDsgz7zjvHMEZBWa3dyiLwIGcqRNzD m34TiHmwtSTvAFHveENO0zgl1aEvHXZr0slBa3b5bzcX2ThzZFdrkhjjXKSu/37g JgIyJ6jk+I+sRVAZnW/nRpiW8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPU9r2Qb 4aVah+lHq2jTIahxSihoMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0I7n+Uk3Q5qMr4k2wfnsN5+mz4Tg+ZvSXt/7nOV/UNVFMxVjYX+q8 Sycltxo8DO1+nAb6aM6aQV1SkBJhgPCAS1URw47P+Ow+3k75D4kzf4xBZeB1ZVSC BIn8pNfz1LCQuHHQf5ReB2anufWkCJo4wgco3BlOS2biRt6ZrT4Cw5bkrQkUtNGi 7xcLbXlSn//fQ8E1RqMkHnqd+rs6cMHsesqbnIZ6AOmE4uw982AiiFrENZaVmpIk OP4F0t/QM3NgMPXI6GchmOGzYpT/po/SZbrXTZfE+22cZcjbdgR3RGYdQGhtCPcM M4lvPk0mqG7ArTPqAIA7PbpnrnZkwkNv -----END CERTIFICATE-----Generated at Mon Aug 25 23:09:43 2025 by rpki-client