$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: E4df132Tk6nvd35W06hzRtp7u9uQ1w97oc/yurGbVFA= Subject key identifier: BE:57:37:4B:C4:D3:38:43:DB:95:8F:D6:CD:C3:96:7E:00:2C:7F:24 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 08F0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 08E9 Signing time: Fri 06 Jun 2025 20:28:25 +0000 Manifest this update: Fri 06 Jun 2025 20:28:24 +0000 Manifest next update: Fri 13 Jun 2025 20:28:24 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: PyT0tLtARZdaO5TZnjznHNe4Ac5Yqv2sqglEi1Kzpzs=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Jun 6 20:28:24 2025 GMT Not After : Jun 13 20:28:24 2025 GMT Subject: CN=68434f68-9130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:8a:a8:dc:f2:36:c1:65:ce:91:4c:14:41: f4:5c:8b:a1:ca:ef:85:9c:14:fc:f5:58:a2:9d:5f: a7:c7:81:b2:d5:54:63:a5:8c:bd:93:d0:a0:2c:d8: d2:68:f3:24:a5:ae:b2:f5:37:6c:2c:29:29:6a:1f: 27:ac:43:01:3f:b8:e4:47:4c:ec:86:07:d8:27:89: 9a:b6:40:99:51:6c:df:a7:97:ca:89:82:41:ce:39: 0c:a4:88:bb:0c:d3:c5:f7:22:11:0b:66:d3:db:3e: 31:df:78:fd:a8:6a:e5:53:2c:e2:09:77:2a:1d:29: 85:ed:ee:14:f6:47:61:20:47:4d:3c:d5:4e:46:5b: 23:58:d0:02:cc:f9:b6:dc:02:4a:0e:5f:a7:80:33: 28:1f:fd:bf:dc:b5:f7:ab:bb:b9:44:f0:64:2e:0b: 2e:d9:d8:3f:f6:02:a4:39:2c:ad:ea:23:93:a5:a9: cc:89:1a:52:3d:00:fe:55:54:46:bc:96:67:3d:e7: d6:ca:6b:14:f0:ff:59:24:4c:3b:48:72:7c:a3:19: ce:95:77:0d:ec:f9:d6:23:a7:ec:07:84:2c:2e:b7: 01:66:3b:f7:51:48:f0:40:87:42:3e:47:3b:4c:44: 9b:c8:6b:d7:b7:65:00:8b:e8:fe:46:b6:16:61:11: a4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:57:37:4B:C4:D3:38:43:DB:95:8F:D6:CD:C3:96:7E:00:2C:7F:24 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7a:64:84:b7:e6:19:a9:4a:74:ad:6f:b6:61:b6:c3:46:38: 10:b9:33:a4:69:ae:cb:92:f2:bb:92:0f:4e:40:6c:c8:8f:34: 52:7b:0b:d6:2c:03:5d:91:0a:72:4f:00:c5:9c:a3:ba:f0:78: 9e:f5:12:39:a4:6d:fa:c6:b6:91:cf:22:34:c1:55:bd:55:7d: 19:2f:ff:b9:16:a5:00:4c:90:c3:c1:e9:70:2a:75:7c:ea:ef: 06:f3:d2:b9:7e:a9:44:38:12:25:0d:fd:97:fa:97:c7:de:cc: d2:c9:04:ff:39:5a:26:e0:9e:e0:bf:dc:68:5c:a1:4b:07:26: 87:ba:46:2f:6a:8c:57:09:71:7f:f0:59:32:cb:55:42:a0:c3: 40:5f:d0:ed:29:43:28:6a:23:32:45:1c:e9:d0:f4:06:db:92: 9c:a1:5c:81:a9:9b:34:91:84:06:a3:62:e1:7b:7f:07:9b:6e: f5:7d:6d:0a:85:33:8e:b7:e9:2e:6a:f3:81:d3:bc:ed:27:2f: b8:3b:ec:43:9e:3b:75:be:67:86:c3:c5:57:ee:ed:f5:ba:6a: 66:76:9c:03:4d:39:33:48:c2:6a:91:55:e4:dc:75:e1:f6:d8: 15:d6:58:eb:76:d2:b5:02:5a:ad:8d:dc:8c:c1:a5:16:12:bc: 4c:88:34:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwNjA2MjAyODI0WhcNMjUwNjEzMjAyODI0WjAYMRYwFAYD VQQDEw02ODQzNGY2OC05MTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLmKqNzyNsFlzpFMFEH0XIuhyu+FnBT89ViinV+nx4Gy1VRjpYy9k9CgLNjS aPMkpa6y9TdsLCkpah8nrEMBP7jkR0zshgfYJ4matkCZUWzfp5fKiYJBzjkMpIi7 DNPF9yIRC2bT2z4x33j9qGrlUyziCXcqHSmF7e4U9kdhIEdNPNVORlsjWNACzPm2 3AJKDl+ngDMoH/2/3LX3q7u5RPBkLgsu2dg/9gKkOSyt6iOTpanMiRpSPQD+VVRG vJZnPefWymsU8P9ZJEw7SHJ8oxnOlXcN7PnWI6fsB4QsLrcBZjv3UUjwQIdCPkc7 TESbyGvXt2UAi+j+RrYWYRGknQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5XN0vE 0zhD25WP1s3Dln4ALH8kMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATemSEt+YZqUp0rW+2YbbDRjgQuTOkaa7LkvK7kg9OQGzIjzRSewvW LANdkQpyTwDFnKO68Hie9RI5pG36xraRzyI0wVW9VX0ZL/+5FqUATJDDwelwKnV8 6u8G89K5fqlEOBIlDf2X+pfH3szSyQT/OVom4J7gv9xoXKFLByaHukYvaoxXCXF/ 8Fkyy1VCoMNAX9DtKUMoaiMyRRzp0PQG25KcoVyBqZs0kYQGo2Lhe38Hm271fW0K hTOOt+kuavOB07ztJy+4O+xDnjt1vmeGw8VX7u31umpmdpwDTTkzSMJqkVXk3HXh 9tgV1ljrdtK1AlqtjdyMwaUWErxMiDTK -----END CERTIFICATE-----Generated at Sun Jun 8 12:41:49 2025 by rpki-client