$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: NHxn3ibL9KbdI9OD48iWXJFTjPsxe77VMQWA+hoCJGY= Subject key identifier: 73:1C:E9:8F:5F:F5:86:7D:85:4F:8C:6D:72:9C:AF:54:9D:45:E3:9C Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0912 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 090B Signing time: Tue 12 Aug 2025 20:36:31 +0000 Manifest this update: Tue 12 Aug 2025 20:36:31 +0000 Manifest next update: Tue 19 Aug 2025 20:36:31 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: zaTVCABSNvKRRkmn80hhenl1x+OSnXFEw2qWoHtSono=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2322 (0x912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Aug 12 20:36:31 2025 GMT Not After : Aug 19 20:36:31 2025 GMT Subject: CN=689ba5cf-793c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7c:b9:fc:df:45:27:ca:06:56:f2:9d:53:83: 71:d4:a0:b9:5a:d3:cd:a9:d3:8c:d0:0a:d0:78:5e: 7f:7f:09:9a:8a:3e:e4:d6:a3:ff:ce:dd:27:f4:a7: 4f:ab:ef:27:b0:8e:b0:b2:68:aa:0b:6d:19:32:48: 19:81:aa:a3:09:c5:13:17:be:8a:1e:86:7f:63:5f: fc:29:aa:3b:6d:57:df:b7:9c:b3:ba:d3:f0:9f:05: 69:1d:d3:20:c1:9f:72:f4:9b:ff:2a:08:f8:c5:a8: 9e:15:e2:a3:05:76:49:02:fc:69:fe:46:35:06:fe: 16:a9:74:5c:14:1c:b4:0d:2e:89:8a:08:e3:8a:24: d6:12:01:3c:02:17:08:48:6e:fa:46:ba:99:71:ab: 7f:f3:c1:b6:1a:7e:59:67:5e:48:93:2e:dc:89:b3: 2a:34:7b:eb:3a:20:08:f7:08:85:da:29:01:4f:fe: a6:00:14:21:9f:db:b9:49:43:fc:60:0e:f7:60:5d: b9:28:2f:59:fb:36:6d:c0:b6:10:f6:9a:4d:50:4e: ed:88:3e:ff:65:16:cc:ee:3f:87:7c:86:54:79:41: 6b:f3:c4:aa:97:a5:44:92:86:20:b3:60:25:c5:90: 95:8a:f0:78:73:98:c4:aa:2d:82:1a:db:b6:98:d7: f6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:1C:E9:8F:5F:F5:86:7D:85:4F:8C:6D:72:9C:AF:54:9D:45:E3:9C X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d3:78:f9:b9:62:cb:43:98:9a:c5:69:6a:b4:89:92:1d:0a: 77:28:49:e7:4a:cb:ae:56:ed:b5:6e:f6:e8:e2:fd:a7:30:8c: 54:eb:01:15:d4:16:8c:e7:23:30:63:66:00:e6:cd:de:f1:46: 04:2c:e2:12:ee:e1:79:38:19:9e:ff:1e:43:cf:b8:e5:d8:d1: f5:05:eb:fb:c7:03:d2:e4:e4:f6:74:f1:d0:d8:cd:0c:d3:9a: 29:f2:60:f2:db:91:74:b7:38:9b:32:1a:c3:dc:fd:36:f1:a1: ab:f0:bf:5b:4e:af:6a:ea:fe:42:93:ad:64:34:15:b9:12:cb: 0e:0e:dd:92:a4:67:cd:0e:e9:80:85:d3:9e:d4:e6:1a:b6:d0: 27:00:ff:2a:e0:1f:bc:2b:db:f6:62:6d:67:76:55:b4:f4:b2: df:c5:7a:3d:8d:ae:ad:1d:60:21:66:75:28:e5:5a:67:44:79: a6:5a:1d:97:7f:66:ca:f2:0b:59:14:f5:ba:71:5c:6a:4c:0b: 17:19:11:03:45:25:7c:dc:5c:5b:db:5b:2d:6b:fd:ad:7b:ef: 27:c3:58:bc:23:94:89:17:17:78:f5:9a:5f:30:6a:60:2f:c5: f4:e9:9e:58:5b:f5:76:89:e9:9d:75:57:ad:e6:12:93:8a:02: 7e:47:12:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwODEyMjAzNjMxWhcNMjUwODE5MjAzNjMxWjAYMRYwFAYD VQQDEw02ODliYTVjZi03OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHy5/N9FJ8oGVvKdU4Nx1KC5WtPNqdOM0ArQeF5/fwmaij7k1qP/zt0n9KdP q+8nsI6wsmiqC20ZMkgZgaqjCcUTF76KHoZ/Y1/8Kao7bVfft5yzutPwnwVpHdMg wZ9y9Jv/Kgj4xaieFeKjBXZJAvxp/kY1Bv4WqXRcFBy0DS6JigjjiiTWEgE8AhcI SG76RrqZcat/88G2Gn5ZZ15Iky7cibMqNHvrOiAI9wiF2ikBT/6mABQhn9u5SUP8 YA73YF25KC9Z+zZtwLYQ9ppNUE7tiD7/ZRbM7j+HfIZUeUFr88Sql6VEkoYgs2Al xZCVivB4c5jEqi2CGtu2mNf21QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMc6Y9f 9YZ9hU+MbXKcr1SdReOcMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl03j5uWLLQ5iaxWlqtImSHQp3KEnnSsuuVu21bvbo4v2nMIxU6wEV 1BaM5yMwY2YA5s3e8UYELOIS7uF5OBme/x5Dz7jl2NH1Bev7xwPS5OT2dPHQ2M0M 05op8mDy25F0tzibMhrD3P028aGr8L9bTq9q6v5Ck61kNBW5EssODt2SpGfNDumA hdOe1OYattAnAP8q4B+8K9v2Ym1ndlW09LLfxXo9ja6tHWAhZnUo5VpnRHmmWh2X f2bK8gtZFPW6cVxqTAsXGREDRSV83Fxb21sta/2te+8nw1i8I5SJFxd49ZpfMGpg L8X06Z5YW/V2iemddVet5hKTigJ+RxIg -----END CERTIFICATE-----Generated at Wed Aug 13 08:46:20 2025 by rpki-client