$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: F2ghGGo1u9MT6U11MltjEXU5DLlp0fhqOd4sT/3oqSA= Subject key identifier: B2:58:D2:B8:E7:A8:72:BA:45:DD:A7:D6:7F:0D:23:21:87:6D:E4:EA Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 08F5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 08EE Signing time: Mon 16 Jun 2025 20:12:40 +0000 Manifest this update: Mon 16 Jun 2025 20:12:40 +0000 Manifest next update: Mon 23 Jun 2025 20:12:40 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: bISa0oVWAnsL+JAexhaQTSsjNSapWCa/frlI6GANNIU=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Jun 16 20:12:40 2025 GMT Not After : Jun 23 20:12:40 2025 GMT Subject: CN=68507ab8-fe23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:76:28:f2:42:fe:15:c9:0b:17:32:ce:94:0a: b4:24:23:0a:e2:5d:57:b1:a4:00:95:b6:5d:22:f8: 57:f5:7e:2c:f2:f0:da:51:ad:08:57:5d:28:c9:a5: c0:19:db:e2:67:4f:7a:82:e2:07:26:8b:00:62:14: ed:ac:94:b5:bc:2f:49:22:4c:6c:c3:8d:5c:68:fa: d5:7d:ce:df:a3:61:1d:82:16:07:b2:a8:3d:f5:96: 3b:e0:a8:ef:d8:04:07:4a:28:5f:de:c2:ef:5c:24: 39:a3:77:bd:14:09:b1:d6:56:61:02:68:01:bc:56: 2d:9c:48:1b:4a:5e:70:d1:b1:94:55:cf:15:e4:e1: f1:0b:a4:91:da:ca:f8:31:4f:80:3a:4e:cf:14:58: c9:2b:21:58:87:3e:ee:2e:4f:10:b6:36:65:5f:86: bd:01:de:93:b4:2b:80:75:18:fc:b5:5e:f5:32:16: df:ac:5b:a9:a9:8e:7e:fc:91:d7:52:f0:8c:a8:76: fa:46:35:19:db:7e:3b:be:fb:f5:ef:d5:02:21:f4: 1b:43:72:33:17:03:08:5a:7e:3e:3c:05:94:16:8f: ae:45:92:71:c7:7f:68:3c:d3:f2:b8:b0:ee:59:98: c7:53:06:e1:6b:32:36:5e:1a:cc:43:b7:63:19:d5: cd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:58:D2:B8:E7:A8:72:BA:45:DD:A7:D6:7F:0D:23:21:87:6D:E4:EA X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:7d:02:0f:6b:cc:6f:3a:db:a1:65:10:32:d0:01:ce:4c:7d: 3b:64:3a:32:f7:1e:cf:92:eb:59:4f:66:15:53:bf:c6:27:c8: b8:25:1b:ec:2b:ac:74:44:56:b5:22:de:ca:6d:b0:dc:00:9a: 31:4b:8b:36:8c:36:63:42:92:50:1d:f9:08:d2:00:50:5d:54: 7e:7c:f2:4d:6b:d9:1b:2a:ea:73:9a:ce:e5:50:d3:90:41:05: f8:88:f4:92:0b:da:04:2f:3e:40:49:b7:33:94:bb:c6:ee:30: 1f:a3:a5:b6:9e:c7:2a:c5:bb:6d:8d:e8:c2:99:19:6a:2f:5d: 78:10:25:8d:5d:ce:e4:2a:70:52:98:43:7d:ce:96:9c:88:03: 96:09:c9:87:d5:d9:c0:14:b0:14:5f:55:f4:d5:36:1e:0e:4d: 04:a6:5b:cf:5a:0e:4e:17:50:09:25:aa:67:d7:e3:73:00:e6: cd:f3:bf:7d:41:8a:bf:49:e2:d1:c6:85:35:3f:41:25:21:f9: 1b:55:42:57:8f:25:b6:1f:ba:5b:f6:2d:b1:d7:0f:5e:b8:01: 79:00:84:df:c9:2d:6d:a3:c7:45:88:b6:71:4d:ea:48:8e:63: cf:02:44:83:2d:2b:0d:6c:72:8e:ca:14:79:5e:3d:85:22:bc: 0d:a3:34:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwNjE2MjAxMjQwWhcNMjUwNjIzMjAxMjQwWjAYMRYwFAYD VQQDEw02ODUwN2FiOC1mZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXYo8kL+FckLFzLOlAq0JCMK4l1XsaQAlbZdIvhX9X4s8vDaUa0IV10oyaXA GdviZ096guIHJosAYhTtrJS1vC9JIkxsw41caPrVfc7fo2EdghYHsqg99ZY74Kjv 2AQHSihf3sLvXCQ5o3e9FAmx1lZhAmgBvFYtnEgbSl5w0bGUVc8V5OHxC6SR2sr4 MU+AOk7PFFjJKyFYhz7uLk8QtjZlX4a9Ad6TtCuAdRj8tV71MhbfrFupqY5+/JHX UvCMqHb6RjUZ2347vvv179UCIfQbQ3IzFwMIWn4+PAWUFo+uRZJxx39oPNPyuLDu WZjHUwbhazI2XhrMQ7djGdXN9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJY0rjn qHK6Rd2n1n8NIyGHbeTqMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBfQIPa8xvOtuhZRAy0AHOTH07ZDoy9x7PkutZT2YVU7/GJ8i4JRvs K6x0RFa1It7KbbDcAJoxS4s2jDZjQpJQHfkI0gBQXVR+fPJNa9kbKupzms7lUNOQ QQX4iPSSC9oELz5ASbczlLvG7jAfo6W2nscqxbttjejCmRlqL114ECWNXc7kKnBS mEN9zpaciAOWCcmH1dnAFLAUX1X01TYeDk0EplvPWg5OF1AJJapn1+NzAObN8799 QYq/SeLRxoU1P0ElIfkbVUJXjyW2H7pb9i2x1w9euAF5AITfyS1to8dFiLZxTepI jmPPAkSDLSsNbHKOyhR5Xj2FIrwNozQ9 -----END CERTIFICATE-----Generated at Wed Jun 18 14:12:17 2025 by rpki-client