$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: lKVd3lbxYWqh1rJo7CHvBDU4XWPZnUkP1XTWnE2y0tA= Subject key identifier: 4F:FF:75:A0:F4:3B:22:64:36:04:8D:F6:4E:6D:0A:8E:FB:65:46:C4 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 08D9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 08D3 Signing time: Sat 26 Apr 2025 20:12:45 +0000 Manifest this update: Sat 26 Apr 2025 20:12:44 +0000 Manifest next update: Sat 03 May 2025 20:12:44 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: Sa/HyK4mXsd0GikHImKWkKnjRt6CXrGFDMZFXAeLJjM=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: 7BeIC/3MCE4ltdZdNYUXGP6p5TOokjZ4G97ql300lNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Apr 26 20:12:44 2025 GMT Not After : May 3 20:12:44 2025 GMT Subject: CN=680d3e3c-0a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:b9:e5:b3:4f:db:01:02:4c:0a:f6:96:60: 79:70:b9:c4:6b:79:3f:56:59:a4:5b:f4:7d:d8:a9: b7:a1:d1:49:4f:47:ba:c5:8f:31:de:ac:47:d5:0b: 42:e9:99:21:7c:71:53:09:93:ea:5f:d2:ce:af:b7: 74:24:86:7e:40:04:4d:09:76:56:5e:99:9d:13:b7: 20:5d:9e:d9:25:2e:2d:14:b7:ae:5c:af:cd:72:82: df:33:5b:d6:3d:3d:f3:c9:dc:01:fd:0d:66:ba:9f: 95:d9:59:1b:35:89:ae:bd:54:66:db:23:9f:db:22: 17:f1:ed:19:4b:b9:0a:5e:2e:1e:37:fb:79:0f:a5: 14:43:41:49:05:65:1a:b8:62:6b:9e:0a:e7:bd:9a: a6:f8:a4:c1:d8:c3:3f:7f:1c:95:17:38:96:30:b0: c0:f9:6e:aa:c9:6e:07:32:1a:78:4a:7f:cb:eb:ee: 2a:f3:68:04:20:5e:32:5c:6b:99:d9:bb:9c:7d:40: 9f:a5:09:a3:c8:ce:eb:67:7d:3b:82:f5:8c:21:6f: 1b:da:fd:ca:38:3f:72:d4:a9:f5:a0:a4:b9:08:48: be:1f:54:48:dc:ca:dc:36:ae:b0:bd:b6:f7:ab:45: f7:77:4a:31:1a:d4:36:81:56:c0:c1:e5:ad:78:b6: 1f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FF:75:A0:F4:3B:22:64:36:04:8D:F6:4E:6D:0A:8E:FB:65:46:C4 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:77:81:14:26:91:d9:bf:33:ca:95:38:01:b4:49:29:23:68: b6:2c:8c:75:65:8f:6d:28:a6:83:34:ec:f2:e7:0f:8e:22:24: 4f:9b:07:b4:52:4b:5e:67:da:09:9e:fe:d8:2b:dc:14:4c:6c: 87:8b:1e:01:ca:f1:79:3a:35:ad:86:64:17:8b:a2:74:bd:55: f9:38:29:e1:05:e9:cf:86:fa:0b:5b:7c:20:25:29:30:24:66: 36:2f:00:e2:75:41:17:bb:64:e4:42:e5:0c:47:8e:41:61:93: 76:df:49:25:23:96:15:7e:6a:ce:3d:1a:57:e4:a5:70:b5:7d: fd:fe:11:c0:6c:bb:55:4d:8f:5b:5d:b7:ce:45:6d:95:51:45: 1a:92:fd:0b:64:b5:5b:d3:fb:d7:45:2b:b5:35:3f:18:fe:62: 06:01:56:e7:3f:6a:c2:8a:7d:62:8d:e8:0c:a8:a7:43:50:71: 4c:3e:74:2d:e6:0d:c2:4d:db:ce:b2:65:01:ed:84:f0:e9:37: aa:07:3a:f9:21:57:8e:5a:f7:40:2e:fc:25:c4:38:95:96:26: 6d:56:63:c8:28:98:6a:0d:f0:12:e1:93:f7:3d:f2:fc:be:17: df:1e:62:ac:3f:9b:a4:98:86:69:41:ff:72:ed:e4:fd:e9:64: 09:e4:a3:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwNDI2MjAxMjQ0WhcNMjUwNTAzMjAxMjQ0WjAYMRYwFAYD VQQDEw02ODBkM2UzYy0wYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydC55bNP2wECTAr2lmB5cLnEa3k/VlmkW/R92Km3odFJT0e6xY8x3qxH1QtC 6ZkhfHFTCZPqX9LOr7d0JIZ+QARNCXZWXpmdE7cgXZ7ZJS4tFLeuXK/NcoLfM1vW PT3zydwB/Q1mup+V2VkbNYmuvVRm2yOf2yIX8e0ZS7kKXi4eN/t5D6UUQ0FJBWUa uGJrngrnvZqm+KTB2MM/fxyVFziWMLDA+W6qyW4HMhp4Sn/L6+4q82gEIF4yXGuZ 2bucfUCfpQmjyM7rZ307gvWMIW8b2v3KOD9y1Kn1oKS5CEi+H1RI3MrcNq6wvbb3 q0X3d0oxGtQ2gVbAweWteLYfuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE//daD0 OyJkNgSN9k5tCo77ZUbEMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCad4EUJpHZvzPKlTgBtEkpI2i2LIx1ZY9tKKaDNOzy5w+OIiRPmwe0 UkteZ9oJnv7YK9wUTGyHix4ByvF5OjWthmQXi6J0vVX5OCnhBenPhvoLW3wgJSkw JGY2LwDidUEXu2TkQuUMR45BYZN230klI5YVfmrOPRpX5KVwtX39/hHAbLtVTY9b XbfORW2VUUUakv0LZLVb0/vXRSu1NT8Y/mIGAVbnP2rCin1ijegMqKdDUHFMPnQt 5g3CTdvOsmUB7YTw6TeqBzr5IVeOWvdALvwlxDiVliZtVmPIKJhqDfAS4ZP3PfL8 vhffHmKsP5ukmIZpQf9y7eT96WQJ5KPR -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:58 2025 by rpki-client on console.sobornost.net