$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: GTxf+3xlVVwCcv/bOWIpSg1rY6PfniOYlsJ9DS9l+Ys= Subject key identifier: B4:CE:D6:26:74:50:FD:B9:F7:15:3D:D1:43:91:FA:1A:98:6D:73:C0 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0BF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0BDC Signing time: Sat 18 May 2024 19:07:41 +0000 Manifest this update: Sat 18 May 2024 19:07:40 +0000 Manifest next update: Sat 25 May 2024 19:07:40 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: ATjy6AqT3ZfMRdGGbw0b+AsyrCiNthaDRSuPVgjQESY=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: zxSRfAAWHodRPXRUrpU838tKskpRSjTOWCqlIRMhn7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3058 (0xbf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: May 18 19:07:40 2024 GMT Not After : May 25 19:07:40 2024 GMT Subject: CN=6648fc7d-cad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:12:4f:52:64:b6:f0:fd:33:04:7b:2b:b8:4d: 18:a1:98:76:a0:32:e8:74:93:4e:6b:5d:5a:e6:87: 16:f4:dd:f8:49:9a:d4:17:3b:14:19:50:4a:62:ce: 43:e8:64:80:12:a8:b2:7b:51:21:a6:03:d5:21:de: 94:05:30:fd:5c:a1:00:7e:8a:c8:88:2f:22:46:f3: dc:93:6f:d9:ec:77:a8:4b:37:04:8f:98:35:42:f8: 79:0a:55:9f:98:56:15:9d:3b:c6:14:38:42:b5:06: 85:aa:5f:0c:30:64:de:5e:f6:bf:0a:f5:3d:1e:ad: f1:a0:1b:e3:4d:1d:07:01:03:c9:43:0d:71:25:77: ae:77:85:75:d5:11:8d:dc:b6:ac:ed:36:c8:88:dd: e3:eb:39:c6:4e:a6:11:7c:e3:96:91:c2:d2:55:0b: 77:e6:92:74:25:28:6d:b0:b2:a0:d1:20:d1:b0:b6: cb:58:97:94:8d:3a:97:7f:92:1c:38:6c:10:88:7a: 22:51:8a:34:ca:b2:d3:8c:3f:41:43:9b:e8:9c:4c: bf:66:43:08:fe:77:6b:3f:1d:c7:c3:4c:b7:1f:78: 0a:f4:19:28:31:76:df:66:d6:51:f5:80:9f:45:00: c2:6d:a4:bb:ab:89:71:7f:5d:e1:23:1d:d2:c5:90: c2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CE:D6:26:74:50:FD:B9:F7:15:3D:D1:43:91:FA:1A:98:6D:73:C0 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:ed:b4:c9:0d:db:74:26:42:22:16:76:b2:71:3a:70:bc:ac: ad:f8:91:fb:79:9c:0c:ac:dd:41:de:08:87:4a:c9:2c:32:c7: b6:ab:96:6a:37:e6:68:83:91:c7:6d:3f:d5:a6:59:da:9b:4e: 9d:10:18:f6:8b:e2:45:d8:09:c5:f0:ea:51:f1:ca:e4:34:9c: 67:80:04:6d:e9:0e:42:99:18:ed:69:64:60:8d:e5:c9:69:d7: ba:fd:05:be:2e:e4:a3:b5:bf:22:c6:27:da:09:ca:3d:58:e5: 6a:0f:79:4e:fd:58:a6:97:70:73:d0:74:6a:b4:25:65:bc:00: a6:4c:0c:db:46:9a:32:2a:a0:cf:35:f5:15:1a:84:0e:d5:c0: e8:3d:61:d5:2b:66:94:80:fc:6d:0c:2b:a8:ed:ce:84:4f:82: e9:85:ff:02:88:6b:1d:cd:5b:6e:44:d0:7f:33:33:1d:55:e8: 4f:ae:82:92:f4:02:85:b8:57:4d:da:8f:d2:50:cb:40:74:3c: 69:ab:7d:d3:87:c8:7a:51:b7:7a:66:6a:81:a2:65:d8:16:1e: ee:5f:6c:63:44:71:46:45:92:a0:e3:95:47:2e:89:18:f9:e1: 9c:50:46:be:4c:65:d8:38:6b:61:a8:13:57:46:33:b9:e6:36: 67:d4:d6:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjQwNTE4MTkwNzQwWhcNMjQwNTI1MTkwNzQwWjAYMRYwFAYD VQQDEw02NjQ4ZmM3ZC1jYWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRJPUmS28P0zBHsruE0YoZh2oDLodJNOa11a5ocW9N34SZrUFzsUGVBKYs5D 6GSAEqiye1EhpgPVId6UBTD9XKEAforIiC8iRvPck2/Z7HeoSzcEj5g1Qvh5ClWf mFYVnTvGFDhCtQaFql8MMGTeXva/CvU9Hq3xoBvjTR0HAQPJQw1xJXeud4V11RGN 3Las7TbIiN3j6znGTqYRfOOWkcLSVQt35pJ0JShtsLKg0SDRsLbLWJeUjTqXf5Ic OGwQiHoiUYo0yrLTjD9BQ5vonEy/ZkMI/ndrPx3Hw0y3H3gK9BkoMXbfZtZR9YCf RQDCbaS7q4lxf13hIx3SxZDC2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTO1iZ0 UP259xU90UOR+hqYbXPAMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDS7bTJDdt0JkIiFnaycTpwvKyt+JH7eZwMrN1B3giHSsksMse2q5Zq N+Zog5HHbT/Vplnam06dEBj2i+JF2AnF8OpR8crkNJxngARt6Q5CmRjtaWRgjeXJ ade6/QW+LuSjtb8ixifaCco9WOVqD3lO/Viml3Bz0HRqtCVlvACmTAzbRpoyKqDP NfUVGoQO1cDoPWHVK2aUgPxtDCuo7c6ET4Lphf8CiGsdzVtuRNB/MzMdVehProKS 9AKFuFdN2o/SUMtAdDxpq33Th8h6Ubd6ZmqBomXYFh7uX2xjRHFGRZKg45VHLokY +eGcUEa+TGXYOGthqBNXRjO55jZn1Nby -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org