$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: 9n+WEtnwN8GVUyEcIRJ4YfTxAROF2LFBRrfTtzr/sNQ= Subject key identifier: E9:5B:E3:79:68:47:1F:51:22:AD:8B:DB:81:FE:82:99:5A:BE:01:87 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0C99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0C82 Signing time: Fri 04 Apr 2025 18:21:56 +0000 Manifest this update: Fri 04 Apr 2025 18:21:55 +0000 Manifest next update: Fri 11 Apr 2025 18:21:55 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: ffoiBW+mHQVt85MvflE8ZlmGb7hIxFp5rw4ZxO5DdjM=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3225 (0xc99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918 Validity Not Before: Apr 4 18:21:55 2025 GMT Not After : Apr 11 18:21:55 2025 GMT Subject: CN=67f02344-be89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c0:0a:b9:84:0d:e6:9f:b3:7d:d2:ca:59:9e: 96:6c:c8:70:e7:61:34:50:a4:12:eb:87:36:bf:a2: 59:cf:3c:6a:0e:36:0c:ca:52:0c:8a:23:be:51:c2: 8f:7c:a8:b7:0d:1e:2e:51:a5:20:f5:67:0c:be:53: 8d:70:04:9b:a4:bf:a6:24:36:36:26:d2:8b:58:27: a7:a5:56:dc:32:0e:bf:4e:96:68:08:59:9f:ea:5d: 96:18:29:8e:74:b6:35:b6:d8:b4:ee:3a:e0:43:40: 14:5f:87:68:de:6f:1c:a9:aa:c5:22:2f:0d:e0:97: 22:94:6d:0e:7c:be:5e:e1:b8:5b:d4:ae:78:76:1f: 86:55:eb:ee:e4:77:5f:de:90:67:78:5f:bb:bf:a3: 13:93:41:e3:4e:fd:4e:49:92:d4:f5:7b:6c:6c:50: 15:73:2b:93:b6:83:08:28:b2:78:74:19:06:03:3a: 39:a1:1c:44:33:16:2f:09:d9:b6:d6:10:12:4c:2c: af:71:fe:c7:3c:cc:95:80:27:c4:72:5e:b1:49:ac: 6e:32:36:e0:a6:a3:d4:18:13:d3:d3:cd:e3:0c:03: 05:69:9c:3a:2c:e8:7c:ae:8f:54:19:ea:fb:b3:86: 69:6b:63:d2:a5:96:cc:c1:1c:a3:db:1b:e4:68:ee: 66:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5B:E3:79:68:47:1F:51:22:AD:8B:DB:81:FE:82:99:5A:BE:01:87 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:08:1e:ea:ff:1c:bf:2a:54:04:2c:27:99:73:08:a4:5f:4f: 2a:0b:31:3b:75:e7:5a:ee:10:e5:94:23:f9:c6:e8:1b:29:51: f7:79:31:98:ff:68:55:4c:02:54:47:f2:2c:39:fd:a9:b9:21: 43:55:91:28:bc:af:b1:0e:2e:39:cf:24:fd:a1:3b:d6:60:6a: 34:dd:9e:4e:62:eb:a2:7d:37:19:0c:1e:be:4d:95:76:18:d4: 80:e2:d9:4c:c9:03:42:1a:9b:42:6e:08:f8:f9:cc:16:6b:51: 3c:96:de:23:09:b1:c3:3f:e9:fc:18:fd:da:4e:b6:b4:1c:51: 0d:9b:57:da:0f:5f:86:67:29:e3:3a:2b:b8:ee:61:ad:ae:31: f2:8b:6e:d7:dc:9c:7a:74:77:3a:0e:29:6d:0f:8c:70:1d:b5: 68:93:ad:a1:52:b4:88:46:9a:be:b7:3c:b3:22:4a:70:b9:28: a4:34:bd:6d:d4:61:48:c6:a0:bd:cf:66:ff:07:93:ab:01:7e: e3:82:8d:25:f2:49:09:10:64:17:f7:3b:99:7f:c1:99:d9:7d: 20:4a:4b:4c:68:3f:3d:ab:d8:23:27:d1:b3:29:a2:00:08:56: 98:40:8e:c2:f6:ea:a1:78:ba:bd:41:5a:13:73:56:87:bc:79: 8a:06:8f:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNDA0MTgyMTU1WhcNMjUwNDExMTgyMTU1WjAYMRYwFAYD VQQDEw02N2YwMjM0NC1iZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8AKuYQN5p+zfdLKWZ6WbMhw52E0UKQS64c2v6JZzzxqDjYMylIMiiO+UcKP fKi3DR4uUaUg9WcMvlONcASbpL+mJDY2JtKLWCenpVbcMg6/TpZoCFmf6l2WGCmO dLY1tti07jrgQ0AUX4do3m8cqarFIi8N4JcilG0OfL5e4bhb1K54dh+GVevu5Hdf 3pBneF+7v6MTk0HjTv1OSZLU9XtsbFAVcyuTtoMIKLJ4dBkGAzo5oRxEMxYvCdm2 1hASTCyvcf7HPMyVgCfEcl6xSaxuMjbgpqPUGBPT083jDAMFaZw6LOh8ro9UGer7 s4Zpa2PSpZbMwRyj2xvkaO5mtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlb43lo Rx9RIq2L24H+gplavgGHMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPCB7q/xy/KlQELCeZcwikX08qCzE7deda7hDllCP5xugbKVH3eTGY /2hVTAJUR/IsOf2puSFDVZEovK+xDi45zyT9oTvWYGo03Z5OYuuifTcZDB6+TZV2 GNSA4tlMyQNCGptCbgj4+cwWa1E8lt4jCbHDP+n8GP3aTra0HFENm1faD1+GZynj Oiu47mGtrjHyi27X3Jx6dHc6DiltD4xwHbVok62hUrSIRpq+tzyzIkpwuSikNL1t 1GFIxqC9z2b/B5OrAX7jgo0l8kkJEGQX9zuZf8GZ2X0gSktMaD89q9gjJ9GzKaIA CFaYQI7C9uqheLq9QVoTc1aHvHmKBo96 -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:32 2025 by rpki-client