$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: DJ7bgzNDMzjFF3bLmaACEyGTQY7QV3rC1oSZK4zZnV4= Subject key identifier: 8B:88:BB:21:83:49:81:43:C8:A6:C0:7E:B4:20:22:16:4A:2D:1B:48 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0BEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0BD4 Signing time: Thu 02 May 2024 19:13:44 +0000 Manifest this update: Thu 02 May 2024 19:13:43 +0000 Manifest next update: Thu 09 May 2024 19:13:43 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: LZXpFpIPKswgaJJQsbSQPK7Q4bUbTrSR+qxhbvWAwf4=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: zxSRfAAWHodRPXRUrpU838tKskpRSjTOWCqlIRMhn7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3050 (0xbea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: May 2 19:13:43 2024 GMT Not After : May 9 19:13:43 2024 GMT Subject: CN=6633e5e8-9f03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2d:c3:d4:d2:14:4c:4a:a7:42:7f:40:5f:a5: 51:48:23:c8:46:0c:d7:5f:4d:e5:6c:7d:b7:a6:7f: 06:5d:39:2e:7d:76:12:01:cf:9d:0d:b6:4b:e7:a2: c2:56:76:9e:46:be:fc:55:90:b1:c1:d8:85:7a:64: 72:f6:0a:44:44:f5:c6:ca:12:4c:71:fb:44:0c:c7: f2:b4:50:22:07:10:36:c4:eb:1b:3c:f0:53:6c:3f: 2b:d7:b5:dd:06:e2:3e:d9:91:c1:9c:36:83:25:9c: 31:6d:59:ce:ad:55:fe:6f:9a:bf:5a:c5:7f:66:70: 80:de:57:b8:3e:2a:56:53:3a:df:2f:63:38:d4:03: b8:bf:86:bb:e5:9a:50:1e:f8:ca:d8:f3:14:4c:2e: 70:4e:34:b8:e4:ac:6d:ad:ec:b3:19:d7:ca:15:f2: 8f:00:31:23:da:6c:a3:48:4f:0f:64:61:de:49:53: 1e:22:92:81:13:2b:6d:56:a9:bf:64:81:f4:a7:a4: 2e:c6:77:3c:ad:6d:b0:6d:90:bd:3c:6a:1f:50:64: 32:85:b7:19:b0:a5:68:31:8a:f1:c9:1b:b7:73:9d: b5:c0:c7:58:e6:26:54:0f:4a:34:b5:53:11:c8:a7: 7f:5d:40:d8:0c:9b:a9:75:c2:0a:d5:36:33:3b:1f: 8c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:88:BB:21:83:49:81:43:C8:A6:C0:7E:B4:20:22:16:4A:2D:1B:48 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:99:8f:5c:80:95:65:95:9b:36:31:6b:31:d1:7f:55:96:a1: 4b:b8:16:ae:2e:cc:4f:30:59:88:b8:11:3c:e5:db:2c:78:fb: 2e:ec:34:df:99:bc:d9:61:bb:44:43:d7:98:a6:44:e5:d6:c5: 29:a8:7e:8e:fd:11:36:83:24:53:d3:89:c5:c7:a6:8f:dc:ff: 3b:38:58:b5:aa:18:63:3f:59:05:8b:49:56:96:17:da:22:6f: 2a:cb:5f:f2:16:2a:e0:7e:48:53:1c:dd:4f:39:18:34:44:d8: 8e:cb:f8:27:d6:8c:96:d2:c6:d8:19:17:d4:6c:74:91:89:7d: 49:25:f2:bd:39:51:b5:11:86:d3:2b:dd:62:83:43:63:7c:30: e7:67:46:11:d0:a5:ce:83:15:46:9a:5a:6e:2d:8f:df:4f:92: 68:6b:d0:25:ae:6f:8a:18:e4:fb:08:ed:af:cc:3a:27:db:c1: 10:6e:e6:c8:2a:db:e5:d6:1b:51:66:e4:54:37:31:27:49:4d: c6:3a:b7:4b:4b:a9:d6:95:f3:7f:55:e4:a3:c0:ff:da:b8:df: 1e:30:dd:d8:d1:c2:eb:f4:03:46:45:d4:0f:c0:77:0a:44:55: 00:30:30:c3:be:b8:90:ed:29:b9:d1:0a:f6:b7:41:db:b8:10: 95:f4:c4:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjQwNTAyMTkxMzQzWhcNMjQwNTA5MTkxMzQzWjAYMRYwFAYD VQQDEw02NjMzZTVlOC05ZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoS3D1NIUTEqnQn9AX6VRSCPIRgzXX03lbH23pn8GXTkufXYSAc+dDbZL56LC VnaeRr78VZCxwdiFemRy9gpERPXGyhJMcftEDMfytFAiBxA2xOsbPPBTbD8r17Xd BuI+2ZHBnDaDJZwxbVnOrVX+b5q/WsV/ZnCA3le4PipWUzrfL2M41AO4v4a75ZpQ HvjK2PMUTC5wTjS45KxtreyzGdfKFfKPADEj2myjSE8PZGHeSVMeIpKBEyttVqm/ ZIH0p6Quxnc8rW2wbZC9PGofUGQyhbcZsKVoMYrxyRu3c521wMdY5iZUD0o0tVMR yKd/XUDYDJupdcIK1TYzOx+MNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuIuyGD SYFDyKbAfrQgIhZKLRtIMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfmY9cgJVllZs2MWsx0X9VlqFLuBauLsxPMFmIuBE85dssePsu7DTf mbzZYbtEQ9eYpkTl1sUpqH6O/RE2gyRT04nFx6aP3P87OFi1qhhjP1kFi0lWlhfa Im8qy1/yFirgfkhTHN1PORg0RNiOy/gn1oyW0sbYGRfUbHSRiX1JJfK9OVG1EYbT K91ig0NjfDDnZ0YR0KXOgxVGmlpuLY/fT5Joa9Alrm+KGOT7CO2vzDon28EQbubI Ktvl1htRZuRUNzEnSU3GOrdLS6nWlfN/VeSjwP/auN8eMN3Y0cLr9ANGRdQPwHcK RFUAMDDDvriQ7Sm50Qr2t0HbuBCV9MQb -----END CERTIFICATE-----Generated at Thu May 2 20:50:20 2024 by rpki-client on console-fra.rpki-client.org