$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: B6s7y0rY4QSvlsDcInqc2hrutxHzP3O07rUGJQthtu0= Subject key identifier: 6D:B5:E8:B2:A1:D7:9C:9D:F7:FA:3C:AB:3C:88:38:CE:B4:CB:D9:44 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0C9E Signing time: Fri 30 May 2025 18:25:24 +0000 Manifest this update: Fri 30 May 2025 18:25:24 +0000 Manifest next update: Fri 06 Jun 2025 18:25:24 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: Gpu4TWbR4cmuev1F4F67uYFWLUQD3CZKk+BYsttLAnU=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: May 30 18:25:24 2025 GMT Not After : Jun 6 18:25:24 2025 GMT Subject: CN=6839f814-5c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a5:41:46:ca:c9:72:1f:10:7b:7c:da:32:fb: 56:d1:75:bc:49:ae:24:fa:d7:1b:57:97:d4:cc:7a: 24:c5:3c:d4:9b:49:a3:82:55:65:64:49:e6:45:f8: 28:09:4f:44:09:2d:34:cd:a6:0e:30:cc:be:b7:2a: 61:ee:39:16:18:d2:fa:5f:34:72:bc:cc:da:81:32: 30:47:04:b0:99:34:24:08:e1:dc:6c:4f:b8:5e:f3: d6:1b:ac:c8:a7:2a:b8:18:fe:9e:18:f7:b4:f6:ea: a2:9b:35:e8:73:4b:b8:bd:25:19:d9:51:b1:e9:76: 54:e3:b0:1e:20:81:56:2c:c5:8f:a2:84:fc:a9:6e: 9a:12:38:23:54:2f:7b:3e:f7:ed:f4:8d:b7:7f:bc: 58:29:3d:2f:78:15:41:34:42:ef:af:8a:c3:fa:fd: 14:8d:d4:ca:25:46:17:39:05:20:43:86:bd:8b:02: 14:67:68:a1:0d:a8:da:1a:40:39:c9:f3:b2:04:23: c3:1c:ed:72:34:5c:44:03:2d:24:b8:6b:79:45:49: 1a:43:4c:6e:fa:7c:6f:6f:a9:7b:1a:fc:2f:71:98: 8a:2b:03:fc:69:09:22:b6:a4:9d:e4:11:89:a2:a3: 68:c0:b5:76:ba:1a:15:b4:34:c6:75:b2:02:05:c9: 73:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B5:E8:B2:A1:D7:9C:9D:F7:FA:3C:AB:3C:88:38:CE:B4:CB:D9:44 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:9a:02:a3:b5:90:26:87:40:99:4a:11:05:1c:58:de:a4:53: 90:e7:af:1b:02:18:cc:4b:32:f2:78:81:2a:9c:e4:ef:1c:7d: 09:4c:67:85:d8:15:fd:d1:75:c8:7a:42:cf:a1:88:2b:de:56: 5d:78:00:3f:d5:47:ce:8d:ea:4d:50:7b:b9:50:6f:55:64:80: 61:11:7f:8b:13:2b:5a:73:ba:a4:9c:55:e7:83:25:ed:10:c2: 0a:14:51:a8:02:f2:e3:82:25:9a:cc:56:40:12:54:80:54:5f: b1:ca:28:77:f1:09:d7:81:a4:dd:eb:9d:44:c3:ee:05:67:9a: b9:63:eb:50:0c:19:ec:f0:36:fc:94:dc:cc:f5:83:14:01:e7: 5f:4b:fc:c3:35:1d:77:57:00:ff:24:51:8d:9e:7d:eb:84:69: a7:58:f9:65:22:89:18:1a:81:8e:f5:ae:05:f8:11:97:fb:d1: bb:d5:af:82:e8:e7:f2:d7:2e:d7:50:2c:e6:a0:a8:b9:82:5a: e6:07:86:9f:bc:85:23:ea:57:d3:11:1d:e9:d0:48:08:80:76: c9:05:51:0b:16:a6:e0:a2:7f:91:a2:a0:f9:92:13:b2:ba:db: a3:7f:af:4b:c0:e4:00:30:db:d6:bf:89:59:b5:48:a9:f7:1a: 99:5c:93:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNTMwMTgyNTI0WhcNMjUwNjA2MTgyNTI0WjAYMRYwFAYD VQQDEw02ODM5ZjgxNC01YzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqVBRsrJch8Qe3zaMvtW0XW8Sa4k+tcbV5fUzHokxTzUm0mjglVlZEnmRfgo CU9ECS00zaYOMMy+typh7jkWGNL6XzRyvMzagTIwRwSwmTQkCOHcbE+4XvPWG6zI pyq4GP6eGPe09uqimzXoc0u4vSUZ2VGx6XZU47AeIIFWLMWPooT8qW6aEjgjVC97 Pvft9I23f7xYKT0veBVBNELvr4rD+v0UjdTKJUYXOQUgQ4a9iwIUZ2ihDajaGkA5 yfOyBCPDHO1yNFxEAy0kuGt5RUkaQ0xu+nxvb6l7GvwvcZiKKwP8aQkitqSd5BGJ oqNowLV2uhoVtDTGdbICBclzpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG216LKh 15yd9/o8qzyIOM60y9lEMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6mgKjtZAmh0CZShEFHFjepFOQ568bAhjMSzLyeIEqnOTvHH0JTGeF 2BX90XXIekLPoYgr3lZdeAA/1UfOjepNUHu5UG9VZIBhEX+LEytac7qknFXngyXt EMIKFFGoAvLjgiWazFZAElSAVF+xyih38QnXgaTd651Ew+4FZ5q5Y+tQDBns8Db8 lNzM9YMUAedfS/zDNR13VwD/JFGNnn3rhGmnWPllIokYGoGO9a4F+BGX+9G71a+C 6Ofy1y7XUCzmoKi5glrmB4afvIUj6lfTER3p0EgIgHbJBVELFqbgon+RoqD5khOy utujf69LwOQAMNvWv4lZtUip9xqZXJOw -----END CERTIFICATE-----Generated at Sat May 31 17:18:51 2025 by rpki-client