$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: TCMPMht9HSaTREt48HBvPT3g9nG6UKkO5xduHIY4/g0= Subject key identifier: 2E:2C:19:5F:E5:7D:D3:62:CA:5D:CA:90:13:15:25:C0:C2:A0:5C:A9 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0C3E Signing time: Fri 22 Nov 2024 18:14:03 +0000 Manifest this update: Fri 22 Nov 2024 18:14:02 +0000 Manifest next update: Fri 29 Nov 2024 18:14:02 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: kXl3T2WIyf5LRW1/rmyIGGQ/A39RfhmvadQZWsA9ieg=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:14:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Nov 22 18:14:02 2024 GMT Not After : Nov 29 18:14:02 2024 GMT Subject: CN=6740c9eb-313d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1c:ce:09:cc:b4:b2:a6:0a:cf:01:13:d5:49: c8:8d:d9:e5:ca:62:75:c0:a9:75:f0:49:41:b7:6c: b1:7c:86:b2:0a:c9:f9:b3:a0:93:af:8f:ca:22:2c: 9e:93:cf:d6:67:c7:f7:82:a6:70:4d:93:c5:c4:51: b3:4d:c7:0a:1d:35:d8:10:c2:52:4c:d3:c8:76:7d: 81:93:53:4e:0d:4d:de:71:06:f5:c6:e8:ee:de:3e: 69:53:89:8b:8b:14:8b:63:3a:59:c1:b7:15:a8:f2: ee:1d:d2:71:ac:7f:d6:29:51:21:86:61:52:b4:3e: 1a:94:9a:eb:d5:8d:a5:d1:81:fe:22:ae:be:83:7c: 66:31:4e:a7:4d:16:88:88:97:0e:bc:06:37:dd:79: 0a:ac:8f:e7:5e:da:d3:ff:ae:aa:bd:4c:e2:be:65: 27:90:d0:1e:c8:cd:e3:ef:b7:0a:d5:06:38:50:3c: 3d:08:d9:3f:c0:18:65:13:d9:7f:78:8d:1c:53:0e: a4:b8:ff:b5:9f:16:3d:fa:73:e4:d4:94:51:89:ca: 76:35:49:52:5c:e6:06:b7:f0:f0:94:00:0d:38:a3: 5d:ea:e4:9d:53:8a:3e:f8:32:13:19:46:c2:a0:6e: cc:90:f2:4c:27:22:fe:e8:38:5e:66:2f:02:6b:f3: df:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:2C:19:5F:E5:7D:D3:62:CA:5D:CA:90:13:15:25:C0:C2:A0:5C:A9 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a0:2c:99:d6:2f:f7:1d:aa:40:ce:df:43:2f:bf:6b:50:eb: f6:2e:78:5a:85:26:d7:0d:5b:8f:00:13:21:70:da:89:38:04: 42:5f:d0:73:21:a0:25:0e:ba:69:bf:b4:40:18:62:bf:f7:6a: 15:83:8a:24:df:e8:19:9a:54:a4:93:cd:b0:0f:d3:5c:b7:39: 6a:78:79:36:ac:f6:af:d0:ae:56:21:d5:fc:99:bc:d5:42:05: a7:d1:b5:c9:a1:0e:cb:f7:c7:8f:93:92:05:61:49:3f:e9:67: ec:66:49:61:7d:7b:81:a2:44:18:0f:51:43:1f:c3:0f:2c:fc: 69:60:10:4c:43:80:15:c9:e3:c8:5a:3a:20:40:7e:90:01:11: 11:17:5e:f1:35:5e:19:d3:1f:bc:07:eb:fc:1f:fc:64:41:92: b1:c8:a6:b3:1c:7d:42:70:60:ef:5f:70:26:92:53:f8:8b:94: a6:4f:a2:3a:99:60:17:7b:cd:68:8d:a2:df:24:bc:97:ab:d1: f7:2d:a2:82:b6:16:71:73:86:e3:62:39:ca:7d:3d:05:95:49: d0:e2:a6:de:23:49:3b:cc:25:a6:08:b6:22:8c:05:b7:53:20: 55:f0:22:e2:ac:eb:6d:6a:bb:d7:2f:34:ed:c3:5a:d8:66:e5: 47:18:d0:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjQxMTIyMTgxNDAyWhcNMjQxMTI5MTgxNDAyWjAYMRYwFAYD VQQDEw02NzQwYzllYi0zMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxzOCcy0sqYKzwET1UnIjdnlymJ1wKl18ElBt2yxfIayCsn5s6CTr4/KIiye k8/WZ8f3gqZwTZPFxFGzTccKHTXYEMJSTNPIdn2Bk1NODU3ecQb1xuju3j5pU4mL ixSLYzpZwbcVqPLuHdJxrH/WKVEhhmFStD4alJrr1Y2l0YH+Iq6+g3xmMU6nTRaI iJcOvAY33XkKrI/nXtrT/66qvUzivmUnkNAeyM3j77cK1QY4UDw9CNk/wBhlE9l/ eI0cUw6kuP+1nxY9+nPk1JRRicp2NUlSXOYGt/DwlAANOKNd6uSdU4o++DITGUbC oG7MkPJMJyL+6DheZi8Ca/Pf/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4sGV/l fdNiyl3KkBMVJcDCoFypMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgoCyZ1i/3HapAzt9DL79rUOv2LnhahSbXDVuPABMhcNqJOARCX9Bz IaAlDrppv7RAGGK/92oVg4ok3+gZmlSkk82wD9NctzlqeHk2rPav0K5WIdX8mbzV QgWn0bXJoQ7L98ePk5IFYUk/6WfsZklhfXuBokQYD1FDH8MPLPxpYBBMQ4AVyePI WjogQH6QARERF17xNV4Z0x+8B+v8H/xkQZKxyKazHH1CcGDvX3AmklP4i5SmT6I6 mWAXe81ojaLfJLyXq9H3LaKCthZxc4bjYjnKfT0FlUnQ4qbeI0k7zCWmCLYijAW3 UyBV8CLirOttarvXLzTtw1rYZuVHGNAI -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:58 2024 by rpki-client on console-ams.rpki-client.org