$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: pmWcvIh0anoA8WJn+EssgCkjKouylErePhDHztYLGW4= Subject key identifier: 56:E1:DB:E8:84:43:32:82:9F:FE:5C:8B:45:62:D4:27:A6:64:20:F5 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0C8C Signing time: Thu 24 Apr 2025 18:11:55 +0000 Manifest this update: Thu 24 Apr 2025 18:11:54 +0000 Manifest next update: Thu 01 May 2025 18:11:54 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: hi5W2fCH04/ojZES8eWzlpWq8G/Ox/NZKF9Cetpa2Mo=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Apr 24 18:11:54 2025 GMT Not After : May 1 18:11:54 2025 GMT Subject: CN=680a7eeb-4e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0b:04:fc:c1:71:25:f2:85:a6:4a:7e:a9:00: 9c:87:58:44:21:1c:ed:88:67:d6:53:8a:4f:82:53: 05:59:98:ad:5e:b7:75:73:a7:a4:c3:48:2c:d3:9e: d6:48:ff:49:7a:7d:30:ce:a3:75:c6:ac:93:03:76: f3:d9:f8:e3:04:81:d4:db:44:4b:9d:b1:bd:ce:4d: 6d:c4:43:b5:17:9f:b4:21:e1:a4:0d:7f:55:1a:a5: 0b:79:86:65:cb:46:64:23:03:c1:55:40:77:88:9c: ca:64:ea:5f:c4:61:48:7e:8f:f1:2a:81:d0:08:65: a0:a5:0f:9b:e0:4d:32:b9:b3:c6:59:17:7b:c3:66: 81:8e:e2:b8:a7:f8:ed:3a:e5:45:d4:f7:dc:4f:52: a7:c3:13:d7:45:15:34:60:91:8b:8a:3d:cc:87:fa: d1:48:0b:d1:82:39:58:44:6c:b3:13:74:4d:3c:36: aa:bc:cc:a5:5a:ef:1a:be:9d:1c:00:55:42:e7:81: 8c:1f:d6:64:51:6a:3a:e7:48:7b:b0:4f:66:a3:0d: 3d:40:f5:82:9f:89:79:b3:cf:a4:cb:4e:de:e2:41: 36:f1:89:5b:34:a9:72:75:c8:9b:80:0b:e7:be:0a: cc:f2:fd:5f:04:96:c5:ab:3a:33:35:7c:45:9d:8e: 0e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E1:DB:E8:84:43:32:82:9F:FE:5C:8B:45:62:D4:27:A6:64:20:F5 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1a:97:f8:3d:2d:78:42:aa:8a:da:8f:71:70:d2:61:cd:ea: d9:4a:70:19:b9:26:a7:60:42:f4:21:8d:23:34:bb:7b:c4:21: 26:1c:52:98:57:57:57:10:c3:ae:06:a4:bd:69:97:2e:53:a1: 56:73:87:b4:d9:ff:66:de:58:5b:d5:68:c3:bf:35:18:d3:18: 8a:ea:40:a7:48:3b:80:42:ee:9e:e7:cc:16:b9:ae:51:b3:11: 35:c9:90:fd:ed:3e:cc:3f:bb:e9:f1:c2:2b:7e:e0:9f:d1:58: 2c:bd:02:b7:f1:20:b7:bc:36:14:4c:a5:8e:3e:9e:7b:5f:bd: dd:26:96:71:a6:6b:2d:e8:63:a7:f8:06:05:04:70:c5:b6:4d: 87:c3:8a:12:08:10:d2:07:e1:92:f8:51:6b:c1:78:a5:d4:4f: 97:cb:e8:c0:d2:28:35:22:f2:fe:bd:1e:02:3a:0b:c1:99:fe: 88:56:08:56:87:bb:eb:b4:ce:9a:e2:d6:95:9f:7a:0c:f6:77: ad:ec:93:7a:3a:93:65:33:61:aa:f4:b1:21:c1:5f:aa:6b:22: 0b:05:48:89:78:44:d5:85:6a:37:d4:73:e0:df:4f:61:04:97: cb:54:1d:4a:9e:cc:90:38:2d:f9:f3:be:7a:30:14:5c:4b:f0: 85:c5:3d:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNDI0MTgxMTU0WhcNMjUwNTAxMTgxMTU0WjAYMRYwFAYD VQQDEw02ODBhN2VlYi00ZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogsE/MFxJfKFpkp+qQCch1hEIRztiGfWU4pPglMFWZitXrd1c6ekw0gs057W SP9Jen0wzqN1xqyTA3bz2fjjBIHU20RLnbG9zk1txEO1F5+0IeGkDX9VGqULeYZl y0ZkIwPBVUB3iJzKZOpfxGFIfo/xKoHQCGWgpQ+b4E0yubPGWRd7w2aBjuK4p/jt OuVF1PfcT1KnwxPXRRU0YJGLij3Mh/rRSAvRgjlYRGyzE3RNPDaqvMylWu8avp0c AFVC54GMH9ZkUWo650h7sE9mow09QPWCn4l5s8+ky07e4kE28YlbNKlydcibgAvn vgrM8v1fBJbFqzozNXxFnY4OIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbh2+iE QzKCn/5ci0Vi1CemZCD1MB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlGpf4PS14QqqK2o9xcNJhzerZSnAZuSanYEL0IY0jNLt7xCEmHFKY V1dXEMOuBqS9aZcuU6FWc4e02f9m3lhb1WjDvzUY0xiK6kCnSDuAQu6e58wWua5R sxE1yZD97T7MP7vp8cIrfuCf0VgsvQK38SC3vDYUTKWOPp57X73dJpZxpmst6GOn +AYFBHDFtk2Hw4oSCBDSB+GS+FFrwXil1E+Xy+jA0ig1IvL+vR4COgvBmf6IVghW h7vrtM6a4taVn3oM9net7JN6OpNlM2Gq9LEhwV+qayILBUiJeETVhWo31HPg309h BJfLVB1KnsyQOC358756MBRcS/CFxT05 -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:34 2025 by rpki-client