$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: Gs2LuLX6P27Rh3nbCTc2bStQqNKHjgR7RdAkE36HqLE= Subject key identifier: 1F:14:3A:04:52:06:D9:AB:3C:79:DF:6F:09:31:AB:3F:14:9D:95:F5 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0C95 Signing time: Mon 12 May 2025 18:05:57 +0000 Manifest this update: Mon 12 May 2025 18:05:56 +0000 Manifest next update: Mon 19 May 2025 18:05:56 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: 0Yz/utgu+ATnQoxsnJ4KxwJ1nlA7inj5wgdT4aYB/yI=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: May 12 18:05:56 2025 GMT Not After : May 19 18:05:56 2025 GMT Subject: CN=68223884-10a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:65:d9:00:8a:6f:f6:ed:74:ad:f9:2a:56: d1:7c:dc:ce:56:3e:e7:02:23:64:15:7b:4a:9e:68: 28:dd:19:e3:3a:ad:c5:58:93:ee:24:0e:f5:4a:9f: cc:9e:ab:75:d1:62:fa:95:03:e5:ee:a4:54:69:70: 15:23:55:f4:cc:63:72:bd:f0:3e:ed:21:cc:f4:06: ff:95:f6:b6:91:d9:be:df:29:c0:bb:c6:f7:2d:f1: 8d:d5:39:39:05:ec:03:5f:4b:86:88:90:55:87:67: c3:2e:f1:6f:c6:50:bf:65:5f:98:64:8f:70:d7:13: 9f:e8:18:83:3c:74:63:4a:3a:90:6e:97:d1:9e:da: 7a:30:d0:f0:da:aa:91:96:24:b7:7b:8b:6b:01:04: 27:21:bb:a0:63:23:6a:22:f1:78:94:92:9e:18:97: ac:ae:1c:7c:0c:0a:15:26:a4:17:10:b4:68:ad:f4: 41:97:94:11:99:35:2f:37:e0:68:6f:f5:21:68:0a: 4a:35:af:34:d0:04:0a:3c:c0:f8:0a:14:86:f1:a0: e4:6a:27:19:d7:a3:66:8d:c8:35:a9:05:b2:27:5a: 06:ae:98:51:2a:97:c7:74:fb:1f:69:0a:86:14:21: 03:28:9e:9d:d1:dd:59:0a:1c:81:ba:52:e1:a2:ca: 27:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:14:3A:04:52:06:D9:AB:3C:79:DF:6F:09:31:AB:3F:14:9D:95:F5 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:7c:b2:81:0c:a6:4d:ac:f3:90:1e:35:e3:ad:25:ce:5b:4b: b0:6d:b9:80:a0:40:cd:62:82:ae:ee:86:a5:64:08:b7:a2:b9: 95:5f:9e:87:3e:ab:0d:73:51:ec:9c:12:bf:b2:c3:d9:34:45: 6d:82:bb:6f:0a:04:5c:a2:f3:93:af:4d:15:03:27:d9:5a:5d: 0f:1b:4d:82:4f:19:76:ad:91:88:ec:1f:d3:bd:10:68:e1:1f: 13:10:74:b6:45:e5:f0:53:99:07:38:13:1f:d7:1c:0f:bf:6b: 3f:64:fd:57:a5:dc:c6:bf:73:83:43:c2:59:35:76:f0:4d:2b: 2a:0c:a1:2b:e6:7f:6e:cf:47:26:41:bd:72:5b:4d:f3:27:82: b4:e2:c5:97:ac:59:49:10:71:0b:e8:c4:d4:89:25:10:27:0b: cd:1f:1b:79:eb:69:b9:5b:3f:c3:d3:5f:34:91:2e:4f:f0:08: 67:ff:96:45:d5:7c:33:c2:b3:c2:12:ad:1b:8c:b9:ce:04:ef: 2f:df:eb:8d:50:9d:82:5e:d8:98:a6:5a:22:72:e5:2e:16:41: 92:2f:bf:3b:96:9a:51:af:af:33:99:b0:db:74:f4:ee:3f:77: 0d:6a:bd:a2:8f:21:35:30:dd:5e:bb:f9:dd:da:31:6e:c8:45: f9:4d:0f:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNTEyMTgwNTU2WhcNMjUwNTE5MTgwNTU2WjAYMRYwFAYD VQQDEw02ODIyMzg4NC0xMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHtl2QCKb/btdK35KlbRfNzOVj7nAiNkFXtKnmgo3RnjOq3FWJPuJA71Sp/M nqt10WL6lQPl7qRUaXAVI1X0zGNyvfA+7SHM9Ab/lfa2kdm+3ynAu8b3LfGN1Tk5 BewDX0uGiJBVh2fDLvFvxlC/ZV+YZI9w1xOf6BiDPHRjSjqQbpfRntp6MNDw2qqR liS3e4trAQQnIbugYyNqIvF4lJKeGJesrhx8DAoVJqQXELRorfRBl5QRmTUvN+Bo b/UhaApKNa800AQKPMD4ChSG8aDkaicZ16Nmjcg1qQWyJ1oGrphRKpfHdPsfaQqG FCEDKJ6d0d1ZChyBulLhosonYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8UOgRS BtmrPHnfbwkxqz8UnZX1MB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVfLKBDKZNrPOQHjXjrSXOW0uwbbmAoEDNYoKu7oalZAi3ormVX56H PqsNc1HsnBK/ssPZNEVtgrtvCgRcovOTr00VAyfZWl0PG02CTxl2rZGI7B/TvRBo 4R8TEHS2ReXwU5kHOBMf1xwPv2s/ZP1XpdzGv3ODQ8JZNXbwTSsqDKEr5n9uz0cm Qb1yW03zJ4K04sWXrFlJEHEL6MTUiSUQJwvNHxt562m5Wz/D0180kS5P8Ahn/5ZF 1XwzwrPCEq0bjLnOBO8v3+uNUJ2CXtiYploicuUuFkGSL787lppRr68zmbDbdPTu P3cNar2ijyE1MN1eu/nd2jFuyEX5TQ9x -----END CERTIFICATE-----Generated at Wed May 14 17:16:28 2025 by rpki-client