$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: etPvr5Y2hv2mLMM7+Tz0n1jPfqwvbddVtro8wd6nDPE= Subject key identifier: AF:94:1B:D0:5B:4A:15:36:C0:69:D4:51:F0:D7:57:49:5D:61:E1:21 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0C8E Signing time: Mon 28 Apr 2025 18:27:43 +0000 Manifest this update: Mon 28 Apr 2025 18:27:43 +0000 Manifest next update: Mon 05 May 2025 18:27:43 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: TGy1eaMqpLB3JBnv0ltqIAlUDimecgbvenq94NQp8Lk=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: Jp6mQKHaK0RPPkzdEgb8fiAdpAI92DoBqq2sE6ZQo2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Apr 28 18:27:43 2025 GMT Not After : May 5 18:27:43 2025 GMT Subject: CN=680fc89f-bbab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0e:6d:34:2d:fd:a1:9d:22:33:75:ef:41:09: e8:97:83:9b:5c:0e:3a:9b:9b:65:4b:4d:63:18:86: 59:8f:30:7c:22:93:3d:de:ca:f8:90:41:1c:fd:e0: 0d:8a:be:a1:52:37:c1:7b:47:a9:52:40:ba:e1:db: bf:be:1d:d7:10:09:c2:b9:cb:21:c1:c2:12:6a:e1: 1a:7c:a3:0d:75:b9:c4:7b:c0:41:8f:d7:dc:9d:17: 08:ec:57:a1:e3:49:7a:3c:88:2c:7a:3e:ad:06:a3: 9d:7e:c6:fd:5f:78:89:d3:54:dc:e7:8e:af:43:14: c7:c6:6d:f0:28:44:5f:fc:69:46:b5:37:02:3f:22: 4d:48:39:6e:cc:47:53:90:d6:44:a0:aa:71:8d:e8: d8:42:65:38:73:8a:68:fd:e2:f3:5b:a9:8f:03:34: e8:f3:11:4c:09:0a:7c:22:f9:bd:b6:74:21:32:9b: 4c:7f:20:e2:3f:20:07:63:fb:4f:43:11:5f:18:26: 3b:1d:81:32:f4:83:10:7a:3c:8d:03:da:37:0a:dd: e6:33:86:ea:da:8a:40:76:c4:e3:8f:be:2f:12:de: f2:e7:36:66:f0:4e:b3:4d:97:d7:4e:74:67:22:59: fd:1b:85:cf:46:e5:9f:88:15:9a:d6:43:d8:59:b4: 25:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:94:1B:D0:5B:4A:15:36:C0:69:D4:51:F0:D7:57:49:5D:61:E1:21 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ae:32:05:d1:cf:40:8c:0f:50:fd:bc:85:ea:14:55:44:ed: a1:69:60:d3:1d:bb:39:25:f8:34:0c:e2:72:7b:3c:1a:48:e6: a9:51:ef:7b:e4:5c:ae:8e:c9:e2:f4:40:f1:91:31:7a:ef:fc: dd:9b:f8:8b:a2:d3:78:d6:e3:58:95:53:e8:9e:8a:60:41:9d: 79:11:59:30:bb:8d:b6:9f:da:f2:82:22:f5:a2:bd:ad:71:45: 1b:04:9a:ad:b0:38:ef:90:73:66:f8:36:50:e8:2b:f4:8a:70: f9:9f:f8:f1:6a:8c:50:bc:2b:2e:6a:7b:9c:45:cc:11:03:1c: 93:ad:09:1a:7f:97:8e:93:00:09:78:10:3b:cb:0c:67:ec:71: 00:de:1a:d1:1d:ef:69:61:7a:04:2b:fd:cc:17:c5:33:c8:a5: a9:4c:80:9e:a1:e2:58:95:f4:e8:75:26:a5:02:a0:6f:a9:cd: 85:a2:0c:eb:da:19:c7:b5:cd:dc:72:96:14:97:95:b1:35:b3: 32:96:65:02:c3:95:74:78:06:0a:d9:cb:52:71:14:9f:c2:37: 20:c8:0b:84:5a:eb:a6:f3:3b:fd:9e:7e:c9:fc:75:a8:07:11: 9f:4b:94:ab:19:85:ec:13:2e:b9:c9:79:e4:f1:a1:e5:03:b8: 9f:73:61:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjUwNDI4MTgyNzQzWhcNMjUwNTA1MTgyNzQzWjAYMRYwFAYD VQQDEw02ODBmYzg5Zi1iYmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Q5tNC39oZ0iM3XvQQnol4ObXA46m5tlS01jGIZZjzB8IpM93sr4kEEc/eAN ir6hUjfBe0epUkC64du/vh3XEAnCucshwcISauEafKMNdbnEe8BBj9fcnRcI7Feh 40l6PIgsej6tBqOdfsb9X3iJ01Tc546vQxTHxm3wKERf/GlGtTcCPyJNSDluzEdT kNZEoKpxjejYQmU4c4po/eLzW6mPAzTo8xFMCQp8Ivm9tnQhMptMfyDiPyAHY/tP QxFfGCY7HYEy9IMQejyNA9o3Ct3mM4bq2opAdsTjj74vEt7y5zZm8E6zTZfXTnRn Iln9G4XPRuWfiBWa1kPYWbQlmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+UG9Bb ShU2wGnUUfDXV0ldYeEhMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmrjIF0c9AjA9Q/byF6hRVRO2haWDTHbs5Jfg0DOJyezwaSOapUe97 5Fyujsni9EDxkTF67/zdm/iLotN41uNYlVPonopgQZ15EVkwu422n9rygiL1or2t cUUbBJqtsDjvkHNm+DZQ6Cv0inD5n/jxaoxQvCsuanucRcwRAxyTrQkaf5eOkwAJ eBA7ywxn7HEA3hrRHe9pYXoEK/3MF8UzyKWpTICeoeJYlfTodSalAqBvqc2Fogzr 2hnHtc3ccpYUl5WxNbMylmUCw5V0eAYK2ctScRSfwjcgyAuEWuum8zv9nn7J/HWo BxGfS5SrGYXsEy65yXnk8aHlA7ifc2Fr -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:25 2025 by rpki-client on console.sobornost.net