$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft File: Qb--vmNSH7BO2BI8aOXAza9dBc0.mft (raw, json) Hash identifier: XpkhQyr7dqKA3B4lD1P7dF+nuDwDyrDYK6ND/PIcm0c= Subject key identifier: 59:C5:E6:ED:DD:B0:D1:9F:74:23:5C:18:E8:D8:5B:18:F3:F3:85:C4 Authority key identifier: 41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD Certificate issuer: /CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft Manifest number: 037B Signing time: Sun 01 Jun 2025 01:07:00 +0000 Manifest this update: Sun 01 Jun 2025 01:07:00 +0000 Manifest next update: Sun 08 Jun 2025 01:07:00 +0000 Files and hashes: 1: Qb--vmNSH7BO2BI8aOXAza9dBc0.crl (hash: bWZOBSJlwa9kpi6RZ5SSMr/64VfJNj8kgHEOtQErGko=) 2: EE8EAEDC377F11EE92674430C4F9AE02.roa (hash: XUINDcHIDNHHzShIR5UbuMY4rtr/62wcaswBNnwgnig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982, serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Validity Not Before: Jun 1 01:07:00 2025 GMT Not After : Jun 8 01:07:00 2025 GMT Subject: CN=683ba7b4-c550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cc:f6:74:b2:90:19:ea:4d:58:2b:11:4e:ba: d9:1e:66:3f:89:63:27:b1:62:97:51:92:9e:f3:44: 1b:21:fb:bd:eb:1f:3c:6b:6a:a2:fd:2f:b1:64:57: a6:0d:6f:1a:40:de:f4:9e:f4:f7:35:21:5c:3d:ae: 49:0e:0c:88:a8:be:6d:25:10:e5:9a:20:65:39:03: 4b:44:a4:a1:2d:24:1d:c2:91:7e:4b:e0:28:6c:8b: 96:85:36:75:53:1e:7e:98:59:c4:08:3e:64:9f:6b: 8f:c9:33:3c:84:a1:af:fa:78:be:dd:37:84:c2:c8: e6:9a:e4:eb:25:24:33:ff:63:50:71:08:57:ba:31: ef:aa:74:68:1a:07:41:5e:d1:67:73:ba:29:c3:0c: 26:4e:36:10:be:33:c3:05:dd:eb:15:2d:4f:07:25: b5:4d:46:75:51:cf:23:7d:eb:a5:29:7f:9e:35:4d: bf:b2:c5:da:9c:49:12:bd:a0:18:33:38:99:8b:18: 6d:4e:2e:dc:06:05:94:42:9b:f0:b1:94:67:3c:9c: 25:6d:fa:50:ac:90:3d:56:6e:df:40:06:94:cb:08: 5e:27:b2:c6:1f:a4:2d:ec:62:55:0a:ff:39:f9:56: 0a:63:36:3d:d9:f2:79:31:5a:05:ec:4f:2b:50:58: 46:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C5:E6:ED:DD:B0:D1:9F:74:23:5C:18:E8:D8:5B:18:F3:F3:85:C4 X509v3 Authority Key Identifier: keyid:41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e7:8d:bf:b5:d3:f6:7c:c1:72:db:d2:d2:7c:54:63:22:bf: bb:4f:07:75:a4:e6:20:6e:23:16:9c:01:ac:84:ee:ab:54:c7: 9e:ff:99:c9:5b:13:2b:c9:50:7a:d3:00:68:fe:2f:fb:37:c4: 99:1f:3c:40:59:40:fb:64:e0:70:92:20:ff:35:63:82:96:09: fa:ad:39:6f:f5:95:a0:f3:27:d3:e2:fe:76:b6:bc:e1:50:55: 3a:07:23:05:c3:17:66:9e:8a:34:da:fa:ae:52:09:bd:ca:96: 05:00:46:68:c8:64:9d:1e:97:6d:7a:5a:06:93:e4:f6:4a:70: df:61:f1:5f:2c:24:65:ae:48:e4:3b:ae:48:1d:9c:95:ad:0e: e1:2f:13:78:21:7e:d1:c3:54:da:9c:a3:4c:0a:92:2f:4f:73: 2a:0b:40:f8:20:44:1e:b9:98:e7:41:cf:f4:e7:46:a6:66:fc: de:98:3e:b3:7d:65:80:6f:1b:21:65:be:53:13:0d:11:f2:48: 46:71:ad:03:da:69:8c:7f:a0:ef:d8:83:b1:77:2b:72:e3:f5: e0:8b:fd:35:17:ab:29:4e:bb:5a:c2:2d:b0:e3:cb:a3:ce:d9: d2:6b:b3:17:1f:f6:c4:54:83:57:c5:8d:47:e0:71:be:8e:67: 34:1a:19:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKDQxQkZCRUJFNjM1MjFGQjA0RUQ4MTIzQzY4RTVDMENE QUY1RDA1Q0QwHhcNMjUwNjAxMDEwNzAwWhcNMjUwNjA4MDEwNzAwWjAYMRYwFAYD VQQDEw02ODNiYTdiNC1jNTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Mz2dLKQGepNWCsRTrrZHmY/iWMnsWKXUZKe80QbIfu96x88a2qi/S+xZFem DW8aQN70nvT3NSFcPa5JDgyIqL5tJRDlmiBlOQNLRKShLSQdwpF+S+AobIuWhTZ1 Ux5+mFnECD5kn2uPyTM8hKGv+ni+3TeEwsjmmuTrJSQz/2NQcQhXujHvqnRoGgdB XtFnc7opwwwmTjYQvjPDBd3rFS1PByW1TUZ1Uc8jfeulKX+eNU2/ssXanEkSvaAY MziZixhtTi7cBgWUQpvwsZRnPJwlbfpQrJA9Vm7fQAaUywheJ7LGH6Qt7GJVCv85 +VYKYzY92fJ5MVoF7E8rUFhG/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnF5u3d sNGfdCNcGOjYWxjz84XEMB8GA1UdIwQYMBaAFEG/vr5jUh+wTtgSPGjlwM2vXQXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9DRjIwNUM2MEFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3Qk8yQkk4YU9YQXphOWRC YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FiLS12bU5TSDdCTzJCSThhT1hBemE5ZEJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk4Mi9DRjIwNUM2MEFDMTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3 Qk8yQkk4YU9YQXphOWRCYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy542/tdP2fMFy29LSfFRjIr+7Twd1pOYgbiMWnAGshO6rVMee/5nJ WxMryVB60wBo/i/7N8SZHzxAWUD7ZOBwkiD/NWOClgn6rTlv9ZWg8yfT4v52trzh UFU6ByMFwxdmnoo02vquUgm9ypYFAEZoyGSdHpdteloGk+T2SnDfYfFfLCRlrkjk O65IHZyVrQ7hLxN4IX7Rw1TanKNMCpIvT3MqC0D4IEQeuZjnQc/050amZvzemD6z fWWAbxshZb5TEw0R8khGca0D2mmMf6Dv2IOxdyty4/Xgi/01F6spTrtawi2w48uj ztnSa7MXH/bEVINXxY1H4HG+jmc0Ghmi -----END CERTIFICATE-----Generated at Mon Jun 2 19:52:33 2025 by rpki-client