$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft File: Qb--vmNSH7BO2BI8aOXAza9dBc0.mft (raw, json) Hash identifier: +uUlkd3Dg/FyDm28y2Zku+GcOB37CznF1QR4vgYs/ZM= Subject key identifier: 66:F9:68:F0:D9:3E:EB:BA:AA:0D:4F:74:92:24:5D:71:F3:8B:B9:A8 Authority key identifier: 41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD Certificate issuer: /CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Certificate serial: 0323 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft Manifest number: 0318 Signing time: Thu 21 Nov 2024 00:45:34 +0000 Manifest this update: Thu 21 Nov 2024 00:45:34 +0000 Manifest next update: Thu 28 Nov 2024 00:45:34 +0000 Files and hashes: 1: Qb--vmNSH7BO2BI8aOXAza9dBc0.crl (hash: hB41vyiNTA8T9HuAf5/+GFXuY4eWrMzrsmfpPEedV2A=) 2: EE8EAEDC377F11EE92674430C4F9AE02.roa (hash: 4ZihWaiz0zd8ffyeV14cgNX7er0MJTfGdRltrv8K/dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Validity Not Before: Nov 21 00:45:34 2024 GMT Not After : Nov 28 00:45:34 2024 GMT Subject: CN=673e82ae-5e08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:bb:c8:8f:eb:bd:69:d2:43:db:d3:21:72: a3:66:12:88:b8:53:a4:e0:40:c2:fd:26:a6:cb:2e: 8b:4f:65:23:47:ed:62:6e:0f:d2:95:36:ac:7e:26: 4f:94:d8:71:59:63:fd:9a:05:5b:27:57:3b:bc:e5: cb:b4:29:f3:15:12:b9:6e:54:6e:af:c2:4e:4f:f2: b6:3b:a8:01:b9:a8:ab:de:22:0d:1f:7e:a6:79:10: 71:ae:c6:d0:60:4e:b4:6f:87:d4:bf:56:99:6e:c4: 3f:59:96:76:2e:48:b2:f8:b4:e6:5e:5c:d4:6a:a6: 63:b6:0c:58:23:20:38:16:a6:ec:7c:45:b0:ee:6a: 2a:88:33:be:7b:b0:57:23:d7:c5:54:5f:fe:24:a7: 6a:73:65:78:b6:d1:18:64:f1:4d:1a:82:a5:db:c9: e8:ad:34:ac:c5:f5:99:92:44:63:c8:b1:00:4d:61: ca:67:52:61:a1:8d:3c:87:a2:80:2c:07:cb:42:a6: f6:95:4f:bf:a8:ef:d3:6f:1c:72:95:5f:38:86:59: 83:fe:96:ac:c2:35:ed:59:c8:d5:76:73:ef:74:06: 00:4b:7d:29:c3:7f:05:d3:16:53:1a:74:3c:71:6c: ba:e8:4d:60:eb:ce:e9:54:07:8f:d1:21:e0:be:1f: 49:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F9:68:F0:D9:3E:EB:BA:AA:0D:4F:74:92:24:5D:71:F3:8B:B9:A8 X509v3 Authority Key Identifier: keyid:41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:73:aa:d3:25:5f:bd:3d:ab:48:bf:a5:29:aa:14:f6:ed:89: 8f:e5:76:52:50:a8:b4:0a:b4:b8:a0:1e:97:93:ad:6e:85:b3: f1:1c:71:c7:91:f0:f1:38:f2:f2:e9:cd:c9:5b:7f:cd:ce:c5: b1:01:7f:8e:d3:21:35:62:74:bc:e1:85:19:9b:82:1f:71:8a: b6:2a:ab:3c:b7:fd:38:76:0c:13:1f:60:7a:d3:d4:c8:a1:7a: 08:0a:82:72:43:cb:c4:ad:21:f3:fb:89:54:b2:41:52:05:6d: 14:22:7c:ee:30:af:cf:d6:6a:4b:6f:d7:48:a6:a1:97:25:f8: 01:b8:cf:32:2a:56:1d:ec:a1:6b:55:e1:66:80:d3:ff:53:78: 60:af:e8:d1:f0:7a:6f:9d:5c:4d:0f:f9:d2:67:94:73:99:c4: 3f:83:a3:42:76:00:79:db:ec:d6:05:a8:df:44:62:d9:57:6a: 3e:40:87:67:c2:15:43:66:6f:05:99:2a:d9:c6:8a:2f:0b:7e: 5c:94:01:fe:16:36:f3:3b:3a:2e:65:9e:41:11:58:09:77:ef: d8:70:23:65:02:40:e3:fc:26:e1:06:f8:8e:a3:8e:61:2b:0a: 77:a2:ce:d5:f9:22:94:cb:80:70:89:7b:15:cf:0e:cf:41:0a: 97:55:80:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKDQxQkZCRUJFNjM1MjFGQjA0RUQ4MTIzQzY4RTVDMENE QUY1RDA1Q0QwHhcNMjQxMTIxMDA0NTM0WhcNMjQxMTI4MDA0NTM0WjAYMRYwFAYD VQQDEw02NzNlODJhZS01ZTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEW7yI/rvWnSQ9vTIXKjZhKIuFOk4EDC/Samyy6LT2UjR+1ibg/SlTasfiZP lNhxWWP9mgVbJ1c7vOXLtCnzFRK5blRur8JOT/K2O6gBuair3iINH36meRBxrsbQ YE60b4fUv1aZbsQ/WZZ2Lkiy+LTmXlzUaqZjtgxYIyA4FqbsfEWw7moqiDO+e7BX I9fFVF/+JKdqc2V4ttEYZPFNGoKl28norTSsxfWZkkRjyLEATWHKZ1JhoY08h6KA LAfLQqb2lU+/qO/TbxxylV84hlmD/paswjXtWcjVdnPvdAYAS30pw38F0xZTGnQ8 cWy66E1g687pVAeP0SHgvh9JSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGb5aPDZ Puu6qg1PdJIkXXHzi7moMB8GA1UdIwQYMBaAFEG/vr5jUh+wTtgSPGjlwM2vXQXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9DRjIwNUM2MEFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3Qk8yQkk4YU9YQXphOWRC YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FiLS12bU5TSDdCTzJCSThhT1hBemE5ZEJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk4Mi9DRjIwNUM2MEFDMTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3 Qk8yQkk4YU9YQXphOWRCYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxc6rTJV+9PatIv6UpqhT27YmP5XZSUKi0CrS4oB6Xk61uhbPxHHHH kfDxOPLy6c3JW3/NzsWxAX+O0yE1YnS84YUZm4IfcYq2Kqs8t/04dgwTH2B609TI oXoICoJyQ8vErSHz+4lUskFSBW0UInzuMK/P1mpLb9dIpqGXJfgBuM8yKlYd7KFr VeFmgNP/U3hgr+jR8HpvnVxND/nSZ5RzmcQ/g6NCdgB52+zWBajfRGLZV2o+QIdn whVDZm8FmSrZxoovC35clAH+FjbzOzouZZ5BEVgJd+/YcCNlAkDj/CbhBviOo45h Kwp3os7V+SKUy4BwiXsVzw7PQQqXVYD2 -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:55 2024 by rpki-client on console-fra.rpki-client.org