$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft File: Qb--vmNSH7BO2BI8aOXAza9dBc0.mft (raw, json) Hash identifier: IGyHNL4e4yGIArULQLs2mAecnXYsVyVMBBAJGdthSgY= Subject key identifier: 12:59:7F:63:59:54:5C:44:31:25:15:15:44:E4:46:D9:60:B0:C1:5D Authority key identifier: 41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD Certificate issuer: /CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft Manifest number: 02B8 Signing time: Fri 17 May 2024 03:39:33 +0000 Manifest this update: Fri 17 May 2024 03:39:32 +0000 Manifest next update: Fri 24 May 2024 03:39:32 +0000 Files and hashes: 1: Qb--vmNSH7BO2BI8aOXAza9dBc0.crl (hash: todZZE/53JoHNQhjCttIpFnbPuzn3MQYwVy7l8ZJJCA=) 2: 14C46870AC2711EC9977D033C4F9AE02.roa (hash: 33FnBakoRexDzsMRHSuSOVEGleMMnDW66uVT94J5oPA=) 3: EE8EAEDC377F11EE92674430C4F9AE02.roa (hash: 4ZihWaiz0zd8ffyeV14cgNX7er0MJTfGdRltrv8K/dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Validity Not Before: May 17 03:39:32 2024 GMT Not After : May 24 03:39:32 2024 GMT Subject: CN=6646d175-79d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:36:dd:85:a9:8c:24:ab:85:03:4e:ba:43:0d: 52:87:b5:b2:98:23:d6:d4:80:81:e6:eb:34:3a:b5: c9:46:e5:13:61:90:c6:3a:f5:27:d8:76:ac:43:93: 73:dc:ff:34:33:6c:9f:00:f4:90:0d:c2:ad:81:44: cc:90:5b:3e:88:06:ba:2e:eb:3b:d9:b0:a6:35:de: 6f:e7:af:83:38:5b:3c:e9:3d:df:ba:b3:a1:51:fb: e8:b6:78:2b:3a:7b:0c:f1:a0:75:c9:50:ad:e7:86: 7c:04:0f:9b:c7:de:99:24:26:62:55:01:13:73:cc: 8a:02:d8:46:6f:09:c1:65:7e:94:8a:1f:0b:b6:9c: cb:cd:56:f5:5a:b8:bd:a4:6d:3b:99:20:85:b8:21: 3b:02:30:72:df:16:ed:81:e3:34:72:72:37:9b:c1: b8:f8:8c:42:4e:a9:93:c1:52:55:bc:62:c9:53:42: 67:cc:f3:c9:05:3e:76:75:1a:aa:75:1c:75:59:29: 07:1a:7c:f7:d5:04:74:c3:92:4d:ba:31:4b:19:b8: 36:57:f7:af:d2:02:08:48:c7:51:7a:0e:91:c8:9a: b4:a7:73:f6:5b:8d:8a:ae:1b:dc:88:3f:65:b9:f1: c9:f8:b5:b4:68:52:61:23:24:91:48:5f:10:19:74: 01:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:59:7F:63:59:54:5C:44:31:25:15:15:44:E4:46:D9:60:B0:C1:5D X509v3 Authority Key Identifier: keyid:41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:b3:8b:69:4c:68:eb:f0:b3:5b:95:ca:71:b1:94:c7:7a:af: 47:50:2c:9d:a3:36:0a:f2:b1:26:bb:fa:a8:03:3b:89:e1:22: 5e:82:8b:68:56:49:ba:f2:69:4e:ee:43:e4:93:ac:ef:da:f6: 0d:a9:2f:81:23:b0:85:64:b0:e3:5d:10:0d:21:af:4f:a4:99: e2:ae:29:a1:b7:ff:4b:ca:64:f6:95:20:49:e5:f1:f3:29:95: ed:98:18:7f:70:5f:a7:02:65:fb:cf:0d:ba:74:3d:bc:04:ad: 48:2a:4f:02:c6:e9:ea:d3:5f:18:22:c9:38:1f:3c:a8:9c:93: ec:8b:2e:e8:f6:cf:2a:97:96:00:88:65:94:e9:f7:cb:ea:49: d8:03:29:d7:87:0a:a0:de:b0:97:f8:4b:a8:60:da:82:f6:87: 96:f3:ce:bc:68:0a:72:7d:dd:45:5c:60:95:a0:01:19:fa:7e: a0:02:05:91:ba:24:e8:2a:fd:49:c8:7f:c7:6d:d4:17:b8:62: 32:d5:4d:ef:a5:08:c3:bd:e5:2a:c0:9a:da:b0:c0:eb:37:4d: a0:42:14:7a:8a:78:f6:b3:d9:65:19:8b:97:90:d2:b3:0b:57: 4a:b0:9e:d5:c1:10:d1:1b:2a:1c:bb:93:8a:58:63:ee:0a:4a: ac:b9:0c:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKDQxQkZCRUJFNjM1MjFGQjA0RUQ4MTIzQzY4RTVDMENE QUY1RDA1Q0QwHhcNMjQwNTE3MDMzOTMyWhcNMjQwNTI0MDMzOTMyWjAYMRYwFAYD VQQDEw02NjQ2ZDE3NS03OWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTbdhamMJKuFA066Qw1Sh7WymCPW1ICB5us0OrXJRuUTYZDGOvUn2HasQ5Nz 3P80M2yfAPSQDcKtgUTMkFs+iAa6Lus72bCmNd5v56+DOFs86T3furOhUfvotngr OnsM8aB1yVCt54Z8BA+bx96ZJCZiVQETc8yKAthGbwnBZX6Uih8LtpzLzVb1Wri9 pG07mSCFuCE7AjBy3xbtgeM0cnI3m8G4+IxCTqmTwVJVvGLJU0JnzPPJBT52dRqq dRx1WSkHGnz31QR0w5JNujFLGbg2V/ev0gIISMdReg6RyJq0p3P2W42KrhvciD9l ufHJ+LW0aFJhIySRSF8QGXQBTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJZf2NZ VFxEMSUVFUTkRtlgsMFdMB8GA1UdIwQYMBaAFEG/vr5jUh+wTtgSPGjlwM2vXQXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9DRjIwNUM2MEFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3Qk8yQkk4YU9YQXphOWRC YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FiLS12bU5TSDdCTzJCSThhT1hBemE5ZEJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk4Mi9DRjIwNUM2MEFDMTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3 Qk8yQkk4YU9YQXphOWRCYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZs4tpTGjr8LNblcpxsZTHeq9HUCydozYK8rEmu/qoAzuJ4SJegoto Vkm68mlO7kPkk6zv2vYNqS+BI7CFZLDjXRANIa9PpJnirimht/9LymT2lSBJ5fHz KZXtmBh/cF+nAmX7zw26dD28BK1IKk8Cxunq018YIsk4HzyonJPsiy7o9s8ql5YA iGWU6ffL6knYAynXhwqg3rCX+EuoYNqC9oeW8868aApyfd1FXGCVoAEZ+n6gAgWR uiToKv1JyH/HbdQXuGIy1U3vpQjDveUqwJrasMDrN02gQhR6inj2s9llGYuXkNKz C1dKsJ7VwRDRGyocu5OKWGPuCkqsuQwC -----END CERTIFICATE-----Generated at Fri May 17 04:44:31 2024 by rpki-client on console-ams.rpki-client.org