$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: SuHCLTBG92Qt/sxSPo6PitWdI6KxpH4a09nMw3GocjI= Subject key identifier: 57:C3:CA:86:E7:CA:55:43:63:1E:60:DA:12:4A:AA:5B:98:D9:9D:24 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0230 Signing time: Fri 03 May 2024 04:07:50 +0000 Manifest this update: Fri 03 May 2024 04:07:49 +0000 Manifest next update: Fri 10 May 2024 04:07:49 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: p/py+WDWMAYXtTqPBzsbIoyhY06xRaIZYsEDbcVJP2c=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: X3VVD9eC8O0W7R9IeKS2nXGLKBHkLWTm4TmiESYd3Dg=) 3: 129A21B0DC1611ECAACFC563C4F9AE02.roa (hash: 5lEvngN+860DIPtDP1jQZ1cLSJ3eijMJ3OZtwv/uxtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 04:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: May 3 04:07:49 2024 GMT Not After : May 10 04:07:49 2024 GMT Subject: CN=66346316-25a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2a:2c:48:80:1d:16:96:ba:3f:84:93:32:c4: 38:a9:58:62:33:1d:89:99:27:18:3a:0f:45:b8:b7: cf:82:25:23:cf:a9:cc:f0:ba:77:32:b5:61:49:a4: 96:de:44:84:ec:4b:e2:7f:7f:94:4f:1a:cb:b2:5f: 91:98:11:f9:c4:69:76:8f:ce:a0:4e:a5:c6:9d:45: 9b:b6:00:fd:1f:03:9c:78:f2:09:83:6d:75:8b:4e: c6:14:24:6c:82:13:05:39:66:ba:cc:b5:d8:7d:40: 3a:aa:8a:db:4d:d6:cb:0f:7b:b5:04:02:a9:8c:f9: de:b1:f3:1f:c7:43:5b:9b:56:f7:91:4c:17:bc:39: 30:9c:40:f9:b2:ee:cf:14:5c:a3:00:ef:50:54:1f: cd:e7:c5:0b:44:31:a5:f5:75:56:34:96:37:41:2c: 4c:81:bf:37:3f:97:77:cf:f3:6a:6b:59:df:22:13: 69:65:22:83:ff:9d:33:91:42:27:da:85:e4:09:07: 5e:d4:08:6b:fd:7f:27:0f:45:8f:f5:4b:b8:28:e8: f5:a6:3d:9b:9c:de:c6:51:0d:c0:71:72:ac:28:0e: 52:c0:4a:5f:ee:94:e3:1d:14:31:0f:ce:12:19:6a: 03:06:b3:59:75:9d:2c:03:b3:77:57:2f:f4:3d:a3: 59:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C3:CA:86:E7:CA:55:43:63:1E:60:DA:12:4A:AA:5B:98:D9:9D:24 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:90:28:ef:0c:dc:42:20:d3:96:30:23:20:d8:c6:6d:23:7f: 37:38:85:eb:0c:0e:f2:9a:60:a9:a1:82:c4:38:17:00:3b:57: 5f:be:d5:09:27:37:27:00:6b:0b:a2:93:80:f3:df:54:65:93: 92:a2:53:d7:a9:0d:93:07:31:50:b8:74:a8:c7:13:7a:21:65: ff:96:4d:75:ec:a9:b4:79:c8:ce:e5:c6:67:8a:22:9d:85:84: d5:00:5f:5e:59:bd:74:64:48:a7:d3:d4:70:63:dc:12:91:c5: 0d:42:36:f6:0c:88:cf:bc:ef:e5:ea:a0:b3:f2:ce:a4:3d:46: 1b:1a:50:bd:4a:c5:ea:ad:4c:b8:29:08:27:6a:1d:9c:a1:2b: ed:66:b4:c0:6a:ab:69:32:49:6f:c3:07:d0:33:0e:93:06:cb: 69:fe:35:d8:1a:77:da:80:34:e8:d7:d3:ff:36:cb:e6:15:88: a3:cb:1d:75:ee:00:55:4d:52:26:53:1f:f1:9c:25:67:15:fa: 59:a0:87:69:1e:88:ea:16:fe:b1:df:19:02:cc:8f:cb:75:40: 8c:16:80:7e:6d:d1:19:5a:ed:64:d1:81:86:53:e4:67:56:da: 42:27:ae:04:dc:be:8d:7b:41:f6:11:2c:e5:13:8f:6b:20:b0: 9d:a3:55:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjQwNTAzMDQwNzQ5WhcNMjQwNTEwMDQwNzQ5WjAYMRYwFAYD VQQDEw02NjM0NjMxNi0yNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCosSIAdFpa6P4STMsQ4qVhiMx2JmScYOg9FuLfPgiUjz6nM8Lp3MrVhSaSW 3kSE7Evif3+UTxrLsl+RmBH5xGl2j86gTqXGnUWbtgD9HwOcePIJg211i07GFCRs ghMFOWa6zLXYfUA6qorbTdbLD3u1BAKpjPnesfMfx0Nbm1b3kUwXvDkwnED5su7P FFyjAO9QVB/N58ULRDGl9XVWNJY3QSxMgb83P5d3z/Nqa1nfIhNpZSKD/50zkUIn 2oXkCQde1Ahr/X8nD0WP9Uu4KOj1pj2bnN7GUQ3AcXKsKA5SwEpf7pTjHRQxD84S GWoDBrNZdZ0sA7N3Vy/0PaNZgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfDyobn ylVDYx5g2hJKqluY2Z0kMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzkCjvDNxCINOWMCMg2MZtI383OIXrDA7ymmCpoYLEOBcAO1dfvtUJ JzcnAGsLopOA899UZZOSolPXqQ2TBzFQuHSoxxN6IWX/lk117Km0ecjO5cZniiKd hYTVAF9eWb10ZEin09RwY9wSkcUNQjb2DIjPvO/l6qCz8s6kPUYbGlC9SsXqrUy4 KQgnah2coSvtZrTAaqtpMklvwwfQMw6TBstp/jXYGnfagDTo19P/NsvmFYijyx11 7gBVTVImUx/xnCVnFfpZoIdpHojqFv6x3xkCzI/LdUCMFoB+bdEZWu1k0YGGU+Rn VtpCJ64E3L6Ne0H2ESzlE49rILCdo1Vo -----END CERTIFICATE-----Generated at Fri May 3 05:32:36 2024 by rpki-client on console-ams.rpki-client.org