$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: 5WLkhwP5e133sM5TUnm4+Du7pew193LK2MVHqGBGQxU= Subject key identifier: 93:F9:89:7E:84:41:7F:89:49:AF:43:93:9D:0E:61:14:7D:28:97:41 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 02F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 02F2 Signing time: Thu 15 May 2025 01:19:01 +0000 Manifest this update: Thu 15 May 2025 01:19:00 +0000 Manifest next update: Thu 22 May 2025 01:19:00 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: 91p6Gpa/Op+oUX5RxRZOX9Lzhp0xNWqyqJcaKSxz9t0=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: vSji2PW77227MPuRms4fNHOSHefJ2bW6akHMJ/kFIj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: May 15 01:19:00 2025 GMT Not After : May 22 01:19:00 2025 GMT Subject: CN=68254105-d6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:e9:ac:c9:d4:60:0c:e6:7f:b3:0f:83:a5: fc:d7:13:06:24:64:9a:d2:48:8c:73:66:8d:b4:2c: 45:ad:b6:8c:5d:d0:5e:97:1b:2c:a6:2f:1d:e6:6a: f8:3d:61:b5:7c:1d:ef:a5:d2:69:72:6b:69:7f:7a: 45:aa:26:f7:5f:76:64:ce:0f:35:e0:6d:83:1a:2f: ba:44:1a:21:00:f4:97:4c:83:c7:9a:05:0c:9e:4e: 6a:e8:24:cf:8e:e1:c8:6a:95:32:35:2c:0b:08:db: a1:6c:48:2c:76:0c:ff:79:8c:be:c6:b1:9c:9b:f1: a2:e1:fe:f8:35:82:12:bf:34:d2:95:74:63:79:8a: 09:17:2c:a4:fb:b8:c4:b4:62:d3:a8:f6:7f:b6:cb: e8:32:8f:d1:52:21:c1:86:7e:6b:67:0f:85:74:a0: 81:2d:8a:0f:ca:ff:7f:18:50:91:e1:e6:14:c3:60: f2:59:4b:fc:36:7e:d0:e0:a1:59:b3:89:ed:1a:3b: 93:3e:50:5f:04:e6:ba:4d:e2:6a:d5:eb:bf:5e:33: 30:36:20:13:46:26:cf:23:50:1d:92:5a:ed:4d:c3: e4:88:66:f2:21:a7:1f:2c:33:fc:a7:5c:fe:83:70: 54:09:10:7e:43:cd:50:16:25:1e:e4:9d:00:c5:05: bb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F9:89:7E:84:41:7F:89:49:AF:43:93:9D:0E:61:14:7D:28:97:41 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e2:80:9b:fc:c9:92:6c:54:70:c9:3b:76:bb:ba:e5:36:63: 14:3a:cc:35:92:85:f5:0d:80:0f:0c:19:56:6f:ff:62:42:ab: 03:2d:da:8e:d3:ef:4c:b5:e6:78:bf:d0:00:30:a5:19:84:2b: 4c:fd:f1:0c:26:7f:38:fb:2d:de:c1:0d:13:77:33:c8:0f:12: ca:c8:ad:d2:f9:5c:d1:c3:36:0a:32:c1:b1:16:b4:d1:4c:11: 87:3d:e3:5e:b5:09:95:b0:99:ba:cc:85:56:58:c4:31:cc:7f: 99:e5:8f:01:7a:c1:8c:09:81:72:5a:d5:f2:f6:16:22:28:f0: 8d:4f:55:14:f5:db:d7:82:26:6e:ab:7c:12:8b:63:5f:ba:79: ce:04:a8:30:af:d6:75:67:b8:dd:a0:b3:bd:a9:9f:40:df:79: 60:53:93:93:06:69:c4:dd:9d:9c:1c:1f:17:2c:e1:8c:ff:84: d4:5d:5c:01:3b:19:ce:ce:d3:63:57:f0:0e:97:a7:c8:c9:50: 43:23:b9:e0:97:06:13:0e:a9:73:61:c9:ad:a3:d5:7d:a5:88: 9d:07:c2:e3:cc:80:37:8e:2a:1b:01:d2:0c:d8:12:5f:1e:d4: a4:6d:22:d8:41:60:24:f8:e5:e5:73:1b:fa:f6:0c:6d:e9:6a: a4:99:63:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUwNTE1MDExOTAwWhcNMjUwNTIyMDExOTAwWjAYMRYwFAYD VQQDEw02ODI1NDEwNS1kNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWHprMnUYAzmf7MPg6X81xMGJGSa0kiMc2aNtCxFrbaMXdBelxsspi8d5mr4 PWG1fB3vpdJpcmtpf3pFqib3X3Zkzg814G2DGi+6RBohAPSXTIPHmgUMnk5q6CTP juHIapUyNSwLCNuhbEgsdgz/eYy+xrGcm/Gi4f74NYISvzTSlXRjeYoJFyyk+7jE tGLTqPZ/tsvoMo/RUiHBhn5rZw+FdKCBLYoPyv9/GFCR4eYUw2DyWUv8Nn7Q4KFZ s4ntGjuTPlBfBOa6TeJq1eu/XjMwNiATRibPI1AdklrtTcPkiGbyIacfLDP8p1z+ g3BUCRB+Q81QFiUe5J0AxQW7LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJP5iX6E QX+JSa9Dk50OYRR9KJdBMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz4oCb/MmSbFRwyTt2u7rlNmMUOsw1koX1DYAPDBlWb/9iQqsDLdqO 0+9MteZ4v9AAMKUZhCtM/fEMJn84+y3ewQ0TdzPIDxLKyK3S+VzRwzYKMsGxFrTR TBGHPeNetQmVsJm6zIVWWMQxzH+Z5Y8BesGMCYFyWtXy9hYiKPCNT1UU9dvXgiZu q3wSi2NfunnOBKgwr9Z1Z7jdoLO9qZ9A33lgU5OTBmnE3Z2cHB8XLOGM/4TUXVwB OxnOztNjV/AOl6fIyVBDI7nglwYTDqlzYcmto9V9pYidB8LjzIA3jiobAdIM2BJf HtSkbSLYQWAk+OXlcxv69gxt6WqkmWO6 -----END CERTIFICATE-----Generated at Thu May 15 12:21:44 2025 by rpki-client