$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: wdrmxXTF9yylzKfyEr8Il3GBT5WfvV1Z496W38lWPik= Subject key identifier: C7:32:CB:76:F9:68:33:22:F6:23:B6:A1:2E:08:89:9B:98:0A:63:96 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0326 Signing time: Sat 23 Aug 2025 01:23:48 +0000 Manifest this update: Sat 23 Aug 2025 01:23:47 +0000 Manifest next update: Sat 30 Aug 2025 01:23:47 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: 5nfWXY5WWvdZqlRP3aEGYJQGNdVudO8tbq9dsUiZgvs=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: C9cBIgp62dlijuyH/TsefWQ1spYTduwHvoUlA7V/520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Aug 23 01:23:47 2025 GMT Not After : Aug 30 01:23:47 2025 GMT Subject: CN=68a91824-9c07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:b1:f9:ec:3a:b9:09:f1:26:75:59:c0:b0: be:0a:82:0f:da:7a:a8:5a:b9:cb:bd:5d:2d:b2:28: 2f:e9:14:a4:84:38:18:7c:91:2b:45:75:c7:0f:f6: f2:c9:bb:07:39:9e:7c:f5:21:d9:98:8c:3c:89:82: 08:14:46:6d:37:ef:4a:0d:f0:70:b5:20:e3:7e:a4: 21:a8:a8:76:39:f1:59:69:9b:0c:7b:6b:16:c6:91: c0:d0:0d:88:24:da:72:44:29:6a:86:b9:2e:b6:76: 90:b0:c7:02:72:d0:dd:93:dd:71:a8:f4:47:d3:1b: 69:15:ed:42:61:ce:cd:45:65:5b:83:89:dd:91:7c: 0d:dd:8b:21:60:07:fd:8f:60:7e:c1:c1:51:07:f3: 15:f9:f6:38:23:86:40:7c:ea:8b:44:e8:46:55:9a: 73:9f:05:0a:4a:39:44:53:32:c6:32:e2:1c:1a:eb: b0:ef:be:c9:75:21:93:e3:3c:93:be:e1:0f:58:55: 9c:8a:83:45:c7:b2:94:fd:5f:43:5f:0d:33:a0:da: e6:ce:e2:6f:34:11:02:01:d8:6e:be:a1:fa:93:c5: b0:64:90:da:33:94:d6:d7:6b:c0:a5:ef:8f:d4:e2: ff:36:2e:98:27:b3:85:33:fb:60:0b:83:f3:c9:f1: ce:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:32:CB:76:F9:68:33:22:F6:23:B6:A1:2E:08:89:9B:98:0A:63:96 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:9a:57:4b:20:15:c0:e6:a0:ba:cc:bf:9b:89:36:90:e2:2d: 38:06:54:00:ab:14:54:db:18:89:da:f9:7b:11:37:74:3b:8d: ae:c0:6f:ab:4c:85:81:77:6e:8e:58:4f:97:24:5d:fc:ff:08: 28:12:f8:d6:33:50:7d:8e:c6:3b:af:7b:36:97:5e:d4:10:72: 05:cc:9b:ac:1e:2e:b5:75:b0:f7:ac:d9:82:a1:67:3c:9e:c3: c3:b5:10:7b:e2:5f:8d:fc:26:2f:b4:e7:09:1e:c0:06:9c:a6: 13:88:35:fc:9c:76:55:c6:07:d9:2a:03:af:38:ba:c9:6b:48: 8e:df:63:a7:9e:c8:15:2f:94:e1:8e:d8:45:73:a9:cb:0d:14: 7f:4b:3e:90:84:2c:5b:64:46:38:90:0c:5f:c6:57:7d:ee:42: dd:b5:eb:8d:f9:da:8c:30:eb:2b:3a:0d:52:70:86:6a:40:a6: 6e:a2:cc:d0:85:a0:b6:05:f2:01:9f:36:cf:57:74:fc:22:25: 87:ae:bb:98:ef:96:59:01:c4:6c:bb:02:05:62:cc:df:22:d2: 8c:5b:b8:0c:9a:f3:cf:52:c4:07:9e:86:4d:b1:90:ac:3a:bf: d4:5b:26:7d:45:cf:aa:0c:60:ab:6c:c3:17:5d:0b:7e:ec:cf: 6b:5b:03:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUwODIzMDEyMzQ3WhcNMjUwODMwMDEyMzQ3WjAYMRYwFAYD VQQDEw02OGE5MTgyNC05YzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFSx+ew6uQnxJnVZwLC+CoIP2nqoWrnLvV0tsigv6RSkhDgYfJErRXXHD/by ybsHOZ589SHZmIw8iYIIFEZtN+9KDfBwtSDjfqQhqKh2OfFZaZsMe2sWxpHA0A2I JNpyRClqhrkutnaQsMcCctDdk91xqPRH0xtpFe1CYc7NRWVbg4ndkXwN3YshYAf9 j2B+wcFRB/MV+fY4I4ZAfOqLROhGVZpznwUKSjlEUzLGMuIcGuuw777JdSGT4zyT vuEPWFWcioNFx7KU/V9DXw0zoNrmzuJvNBECAdhuvqH6k8WwZJDaM5TW12vApe+P 1OL/Ni6YJ7OFM/tgC4PzyfHOVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcyy3b5 aDMi9iO2oS4IiZuYCmOWMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6mldLIBXA5qC6zL+biTaQ4i04BlQAqxRU2xiJ2vl7ETd0O42uwG+r TIWBd26OWE+XJF38/wgoEvjWM1B9jsY7r3s2l17UEHIFzJusHi61dbD3rNmCoWc8 nsPDtRB74l+N/CYvtOcJHsAGnKYTiDX8nHZVxgfZKgOvOLrJa0iO32OnnsgVL5Th jthFc6nLDRR/Sz6QhCxbZEY4kAxfxld97kLdteuN+dqMMOsrOg1ScIZqQKZuoszQ haC2BfIBnzbPV3T8IiWHrruY75ZZAcRsuwIFYszfItKMW7gMmvPPUsQHnoZNsZCs Or/UWyZ9Rc+qDGCrbMMXXQt+7M9rWwMC -----END CERTIFICATE-----Generated at Sat Aug 23 12:43:31 2025 by rpki-client