$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: S8FDp7rW7BR/BWYKcYQR2owlrS1yQ0TwWNEsqpJTY9U= Subject key identifier: 33:D7:B6:AF:3F:DB:AD:2B:51:E3:14:45:B5:09:BD:10:87:E8:36:9D Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 032D Signing time: Fri 05 Sep 2025 01:27:27 +0000 Manifest this update: Fri 05 Sep 2025 01:27:26 +0000 Manifest next update: Fri 12 Sep 2025 01:27:26 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: 99Anypl5PWMOfgpmTGv+pO5PfVQeNGjqJg0RRepJMMc=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: C9cBIgp62dlijuyH/TsefWQ1spYTduwHvoUlA7V/520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Sep 5 01:27:26 2025 GMT Not After : Sep 12 01:27:26 2025 GMT Subject: CN=68ba3c7f-1954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:53:ef:b7:ee:03:87:c3:50:c1:f6:32:ee:a4: d7:4c:2b:fc:d1:30:0b:e4:34:34:18:8b:00:0b:4f: a6:23:f6:3b:57:b5:56:02:e7:4d:55:64:78:d2:8b: 85:91:f8:71:1b:04:05:54:ae:19:81:94:ee:68:a2: e6:4e:bb:9e:b6:fa:4b:d9:5f:ee:0b:60:5b:d2:b2: b9:7c:c5:a8:af:c4:5e:3c:e7:1e:67:e9:0d:98:4c: 26:63:5f:e7:32:ff:be:48:df:ee:fd:76:6b:01:8b: 3b:03:d6:16:97:fb:77:2c:93:72:12:34:96:b0:03: d0:8b:8c:7b:33:e7:f2:e6:00:36:a9:18:19:4b:e9: 4e:c4:99:20:8b:70:37:aa:9f:49:62:75:d7:b4:dd: b7:7e:6b:35:e8:da:e8:d1:1e:27:67:c1:7b:71:d6: b9:7c:0c:49:e5:84:cd:94:e0:db:8a:6c:19:98:8f: fc:c9:18:70:e3:8e:05:02:1d:c0:26:92:83:37:f4: 85:4b:d4:41:6a:83:65:dd:bf:74:bc:f1:4c:da:89: 47:8f:3e:94:4a:63:09:2d:aa:b3:2f:0c:3f:63:44: e5:eb:d1:87:06:8b:ed:94:a9:62:39:e5:59:99:4d: f1:3e:64:f3:57:2e:3c:cd:3e:51:1c:ba:51:25:36: 42:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D7:B6:AF:3F:DB:AD:2B:51:E3:14:45:B5:09:BD:10:87:E8:36:9D X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c3:6e:27:4c:dd:57:36:16:72:1d:2a:26:89:fd:49:cc:69: 22:91:2a:79:56:3d:7b:85:a7:51:e3:22:7b:8e:c3:dd:8e:eb: 13:0f:5d:0b:b4:21:d4:ec:d2:9a:69:60:e9:11:15:4e:6c:4b: 58:aa:ef:6b:e7:31:84:14:5e:c3:07:ac:0f:02:64:9b:e8:24: a8:d3:4f:b5:d1:7b:31:25:47:29:29:cf:e0:d7:f2:8b:92:23: cc:57:31:67:5d:b7:6c:66:1d:55:6f:fe:db:a1:e1:4a:66:0e: a2:b0:01:5f:f9:56:36:4c:1d:6a:20:6f:fb:1e:0e:0a:3c:a7: 84:f6:b8:2e:68:3d:88:29:93:e9:07:6a:1d:91:38:1c:1a:7f: f7:0e:41:2b:81:6d:d2:47:6f:31:d1:45:8e:9d:00:c8:14:f1: 3a:bd:69:39:c7:0e:d2:63:80:8c:37:b6:69:d6:4e:ab:82:90: 41:56:fe:f9:3e:a6:ac:7d:53:43:87:61:74:e1:30:60:e0:a8: f1:2d:e9:4d:b2:f5:ba:35:83:63:b4:d8:5c:7f:c6:59:dc:8e: 59:d2:0e:0e:34:77:25:f0:fc:96:4c:ec:66:70:b4:65:5a:3d: 80:95:7a:db:87:b4:4e:4e:bb:76:68:c8:e5:e3:eb:b2:af:70: 45:c4:b7:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUwOTA1MDEyNzI2WhcNMjUwOTEyMDEyNzI2WjAYMRYwFAYD VQQDEw02OGJhM2M3Zi0xOTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFPvt+4Dh8NQwfYy7qTXTCv80TAL5DQ0GIsAC0+mI/Y7V7VWAudNVWR40ouF kfhxGwQFVK4ZgZTuaKLmTruetvpL2V/uC2Bb0rK5fMWor8RePOceZ+kNmEwmY1/n Mv++SN/u/XZrAYs7A9YWl/t3LJNyEjSWsAPQi4x7M+fy5gA2qRgZS+lOxJkgi3A3 qp9JYnXXtN23fms16Nro0R4nZ8F7cda5fAxJ5YTNlODbimwZmI/8yRhw444FAh3A JpKDN/SFS9RBaoNl3b90vPFM2olHjz6USmMJLaqzLww/Y0Tl69GHBovtlKliOeVZ mU3xPmTzVy48zT5RHLpRJTZCXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPXtq8/ 260rUeMURbUJvRCH6DadMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOw24nTN1XNhZyHSomif1JzGkikSp5Vj17hadR4yJ7jsPdjusTD10L tCHU7NKaaWDpERVObEtYqu9r5zGEFF7DB6wPAmSb6CSo00+10XsxJUcpKc/g1/KL kiPMVzFnXbdsZh1Vb/7boeFKZg6isAFf+VY2TB1qIG/7Hg4KPKeE9rguaD2IKZPp B2odkTgcGn/3DkErgW3SR28x0UWOnQDIFPE6vWk5xw7SY4CMN7Zp1k6rgpBBVv75 PqasfVNDh2F04TBg4KjxLelNsvW6NYNjtNhcf8ZZ3I5Z0g4ONHcl8PyWTOxmcLRl Wj2AlXrbh7ROTrt2aMjl4+uyr3BFxLca -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:28 2025 by rpki-client