$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: j8tQNs8zJU4pSJmjlDJH1kEFOsSpab0g+ND/ZrDKRcM= Subject key identifier: D6:78:74:08:34:D0:1D:CE:D1:5F:85:92:8C:FB:AA:9E:3D:FC:D9:80 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 031A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0314 Signing time: Sat 19 Jul 2025 01:37:31 +0000 Manifest this update: Sat 19 Jul 2025 01:37:31 +0000 Manifest next update: Sat 26 Jul 2025 01:37:31 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: JeLbCZ9cgfN5Y9iEMJn6tjwyuNN+v1Z4Xoie/96z0ss=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: C9cBIgp62dlijuyH/TsefWQ1spYTduwHvoUlA7V/520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Jul 19 01:37:31 2025 GMT Not After : Jul 26 01:37:31 2025 GMT Subject: CN=687af6db-4ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:af:b6:b9:a0:e3:ac:67:50:01:29:39:48:37: 1e:23:14:e9:dd:4f:83:22:fe:50:7e:ff:d9:06:32: 11:09:da:06:26:48:49:b9:10:85:74:ea:f7:6b:f6: 66:aa:67:54:86:23:13:a1:a7:cb:11:90:40:d9:9d: 6c:af:bb:b2:fa:27:5c:2c:c7:75:92:8f:7f:07:ec: 84:e2:cc:fe:26:23:8b:da:1e:e8:5d:24:3f:c9:66: 51:5f:1e:7f:6d:7a:d8:21:df:6b:f1:e9:ab:b8:25: 9b:50:a3:c4:02:63:6c:32:d6:68:bc:fc:f2:c7:2b: 10:dd:6f:ca:50:25:bd:25:55:17:99:8d:3d:d3:99: 8e:2e:53:36:5a:d5:3b:85:73:5c:42:26:6c:b0:31: be:71:f8:88:39:1d:52:6a:aa:14:95:ab:8f:8e:cb: 0f:2a:fb:37:a5:04:fb:9e:b4:c0:84:bb:32:1e:40: 4a:f8:cd:1f:04:8b:d6:bd:61:5a:9d:17:31:24:1e: 74:83:80:fc:c2:64:49:d4:91:6a:26:4e:69:c7:d7: f2:0a:4d:e3:aa:e7:97:ad:da:5d:9d:45:7a:b3:dc: ee:4e:75:d0:3f:07:84:69:42:7c:d3:01:64:d1:39: a4:cc:cb:79:ce:43:f4:65:c0:d8:43:96:58:a6:8b: 29:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:78:74:08:34:D0:1D:CE:D1:5F:85:92:8C:FB:AA:9E:3D:FC:D9:80 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e2:2b:21:8d:9c:34:a5:e5:3d:00:2b:37:9a:62:ea:46:cd: 0d:81:de:ec:25:80:ab:18:a0:82:fa:06:4d:9f:37:a0:ff:45: 15:37:c6:f1:c6:04:f9:e4:02:fc:45:77:d9:ee:50:08:d4:f0: 62:36:25:14:6c:99:74:a3:74:57:69:c0:38:5f:8d:98:f3:cc: e4:05:03:c0:ce:03:55:c2:4b:30:d8:c8:a0:68:58:7f:ef:63: 56:39:4b:25:34:18:d7:7c:78:15:00:37:ef:ef:98:2e:ff:9d: 88:34:6b:3e:ad:d6:23:d0:16:f2:e1:32:53:3a:bd:61:bc:18: 32:c8:f7:34:23:f2:57:ed:18:81:79:7c:36:bb:09:b4:84:12: 0f:65:e4:72:97:80:ef:41:a4:a8:08:4f:ae:e3:9e:67:cf:72: d7:35:3e:cd:41:86:d9:dc:d0:7a:ba:98:3c:c1:27:18:8c:26: b9:d1:51:f4:08:5b:4e:3e:39:f6:24:6a:64:17:5f:88:12:1c: bd:c2:a2:a8:bf:4e:eb:5c:b1:92:4c:29:8c:ef:6c:3e:af:56: 9d:32:6b:58:7c:21:9c:54:a2:5f:8a:38:0f:d7:55:f2:cb:6f: 53:f7:dd:ed:62:97:78:b1:ac:be:b0:62:e4:78:e5:ac:51:26: 47:ef:a1:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUwNzE5MDEzNzMxWhcNMjUwNzI2MDEzNzMxWjAYMRYwFAYD VQQDEw02ODdhZjZkYi00ZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK+2uaDjrGdQASk5SDceIxTp3U+DIv5Qfv/ZBjIRCdoGJkhJuRCFdOr3a/Zm qmdUhiMToafLEZBA2Z1sr7uy+idcLMd1ko9/B+yE4sz+JiOL2h7oXSQ/yWZRXx5/ bXrYId9r8emruCWbUKPEAmNsMtZovPzyxysQ3W/KUCW9JVUXmY0905mOLlM2WtU7 hXNcQiZssDG+cfiIOR1SaqoUlauPjssPKvs3pQT7nrTAhLsyHkBK+M0fBIvWvWFa nRcxJB50g4D8wmRJ1JFqJk5px9fyCk3jqueXrdpdnUV6s9zuTnXQPweEaUJ80wFk 0TmkzMt5zkP0ZcDYQ5ZYpospmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ4dAg0 0B3O0V+Fkoz7qp49/NmAMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK4ishjZw0peU9ACs3mmLqRs0Ngd7sJYCrGKCC+gZNnzeg/0UVN8bx xgT55AL8RXfZ7lAI1PBiNiUUbJl0o3RXacA4X42Y88zkBQPAzgNVwksw2MigaFh/ 72NWOUslNBjXfHgVADfv75gu/52INGs+rdYj0Bby4TJTOr1hvBgyyPc0I/JX7RiB eXw2uwm0hBIPZeRyl4DvQaSoCE+u455nz3LXNT7NQYbZ3NB6upg8wScYjCa50VH0 CFtOPjn2JGpkF1+IEhy9wqKov07rXLGSTCmM72w+r1adMmtYfCGcVKJfijgP11Xy y29T993tYpd4say+sGLkeOWsUSZH76GP -----END CERTIFICATE-----Generated at Sun Jul 20 20:42:20 2025 by rpki-client