$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: UDhCcpchmAArCNEqODDpp23TvN8M3oswmKszsGizkvc= Subject key identifier: C1:D4:F2:9E:4A:38:88:BA:64:DC:5D:00:65:B7:67:A7:69:D3:EC:90 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 02EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 02E9 Signing time: Sun 27 Apr 2025 00:58:10 +0000 Manifest this update: Sun 27 Apr 2025 00:58:09 +0000 Manifest next update: Sun 04 May 2025 00:58:09 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: 0k2/DVvC0ZxoAKA0eAUZPhobSvprpFH+2bBgRQdddYI=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: vSji2PW77227MPuRms4fNHOSHefJ2bW6akHMJ/kFIj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 750 (0x2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Apr 27 00:58:09 2025 GMT Not After : May 4 00:58:09 2025 GMT Subject: CN=680d8122-4b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1b:a9:52:af:47:50:6a:f0:c4:f9:0e:ae:c3: b0:a5:a1:0a:2f:c1:2a:8a:c9:4e:6c:9e:b5:5b:36: 54:cd:05:e3:ae:2e:d3:b7:40:2a:20:ba:7d:65:2a: b0:a6:1b:93:75:11:8a:0d:55:4b:89:a4:7b:80:eb: cd:9c:69:06:8b:d1:24:7e:04:94:a4:87:1f:f6:a1: a4:a4:90:3d:d3:5a:b2:60:93:18:08:35:d2:60:19: c3:3e:71:78:e5:39:13:2b:80:fd:df:38:cd:11:12: ff:70:62:15:b9:7e:d8:11:05:de:b9:f2:fe:25:0f: dc:57:08:2d:54:e2:8a:35:50:79:39:2d:1e:ed:23: fa:35:b8:2d:3d:09:bc:23:61:99:bc:26:c4:96:5b: 70:7e:80:b7:bc:3f:71:68:cb:9d:c7:04:32:d4:cf: 7b:3a:41:67:d9:04:88:5a:26:ee:5a:7a:a4:f6:ef: 45:10:41:ac:22:ac:b6:4f:db:8b:54:b9:15:88:91: d1:26:43:fd:69:67:47:c5:bd:9e:f8:42:25:bd:89: df:3d:5a:df:52:cc:99:98:4f:17:3e:65:b3:9b:7c: 1a:e5:49:ef:32:6d:8e:3f:13:34:bb:92:e2:70:72: 47:fe:2e:81:8c:97:3c:bf:b2:65:5e:90:19:bc:78: 8f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D4:F2:9E:4A:38:88:BA:64:DC:5D:00:65:B7:67:A7:69:D3:EC:90 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:4d:d7:9a:e9:fc:7b:a9:a9:b1:6b:a5:eb:eb:01:49:80:12: b3:d6:6f:ae:fc:b6:76:c9:26:d8:0e:de:6d:7a:d1:4f:25:51: 32:47:67:2b:dc:93:b7:c0:5b:3d:d5:71:0c:c9:b7:aa:d2:ba: 45:a5:cd:34:e5:e0:a5:e2:40:fb:09:5c:a3:04:89:c0:33:11: 8d:11:5d:dd:a9:31:e3:2f:91:73:c5:a8:d7:32:79:4d:4f:43: 9b:f8:7e:c6:54:a2:2f:72:c0:3e:ae:1e:8a:06:99:af:66:f0: 51:d4:b8:64:f7:0f:70:b6:39:57:33:fe:10:d0:7c:01:d5:2d: 37:21:43:6c:5d:08:2d:21:bb:b4:8c:c6:f0:06:cd:47:65:db: df:a2:6e:e7:29:26:52:e5:77:a6:9b:9f:c2:0b:6c:15:bc:75: 8b:e6:8f:e9:75:fa:e3:2f:2f:10:05:7f:24:d7:00:ec:a0:08: 88:73:e7:ad:ff:ae:64:fc:a2:7c:07:60:af:06:a9:f7:3b:c0: bf:f3:b2:14:d5:00:a0:78:78:df:9b:84:60:35:e9:b8:d6:77: 87:e2:81:5a:85:05:3b:82:d8:55:22:5d:bb:ac:5e:8c:b1:73: b6:aa:89:48:23:7c:93:b1:c1:cb:f4:52:f8:25:b3:ad:ea:43: 22:8c:a3:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjUwNDI3MDA1ODA5WhcNMjUwNTA0MDA1ODA5WjAYMRYwFAYD VQQDEw02ODBkODEyMi00YjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxupUq9HUGrwxPkOrsOwpaEKL8EqislObJ61WzZUzQXjri7Tt0AqILp9ZSqw phuTdRGKDVVLiaR7gOvNnGkGi9EkfgSUpIcf9qGkpJA901qyYJMYCDXSYBnDPnF4 5TkTK4D93zjNERL/cGIVuX7YEQXeufL+JQ/cVwgtVOKKNVB5OS0e7SP6NbgtPQm8 I2GZvCbElltwfoC3vD9xaMudxwQy1M97OkFn2QSIWibuWnqk9u9FEEGsIqy2T9uL VLkViJHRJkP9aWdHxb2e+EIlvYnfPVrfUsyZmE8XPmWzm3wa5UnvMm2OPxM0u5Li cHJH/i6BjJc8v7JlXpAZvHiPZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHU8p5K OIi6ZNxdAGW3Z6dp0+yQMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGTdea6fx7qamxa6Xr6wFJgBKz1m+u/LZ2ySbYDt5tetFPJVEyR2cr 3JO3wFs91XEMybeq0rpFpc005eCl4kD7CVyjBInAMxGNEV3dqTHjL5FzxajXMnlN T0Ob+H7GVKIvcsA+rh6KBpmvZvBR1Lhk9w9wtjlXM/4Q0HwB1S03IUNsXQgtIbu0 jMbwBs1HZdvfom7nKSZS5Xemm5/CC2wVvHWL5o/pdfrjLy8QBX8k1wDsoAiIc+et /65k/KJ8B2CvBqn3O8C/87IU1QCgeHjfm4RgNem41neH4oFahQU7gthVIl27rF6M sXO2qolII3yTscHL9FL4JbOt6kMijKMq -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:16 2025 by rpki-client on console.sobornost.net