$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: wiTxvj0C3cPWp7oz7uCev2ZPprKoHro6ZIXlQS0qpoc= Subject key identifier: E1:85:19:D4:32:65:C3:2A:62:4A:81:79:5A:B0:64:E1:70:BC:F0:FE Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A35 Signing time: Sat 14 Jun 2025 19:34:23 +0000 Manifest this update: Sat 14 Jun 2025 19:34:22 +0000 Manifest next update: Sat 21 Jun 2025 19:34:22 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: 6WUYai7zTAUaFMTSV27rbC309X78+mkONSZOFTOUUAc=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: RbBtMUxEM5O1piu47myWbtaMm/ZIwxdcYTXVUwgD12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2619 (0xa3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Jun 14 19:34:22 2025 GMT Not After : Jun 21 19:34:22 2025 GMT Subject: CN=684dcebf-9417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b9:1a:c6:bc:a5:0e:7d:e1:27:0d:b5:22:52: 5e:d2:6b:7f:8f:53:68:f9:0f:b9:61:77:44:d4:e2: 89:29:08:52:43:fd:61:f4:2d:9f:cc:38:4e:df:ce: 11:ca:95:db:90:6c:9c:fb:e3:54:e2:5d:92:1b:9d: 26:ec:3b:60:4d:5e:46:12:ee:0c:f9:9e:11:36:7b: 0c:15:e1:06:84:3c:75:5a:e9:92:02:ee:10:c1:47: 6b:f7:58:b8:ea:54:df:68:5f:05:72:6a:89:bd:d0: a4:a3:d3:76:c2:4a:5c:b2:bb:d5:7e:db:8d:6c:13: 30:dd:70:ba:60:21:04:01:f7:f6:57:2d:fc:f7:52: 88:13:08:10:8d:40:3c:6d:de:dc:f9:cd:07:e0:ad: 55:54:26:33:1d:55:83:56:ca:c3:5c:a7:a2:e9:2d: fa:6e:ee:4f:e2:fe:fe:7d:3f:d8:6d:83:5d:ac:bb: 66:af:02:be:58:5a:02:b4:11:fc:b5:da:62:d4:51: 73:54:89:54:d5:a0:84:53:c0:78:0e:de:40:fd:15: 21:e7:f4:ba:a6:8f:1d:f1:4d:39:07:b5:94:4f:66: 38:85:c3:a2:9a:8d:4d:93:eb:92:c3:73:ec:43:28: a7:91:d1:95:f5:eb:f2:e4:74:78:7f:0b:8b:b4:68: fe:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:85:19:D4:32:65:C3:2A:62:4A:81:79:5A:B0:64:E1:70:BC:F0:FE X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:ee:e2:10:da:f7:d4:92:92:df:88:2f:06:4e:dc:4e:fe:f2: c7:99:f4:ca:05:57:23:7c:0d:97:be:eb:98:1f:73:bb:d3:1f: bf:09:05:ef:29:3a:63:78:26:1f:8e:2d:79:8b:bc:07:ee:96: 3a:a7:7c:71:cd:0b:38:14:cc:d1:b3:a3:2d:77:65:27:8d:77: 0d:fd:fe:19:5a:92:45:b0:06:ce:d3:f3:1f:4a:5e:e0:49:59: 42:8b:07:6c:62:9e:a4:99:76:ce:90:b8:70:bc:bf:35:3e:3e: 0b:0c:a7:48:ae:f2:ba:99:4c:bd:f3:9e:15:38:a9:f7:8b:37: 40:b3:5a:69:65:e8:2a:cf:a7:30:81:a1:53:17:71:3e:df:54: 9b:a8:53:cc:a3:77:f8:0f:c0:63:cd:22:68:a1:17:85:74:f3: e6:45:a2:15:e2:c6:95:e8:7f:1d:88:e8:36:fc:ff:7b:ee:aa: 67:69:fd:79:d4:08:0f:78:0d:1f:58:b2:27:42:65:30:2f:a1: b6:26:2c:61:f2:ee:80:41:e0:fc:61:80:ad:1e:f9:bb:bb:2e: 44:e5:f2:f7:71:fa:82:43:ce:bc:5a:d9:56:7f:c7:a0:5e:c0: 40:5a:58:1d:ab:ee:f5:95:f5:c7:ce:f3:cd:eb:0f:5d:be:f9: 01:19:db:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUwNjE0MTkzNDIyWhcNMjUwNjIxMTkzNDIyWjAYMRYwFAYD VQQDEw02ODRkY2ViZi05NDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bkaxrylDn3hJw21IlJe0mt/j1No+Q+5YXdE1OKJKQhSQ/1h9C2fzDhO384R ypXbkGyc++NU4l2SG50m7DtgTV5GEu4M+Z4RNnsMFeEGhDx1WumSAu4QwUdr91i4 6lTfaF8FcmqJvdCko9N2wkpcsrvVftuNbBMw3XC6YCEEAff2Vy3891KIEwgQjUA8 bd7c+c0H4K1VVCYzHVWDVsrDXKei6S36bu5P4v7+fT/YbYNdrLtmrwK+WFoCtBH8 tdpi1FFzVIlU1aCEU8B4Dt5A/RUh5/S6po8d8U05B7WUT2Y4hcOimo1Nk+uSw3Ps QyinkdGV9evy5HR4fwuLtGj+tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGFGdQy ZcMqYkqBeVqwZOFwvPD+MB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDf7uIQ2vfUkpLfiC8GTtxO/vLHmfTKBVcjfA2XvuuYH3O70x+/CQXv KTpjeCYfji15i7wH7pY6p3xxzQs4FMzRs6Mtd2UnjXcN/f4ZWpJFsAbO0/MfSl7g SVlCiwdsYp6kmXbOkLhwvL81Pj4LDKdIrvK6mUy9854VOKn3izdAs1ppZegqz6cw gaFTF3E+31SbqFPMo3f4D8BjzSJooReFdPPmRaIV4saV6H8diOg2/P977qpnaf15 1AgPeA0fWLInQmUwL6G2Jixh8u6AQeD8YYCtHvm7uy5E5fL3cfqCQ868WtlWf8eg XsBAWlgdq+71lfXHzvPN6w9dvvkBGdsh -----END CERTIFICATE-----Generated at Sun Jun 15 08:40:39 2025 by rpki-client