$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: NlrayN+3J5uirwllnuWI5q0bc8fq7TvQPdh6/ttSNVA= Subject key identifier: 52:0E:76:37:B0:E3:1F:32:A5:34:CA:AA:1E:63:E0:24:42:D4:73:48 Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A51 Signing time: Fri 08 Aug 2025 20:00:07 +0000 Manifest this update: Fri 08 Aug 2025 20:00:07 +0000 Manifest next update: Fri 15 Aug 2025 20:00:07 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: iFhUGnOwl1UqUhtVwUBVXhnlcKOG5XicibXmikC2xK8=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: RbBtMUxEM5O1piu47myWbtaMm/ZIwxdcYTXVUwgD12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2647 (0xa57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Aug 8 20:00:07 2025 GMT Not After : Aug 15 20:00:07 2025 GMT Subject: CN=68965747-3ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5d:e5:16:26:16:77:f4:b0:b1:63:bf:ec:ea: 34:ac:70:8e:58:7d:90:a5:13:ce:33:22:f3:80:a0: 82:f1:42:12:17:90:12:47:e9:a7:4e:87:68:79:43: 11:09:fd:e9:ce:af:82:2c:1c:b6:e4:f9:89:96:7e: 2d:ac:7e:65:ce:cd:67:e0:98:80:1d:24:6f:0d:8d: 68:7b:1c:94:e8:0e:b5:92:69:30:fd:ab:31:cb:0e: 0d:f4:d1:64:48:5c:56:ca:85:e9:39:20:f0:a1:c3: f7:b6:86:2e:e3:34:39:02:27:01:48:4a:e2:0a:47: e7:e5:1c:1f:20:0d:93:d4:6e:d9:d8:72:ca:8e:96: 55:e2:b7:bd:5f:72:92:ad:a0:02:75:34:66:7a:da: cd:dc:37:f8:51:27:11:28:03:34:23:6b:6f:05:8d: 11:de:1f:f0:2b:a4:ba:5a:ad:39:79:17:e6:f9:5d: 58:b3:90:ae:6c:95:b0:a6:35:f7:99:47:a1:da:d4: f0:06:35:f3:6f:cf:ac:01:a9:02:90:3d:b5:d0:73: 0e:73:10:26:09:69:fa:11:ab:8b:24:88:aa:0a:ff: e2:ef:13:6e:5b:b4:0f:49:62:0d:a4:82:f0:ae:b3: 8c:6d:e5:fa:00:ec:79:48:99:cb:c4:6c:65:46:c9: 86:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0E:76:37:B0:E3:1F:32:A5:34:CA:AA:1E:63:E0:24:42:D4:73:48 X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:db:1c:3e:80:fd:6c:77:ee:de:76:47:ea:ed:47:ee:c7:95: 8e:8d:2f:33:61:02:04:6c:07:af:3c:5d:59:db:0b:fd:16:d6: fc:9f:2d:f6:7c:92:95:a3:77:5d:64:b5:0a:80:80:25:48:2f: 78:25:d8:00:f1:44:f6:cc:12:d0:80:77:ff:6b:d4:eb:bb:97: db:75:59:ee:f3:6c:5a:db:c7:02:6c:d9:ca:78:d3:50:39:79: f7:5b:af:35:e7:5e:3a:f0:7b:32:e4:14:0b:b2:40:25:52:11: 07:87:87:52:c0:ee:60:bb:6d:87:cf:f9:3e:6e:9e:49:06:29: b2:55:45:a4:c3:a5:01:4d:09:d3:4b:9d:ac:60:ae:97:cd:09: 21:69:11:2e:31:8d:c5:ee:d7:81:29:d2:9e:fb:e6:83:3b:56: 98:09:fc:61:f9:2f:0a:4c:be:56:7a:fa:0b:ac:ac:4a:b1:06: 04:16:92:1e:aa:23:fb:27:d3:02:4e:41:94:59:14:0e:ee:83: 2c:f6:27:43:6a:a8:33:8e:a3:be:e7:d3:cc:e8:ff:21:fe:1c: 0d:fb:e8:ef:02:c5:35:66:55:12:bb:81:da:43:a7:25:d2:16: d0:51:c1:77:54:f4:55:29:d0:38:e9:8b:44:73:5d:5f:36:37: 2e:ef:67:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUwODA4MjAwMDA3WhcNMjUwODE1MjAwMDA3WjAYMRYwFAYD VQQDEw02ODk2NTc0Ny0zZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA013lFiYWd/SwsWO/7Oo0rHCOWH2QpRPOMyLzgKCC8UISF5ASR+mnTodoeUMR Cf3pzq+CLBy25PmJln4trH5lzs1n4JiAHSRvDY1oexyU6A61kmkw/asxyw4N9NFk SFxWyoXpOSDwocP3toYu4zQ5AicBSEriCkfn5RwfIA2T1G7Z2HLKjpZV4re9X3KS raACdTRmetrN3Df4UScRKAM0I2tvBY0R3h/wK6S6Wq05eRfm+V1Ys5CubJWwpjX3 mUeh2tTwBjXzb8+sAakCkD210HMOcxAmCWn6EauLJIiqCv/i7xNuW7QPSWINpILw rrOMbeX6AOx5SJnLxGxlRsmGYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIOdjew 4x8ypTTKqh5j4CRC1HNIMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB92xw+gP1sd+7edkfq7Ufux5WOjS8zYQIEbAevPF1Z2wv9Ftb8ny32 fJKVo3ddZLUKgIAlSC94JdgA8UT2zBLQgHf/a9Tru5fbdVnu82xa28cCbNnKeNNQ OXn3W68151468Hsy5BQLskAlUhEHh4dSwO5gu22Hz/k+bp5JBimyVUWkw6UBTQnT S52sYK6XzQkhaREuMY3F7teBKdKe++aDO1aYCfxh+S8KTL5WevoLrKxKsQYEFpIe qiP7J9MCTkGUWRQO7oMs9idDaqgzjqO+59PM6P8h/hwN++jvAsU1ZlUSu4HaQ6cl 0hbQUcF3VPRVKdA46YtEc11fNjcu72eq -----END CERTIFICATE-----Generated at Sat Aug 9 23:28:06 2025 by rpki-client