$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: PsVqy9Jc6TUj26/uymeN1l7HoZ2y872zxwQwkkrr67U= Subject key identifier: 47:6A:E5:4D:05:48:8B:01:27:31:AF:D1:0E:5C:5D:AB:5C:92:04:89 Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A80 Signing time: Tue 04 Nov 2025 19:41:36 +0000 Manifest this update: Tue 04 Nov 2025 19:41:35 +0000 Manifest next update: Tue 11 Nov 2025 19:41:35 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: EhejIaUnPdPF8VYOqoVDbd5uevW5QRT/bPG+y76uPO4=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: 6Cva/MAM9NxBoaAYG/HBqjbHLWksXNLd6d8hzeYffrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2695 (0xa87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Nov 4 19:41:35 2025 GMT Not After : Nov 11 19:41:35 2025 GMT Subject: CN=690a56ef-dc5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:dc:a0:f6:0c:87:55:b9:91:38:e6:73:8d: 19:d4:cd:88:d7:2a:7d:bf:1b:64:49:05:f5:f8:5c: 45:e0:2d:c0:ce:09:c0:cf:6b:b8:af:e8:a1:92:81: e8:db:ab:38:42:11:18:ba:a0:5f:50:53:f6:1c:ea: ac:85:c6:f5:8e:18:57:4a:b1:e9:35:5a:39:15:ac: 09:fa:b1:d4:d3:17:74:34:52:f6:97:3c:b4:64:32: 39:bc:9e:2f:60:4c:b0:1a:11:c6:20:70:3e:bb:e3: 15:af:22:2e:8b:d5:7d:bd:d3:aa:af:7e:23:eb:c3: 5a:1f:1e:d2:56:07:a0:b8:dd:17:8b:a5:0f:dc:9e: 8c:3a:e1:90:d1:9c:29:07:60:25:17:04:a4:14:0e: 80:5e:95:70:67:30:12:b9:20:3d:b1:b0:06:8c:c7: aa:ea:61:89:8d:f1:be:cb:d8:55:25:dd:c9:71:25: a4:df:27:a4:7a:45:29:a2:74:70:20:7f:b1:67:05: 32:ae:a4:63:22:fa:cf:24:c2:30:b9:f7:9b:fa:33: b5:91:df:a7:10:38:cb:a5:31:08:ff:04:1c:dd:fd: 81:1d:d0:52:db:9b:ee:80:d3:f0:c5:09:41:85:94: fa:ca:66:af:b6:4e:40:13:e8:0b:92:00:a2:26:ed: 05:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6A:E5:4D:05:48:8B:01:27:31:AF:D1:0E:5C:5D:AB:5C:92:04:89 X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:7b:45:3f:85:db:15:79:06:9c:4b:47:56:70:ec:fb:b8:5f: 21:9d:6b:10:5f:89:8a:38:52:ba:d4:9c:d3:83:f0:9c:ea:55: 15:bc:74:61:95:15:cb:07:b1:9e:c0:36:28:7c:6e:c9:05:29: 1c:2a:68:d9:77:b2:ff:99:87:bc:df:90:1e:62:09:ed:fb:c3: d3:6d:51:bb:bc:4b:de:9d:96:bb:58:45:12:a8:2d:87:2e:92: 65:46:88:a8:e6:bc:de:46:c2:52:eb:9c:14:e8:db:e5:7d:6a: 85:ea:79:1f:76:09:31:f2:86:98:4a:8b:b9:ea:af:4d:e9:cc: 49:1a:53:81:5c:96:c2:26:ea:5d:72:d3:39:2c:2b:ad:65:f2: 7d:3d:82:a0:34:c6:56:3a:19:13:4e:58:50:d6:37:6b:17:f3: 6a:e5:8e:6f:b5:37:43:14:c2:ed:46:10:10:51:83:43:ad:b5: a6:25:8c:0f:65:cb:08:3b:cc:26:4a:4e:cc:58:5e:88:38:8c: d6:8e:26:b6:d8:55:ca:33:e3:9c:0c:4c:e5:89:c0:f5:9b:65: 0e:5b:fc:6e:8b:cd:51:ea:2c:1b:42:88:58:d7:d4:a9:ed:c9: 20:8b:5f:3e:08:44:e6:51:f7:32:ed:1a:36:b3:21:c5:39:42: 53:9d:f7:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUxMTA0MTk0MTM1WhcNMjUxMTExMTk0MTM1WjAYMRYwFAYD VQQDEw02OTBhNTZlZi1kYzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLzcoPYMh1W5kTjmc40Z1M2I1yp9vxtkSQX1+FxF4C3AzgnAz2u4r+ihkoHo 26s4QhEYuqBfUFP2HOqshcb1jhhXSrHpNVo5FawJ+rHU0xd0NFL2lzy0ZDI5vJ4v YEywGhHGIHA+u+MVryIui9V9vdOqr34j68NaHx7SVgeguN0Xi6UP3J6MOuGQ0Zwp B2AlFwSkFA6AXpVwZzASuSA9sbAGjMeq6mGJjfG+y9hVJd3JcSWk3yekekUponRw IH+xZwUyrqRjIvrPJMIwufeb+jO1kd+nEDjLpTEI/wQc3f2BHdBS25vugNPwxQlB hZT6ymavtk5AE+gLkgCiJu0FIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdq5U0F SIsBJzGv0Q5cXatckgSJMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYe0U/hdsVeQacS0dWcOz7uF8hnWsQX4mKOFK61JzTg/Cc6lUVvHRh lRXLB7GewDYofG7JBSkcKmjZd7L/mYe835AeYgnt+8PTbVG7vEvenZa7WEUSqC2H LpJlRoio5rzeRsJS65wU6NvlfWqF6nkfdgkx8oaYSou56q9N6cxJGlOBXJbCJupd ctM5LCutZfJ9PYKgNMZWOhkTTlhQ1jdrF/Nq5Y5vtTdDFMLtRhAQUYNDrbWmJYwP ZcsIO8wmSk7MWF6IOIzWjia22FXKM+OcDEzlicD1m2UOW/xui81R6iwbQohY19Sp 7ckgi18+CETmUfcy7Ro2syHFOUJTnfea -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:33 2025 by rpki-client