$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: Bz5XXmNoPL1vpFQSVE1cVEWLA3pS1OCCSFnie6T+Syk= Subject key identifier: 52:DF:61:93:21:18:12:99:49:90:9F:38:DD:D6:E4:C9:96:AB:89:B2 Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A1C Signing time: Thu 24 Apr 2025 19:41:42 +0000 Manifest this update: Thu 24 Apr 2025 19:41:42 +0000 Manifest next update: Thu 01 May 2025 19:41:42 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: /F3J24IodU0DhgzolE5W5QBI29ByibF2F4nksYlhFyg=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: RbBtMUxEM5O1piu47myWbtaMm/ZIwxdcYTXVUwgD12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Apr 24 19:41:42 2025 GMT Not After : May 1 19:41:42 2025 GMT Subject: CN=680a93f6-632a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b9:93:e6:af:78:30:b7:31:b5:05:07:e4:1e: df:63:f3:ad:b1:88:fe:df:ef:79:a6:ea:ad:22:7f: 75:b9:9f:dd:45:7e:ba:e0:92:4c:a5:0b:99:0a:10: 08:6b:ea:5a:90:33:1e:0e:02:7d:f7:72:21:6c:58: 77:f5:b9:3f:ba:ae:ab:47:67:24:e0:9b:c5:85:fc: 8e:08:70:6f:d4:ae:4e:10:3a:f2:87:f3:e9:fc:be: b5:15:b8:0b:d8:d2:fd:e0:5f:dd:75:eb:d2:ee:d1: 3e:9b:b9:34:0a:8b:c0:32:f8:28:97:7c:ed:57:49: 48:31:17:6b:0e:3a:b2:40:da:77:f8:07:72:e1:39: 99:e8:78:29:ed:0d:86:bf:9e:b1:2c:2e:e3:f8:44: 4d:88:c0:07:ab:5c:2e:6e:18:6b:9c:a7:8d:1b:74: 4a:e1:86:a0:19:12:bf:58:2d:6c:5c:21:6c:82:8d: 5a:f0:37:86:f1:7c:1a:19:d2:04:86:a0:fa:00:0c: 27:9d:a1:14:52:a1:8d:32:af:85:b8:82:30:6e:64: 75:c1:91:52:d7:62:e0:41:a1:43:8b:87:db:89:11: 31:74:4e:7d:a8:5f:b9:5e:eb:68:ed:ee:f9:93:dd: f7:62:96:e9:ea:82:5f:55:1f:7b:db:17:b3:a7:49: 21:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:DF:61:93:21:18:12:99:49:90:9F:38:DD:D6:E4:C9:96:AB:89:B2 X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d4:da:f8:4d:69:41:e6:b4:e1:87:b7:c6:2e:83:65:e0:7c: 01:80:be:94:49:50:28:11:da:f4:cc:5a:0f:03:0d:b9:e6:cd: d9:ee:a7:de:38:e0:12:0c:3f:36:af:8b:ec:bf:3c:4c:fd:b5: 80:d2:42:17:28:48:6f:8f:38:e8:06:1e:fe:77:40:34:a4:f8: f7:9b:21:f5:d3:f4:40:c2:23:da:96:d3:a7:9a:85:64:f4:cd: 89:a8:ca:0b:52:fa:a1:f6:d3:c1:a7:12:ff:aa:58:85:cb:4d: c7:6f:b0:9a:fc:34:61:2b:7e:55:0d:2d:5d:ef:69:8d:b5:29: 38:2c:82:a4:9a:7a:19:88:9a:be:34:d8:c4:b9:4e:ad:f2:a6: 41:be:42:45:05:ff:84:f1:ff:ce:96:78:1f:38:9d:af:86:0b: d5:7b:2d:1a:d9:c3:9b:28:f6:ef:65:f2:8f:5b:60:bd:4c:b0: c0:87:29:44:ca:d4:f2:af:25:04:93:0f:2c:03:20:85:c0:75: 89:71:87:54:2e:72:ea:0e:ef:0d:58:76:0c:04:f3:ba:38:75: 4d:8f:f5:4c:e5:8c:97:39:b1:47:e3:ef:49:77:f7:c5:fc:32: 8c:de:a4:69:0b:af:8b:db:45:bd:1e:1f:54:9a:94:cf:fe:82: 5a:86:27:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUwNDI0MTk0MTQyWhcNMjUwNTAxMTk0MTQyWjAYMRYwFAYD VQQDEw02ODBhOTNmNi02MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bmT5q94MLcxtQUH5B7fY/OtsYj+3+95puqtIn91uZ/dRX664JJMpQuZChAI a+pakDMeDgJ993IhbFh39bk/uq6rR2ck4JvFhfyOCHBv1K5OEDryh/Pp/L61FbgL 2NL94F/ddevS7tE+m7k0CovAMvgol3ztV0lIMRdrDjqyQNp3+Ady4TmZ6Hgp7Q2G v56xLC7j+ERNiMAHq1wubhhrnKeNG3RK4YagGRK/WC1sXCFsgo1a8DeG8XwaGdIE hqD6AAwnnaEUUqGNMq+FuIIwbmR1wZFS12LgQaFDi4fbiRExdE59qF+5Xuto7e75 k933Ypbp6oJfVR972xezp0khiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLfYZMh GBKZSZCfON3W5MmWq4myMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn1Nr4TWlB5rThh7fGLoNl4HwBgL6USVAoEdr0zFoPAw255s3Z7qfe OOASDD82r4vsvzxM/bWA0kIXKEhvjzjoBh7+d0A0pPj3myH10/RAwiPaltOnmoVk 9M2JqMoLUvqh9tPBpxL/qliFy03Hb7Ca/DRhK35VDS1d72mNtSk4LIKkmnoZiJq+ NNjEuU6t8qZBvkJFBf+E8f/OlngfOJ2vhgvVey0a2cObKPbvZfKPW2C9TLDAhylE ytTyryUEkw8sAyCFwHWJcYdULnLqDu8NWHYMBPO6OHVNj/VM5YyXObFH4+9Jd/fF /DKM3qRpC6+L20W9Hh9UmpTP/oJahif+ -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:30 2025 by rpki-client