$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: V+KJuG0Cx/1aamx4WGTWRneY0mKnfiPkeWyDH2zzAkM= Subject key identifier: 5D:E4:A4:5E:C1:AA:04:E2:A5:D1:B6:66:29:2B:35:A0:49:E7:C4:CC Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A58 Signing time: Fri 22 Aug 2025 19:48:43 +0000 Manifest this update: Fri 22 Aug 2025 19:48:43 +0000 Manifest next update: Fri 29 Aug 2025 19:48:43 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: jXt5wAUgtSbuNASJLOV9rW/IAFakJDp80O5AVR4wMtE=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: RbBtMUxEM5O1piu47myWbtaMm/ZIwxdcYTXVUwgD12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Aug 22 19:48:43 2025 GMT Not After : Aug 29 19:48:43 2025 GMT Subject: CN=68a8c99b-6161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c2:73:23:83:50:84:72:c4:d0:9b:a4:4d:ff: 2a:2b:6c:4f:bc:b9:8e:18:e5:0b:4a:d3:d3:e2:63: 3f:db:65:56:80:36:0a:bb:fe:a0:fd:f2:b3:38:20: 51:3b:4f:6f:12:89:47:72:31:7d:b9:33:df:c1:3b: 93:56:5d:05:ec:0a:1c:cc:ea:a5:3f:23:e6:da:ab: 36:72:5c:b9:62:eb:21:4b:9f:b7:c0:ef:25:4e:7d: e0:aa:e5:62:f7:d6:41:78:b0:ca:c2:65:33:aa:75: 15:94:c2:74:89:5a:8a:a7:dd:a2:36:37:9e:9f:f7: 70:3d:0d:3e:d2:24:79:c6:5b:b7:78:4c:aa:99:66: 73:e9:15:77:d4:61:b9:f0:b5:9f:93:62:74:04:80: 2c:be:3b:70:dc:6b:97:c9:49:36:a7:d1:fd:24:a4: fe:af:14:b6:c1:0c:86:46:10:4a:0b:9c:84:4c:5a: 49:80:8e:eb:e9:84:1b:0f:ee:36:d2:98:7e:3b:44: 2f:a4:bd:70:41:18:35:52:8d:b5:b2:fb:3c:94:4e: 0f:08:52:26:6b:d7:34:d9:82:59:74:b6:e7:c5:e8: 7a:15:39:c5:2b:df:26:56:ed:27:2f:34:3b:7d:97: 25:4b:6c:54:a5:f4:a3:35:a5:7c:5a:1f:ab:ab:33: e2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E4:A4:5E:C1:AA:04:E2:A5:D1:B6:66:29:2B:35:A0:49:E7:C4:CC X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:90:9c:86:ee:5a:1f:33:f3:ce:d1:ae:a5:43:39:bb:23:5d: 6b:ad:be:79:38:e6:9b:d3:04:9e:0a:e5:35:7a:68:ee:98:b6: c0:c8:4b:e1:3f:6f:7d:54:95:24:97:54:75:c6:89:ca:33:75: 01:76:5b:65:2b:fd:b1:9b:d4:5e:3a:25:ff:65:f1:c7:b3:02: 37:0f:7b:cc:2e:db:95:dc:73:22:16:11:77:96:67:2c:6b:92: e5:99:43:e1:bb:eb:20:5b:99:6b:7b:6d:b2:3e:29:a1:32:64: 6d:82:53:dc:47:91:8c:78:63:14:41:a4:f8:d6:cc:8e:41:62: 1c:ee:b2:30:3c:2c:ad:5e:02:1b:db:21:a7:8b:bb:9f:73:b7: 90:31:b2:42:05:af:47:43:d8:67:a4:e3:c7:4a:bc:23:9c:e2: 83:c5:b8:bd:7f:48:2b:8d:8f:fc:d4:f3:95:7c:56:ab:84:56: 13:40:d5:82:25:cf:02:d5:37:5b:a6:1a:a6:f2:3f:08:fd:03: 4c:82:bd:c7:53:6c:7f:49:57:c2:67:d1:69:8d:a6:99:97:4b: 53:26:55:50:34:7b:08:08:31:2d:cc:30:df:62:d5:c4:67:76: 0e:be:94:b8:27:56:28:6f:f8:5d:6c:2c:23:2a:f6:68:fa:b5: 4d:9d:1f:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUwODIyMTk0ODQzWhcNMjUwODI5MTk0ODQzWjAYMRYwFAYD VQQDEw02OGE4Yzk5Yi02MTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscJzI4NQhHLE0JukTf8qK2xPvLmOGOULStPT4mM/22VWgDYKu/6g/fKzOCBR O09vEolHcjF9uTPfwTuTVl0F7AoczOqlPyPm2qs2cly5YushS5+3wO8lTn3gquVi 99ZBeLDKwmUzqnUVlMJ0iVqKp92iNjeen/dwPQ0+0iR5xlu3eEyqmWZz6RV31GG5 8LWfk2J0BIAsvjtw3GuXyUk2p9H9JKT+rxS2wQyGRhBKC5yETFpJgI7r6YQbD+42 0ph+O0QvpL1wQRg1Uo21svs8lE4PCFIma9c02YJZdLbnxeh6FTnFK98mVu0nLzQ7 fZclS2xUpfSjNaV8Wh+rqzPiYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3kpF7B qgTipdG2ZikrNaBJ58TMMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZkJyG7lofM/PO0a6lQzm7I11rrb55OOab0wSeCuU1emjumLbAyEvh P299VJUkl1R1xonKM3UBdltlK/2xm9ReOiX/ZfHHswI3D3vMLtuV3HMiFhF3lmcs a5LlmUPhu+sgW5lre22yPimhMmRtglPcR5GMeGMUQaT41syOQWIc7rIwPCytXgIb 2yGni7ufc7eQMbJCBa9HQ9hnpOPHSrwjnOKDxbi9f0grjY/81POVfFarhFYTQNWC Jc8C1Tdbphqm8j8I/QNMgr3HU2x/SVfCZ9FpjaaZl0tTJlVQNHsICDEtzDDfYtXE Z3YOvpS4J1Yob/hdbCwjKvZo+rVNnR9J -----END CERTIFICATE-----Generated at Sat Aug 23 17:20:25 2025 by rpki-client