$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: T5W3LSQVAvlXvKN5jkwkGcBkNfFlc/eCMjiREw2y0Mk= Subject key identifier: 4F:2C:F0:86:F7:73:52:FC:58:06:CC:D3:B8:D3:1F:8C:C0:17:F7:31 Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A3E Signing time: Wed 02 Jul 2025 19:57:13 +0000 Manifest this update: Wed 02 Jul 2025 19:57:12 +0000 Manifest next update: Wed 09 Jul 2025 19:57:12 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: Z5De1mn8lAVWZq935NjDeCUUfZpHB1QH0ri/quLOMUs=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: RbBtMUxEM5O1piu47myWbtaMm/ZIwxdcYTXVUwgD12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2628 (0xa44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Jul 2 19:57:12 2025 GMT Not After : Jul 9 19:57:12 2025 GMT Subject: CN=68658f18-5786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:20:99:f2:d0:b9:76:52:90:1a:b3:5d:52:c9: d2:06:b4:14:97:07:ec:35:31:2e:b0:aa:b2:33:14: 66:72:3a:ff:37:d9:fa:2e:d4:3f:da:e8:78:8d:6d: ff:2e:a6:a3:6a:25:cd:d1:ed:e7:a6:ca:ea:ce:b1: 96:df:73:eb:b6:dd:9d:fa:70:33:6a:5d:87:0c:ce: b0:82:16:00:3a:52:d5:85:41:9e:2a:79:a3:fa:dd: 80:7f:a1:23:67:fd:ba:28:52:1d:a2:8e:a7:92:3f: 3a:89:12:35:16:e1:60:6e:44:73:bb:51:38:ec:a2: 0a:17:0a:75:3e:45:7a:ed:7a:fa:93:92:e4:1d:2f: 68:2a:17:e9:c5:d7:ac:78:0b:d2:b1:ec:c6:de:ef: 26:d9:dc:36:b8:12:1b:71:cd:a9:cb:82:78:80:2a: 20:f0:af:16:a3:c5:3a:78:85:25:b3:ad:d7:5f:36: 3f:cc:49:6a:89:88:5b:e3:21:ec:88:11:77:8b:9b: df:86:52:a3:45:53:22:47:74:a6:f5:30:f3:c9:6a: 35:53:5b:a9:a6:e6:a4:2b:2d:67:d5:9d:e3:78:49: d9:b4:44:16:f5:d9:30:6f:ed:af:aa:9a:68:c1:9e: 10:d8:90:4e:13:f4:b5:9b:be:f9:b8:21:44:4f:21: 57:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:2C:F0:86:F7:73:52:FC:58:06:CC:D3:B8:D3:1F:8C:C0:17:F7:31 X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:fa:3a:28:b3:3a:5a:34:a5:5d:cc:f8:7a:fd:56:a9:da:56: a0:c3:39:58:60:c7:b6:95:ae:f5:7a:ca:a3:ec:c2:e0:a7:94: ce:dc:6f:d3:f9:48:76:39:65:8d:22:bb:b2:58:8d:72:38:ff: c9:f4:08:0c:9f:81:35:a8:b5:c0:ef:d2:31:13:de:ef:f4:f0: a7:6f:39:dd:46:20:af:cf:61:71:ca:f4:47:66:b8:26:b7:9c: 4b:fc:9c:65:0b:ee:c7:41:e1:4f:4a:68:eb:f0:48:84:f4:f9: 91:b0:0c:cf:f4:f4:7a:b1:9c:64:5d:d3:29:62:41:8c:51:7b: 03:22:6e:30:df:a9:05:2f:99:0a:f7:8e:41:b8:41:bb:c1:ec: 66:06:47:74:ad:1e:80:53:da:e8:04:05:07:7b:ba:99:bf:16: 72:fe:46:5a:39:f2:ed:b7:8b:08:54:7c:1c:45:97:77:9f:c6: 03:f2:55:04:c3:a7:d3:20:e2:70:e0:63:e2:d3:98:bf:89:57: 49:d6:53:f7:d6:8b:20:07:f8:96:2e:e7:e7:be:b9:05:80:5c: 27:44:38:a2:ba:be:69:fa:ed:fe:22:28:65:c8:7b:ed:ad:6e: e8:88:cb:f7:94:10:1d:95:cb:da:f7:e9:6a:d7:4d:d2:88:8d: f5:0b:15:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUwNzAyMTk1NzEyWhcNMjUwNzA5MTk1NzEyWjAYMRYwFAYD VQQDEw02ODY1OGYxOC01Nzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziCZ8tC5dlKQGrNdUsnSBrQUlwfsNTEusKqyMxRmcjr/N9n6LtQ/2uh4jW3/ LqajaiXN0e3npsrqzrGW33Prtt2d+nAzal2HDM6wghYAOlLVhUGeKnmj+t2Af6Ej Z/26KFIdoo6nkj86iRI1FuFgbkRzu1E47KIKFwp1PkV67Xr6k5LkHS9oKhfpxdes eAvSsezG3u8m2dw2uBIbcc2py4J4gCog8K8Wo8U6eIUls63XXzY/zElqiYhb4yHs iBF3i5vfhlKjRVMiR3Sm9TDzyWo1U1uppuakKy1n1Z3jeEnZtEQW9dkwb+2vqppo wZ4Q2JBOE/S1m775uCFETyFXOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8s8Ib3 c1L8WAbM07jTH4zAF/cxMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC++jooszpaNKVdzPh6/Vap2lagwzlYYMe2la71esqj7MLgp5TO3G/T +Uh2OWWNIruyWI1yOP/J9AgMn4E1qLXA79IxE97v9PCnbzndRiCvz2FxyvRHZrgm t5xL/JxlC+7HQeFPSmjr8EiE9PmRsAzP9PR6sZxkXdMpYkGMUXsDIm4w36kFL5kK 945BuEG7wexmBkd0rR6AU9roBAUHe7qZvxZy/kZaOfLtt4sIVHwcRZd3n8YD8lUE w6fTIOJw4GPi05i/iVdJ1lP31osgB/iWLufnvrkFgFwnRDiiur5p+u3+IihlyHvt rW7oiMv3lBAdlcva9+lq103SiI31CxUs -----END CERTIFICATE-----Generated at Thu Jul 3 01:10:18 2025 by rpki-client