$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: qHO9RvlpDru2CrApX2GXa2qAkV3QCNcBBHF/8v0fK6I= Subject key identifier: CA:73:54:49:3B:5F:8B:7B:5E:1E:69:91:3A:72:66:01:D5:3F:B1:65 Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A77 Signing time: Sat 18 Oct 2025 20:35:16 +0000 Manifest this update: Sat 18 Oct 2025 20:35:15 +0000 Manifest next update: Sat 25 Oct 2025 20:35:15 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: wR9XM60QaAvg9/Ll8PAeAWnSPs5gx1lu0CwMSf8t1RE=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: 6Cva/MAM9NxBoaAYG/HBqjbHLWksXNLd6d8hzeYffrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: Oct 18 20:35:15 2025 GMT Not After : Oct 25 20:35:15 2025 GMT Subject: CN=68f3fa04-e93b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:e8:de:51:b3:b5:6f:df:13:ef:9b:40:a0: 19:06:ad:aa:8d:f6:0f:c3:fc:ad:5c:73:f5:4a:4f: 47:f9:c8:bc:47:06:66:82:32:ef:e2:28:bf:60:62: 45:70:12:2b:c0:6a:53:fc:2f:75:4d:73:01:48:10: 9d:f8:fa:49:7c:57:29:80:b4:bc:7e:09:6c:9b:c4: 11:4b:08:24:5c:6a:f5:5b:32:73:a0:a9:ce:d3:5e: a9:10:67:77:29:83:d5:81:85:d1:a5:de:66:87:56: 7a:85:4f:16:5c:e8:34:f5:0e:a1:13:26:1c:0d:57: b6:c0:f9:8e:a1:7e:85:f5:73:3e:3c:ed:3d:af:5f: fe:3a:79:e2:c2:0d:3d:9f:ff:3c:28:8d:7c:d9:49: b0:a7:b0:b2:7a:7b:64:22:df:69:e2:2c:6d:76:5b: 8b:98:22:e4:e7:e6:ce:9c:23:a0:15:22:b2:91:51: 10:04:ca:c3:9b:70:76:3e:e4:25:30:65:27:c2:74: dc:a6:71:47:48:4a:04:f2:13:fe:4f:4d:10:b3:b4: 30:bb:13:cb:eb:2f:d6:97:2a:d3:fd:8f:dd:ca:bf: 98:67:49:58:ff:ee:d1:77:a3:13:83:13:0e:38:7f: e8:d5:f7:cf:9d:35:f2:2b:93:a1:0b:04:5a:99:08: 85:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:73:54:49:3B:5F:8B:7B:5E:1E:69:91:3A:72:66:01:D5:3F:B1:65 X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:cb:80:3b:1b:7d:2c:70:f1:54:c8:ca:00:31:a9:a0:20:8f: ca:42:22:2a:90:ca:f8:69:1e:1d:31:df:c7:72:64:76:b8:d6: 38:e6:61:c3:3f:93:a1:3a:f9:8f:89:2f:96:44:f4:3d:72:14: 3b:b4:d6:2a:6c:21:05:d7:63:c2:70:a0:7b:52:1a:58:dc:6d: 4d:35:6f:25:75:78:18:9d:92:65:91:d6:09:4c:fb:ab:ee:1e: 8b:5b:0f:e8:85:6a:82:13:91:9b:ac:b3:73:98:59:9d:98:04: 73:1e:ce:57:3a:f0:f9:43:7f:49:02:ee:27:58:61:79:42:60: d7:61:ef:70:99:a8:22:66:cd:30:2f:0e:c5:6e:2e:4c:83:3c: 4e:d1:7d:e4:3a:c7:57:4f:cb:5f:85:33:ad:ae:2d:ec:7a:33: c7:32:3e:0a:f5:99:a6:1b:39:a4:fc:69:c8:b9:78:d4:99:34: b6:7a:ee:8e:78:cb:2c:d6:1b:00:aa:e5:da:90:b1:cb:89:83: 78:36:3f:7d:68:9a:e1:60:09:29:58:0f:2f:42:39:39:8d:fd: 31:b6:dd:87:d3:68:f5:98:56:0b:80:69:ff:62:8b:1d:08:b5: 81:f7:98:bf:16:6e:64:9f:7e:65:ce:22:e1:f0:99:e4:dc:b5: 66:75:a3:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUxMDE4MjAzNTE1WhcNMjUxMDI1MjAzNTE1WjAYMRYwFAYD VQQDEw02OGYzZmEwNC1lOTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIPo3lGztW/fE++bQKAZBq2qjfYPw/ytXHP1Sk9H+ci8RwZmgjLv4ii/YGJF cBIrwGpT/C91TXMBSBCd+PpJfFcpgLS8fglsm8QRSwgkXGr1WzJzoKnO016pEGd3 KYPVgYXRpd5mh1Z6hU8WXOg09Q6hEyYcDVe2wPmOoX6F9XM+PO09r1/+Onniwg09 n/88KI182Umwp7CyentkIt9p4ixtdluLmCLk5+bOnCOgFSKykVEQBMrDm3B2PuQl MGUnwnTcpnFHSEoE8hP+T00Qs7QwuxPL6y/WlyrT/Y/dyr+YZ0lY/+7Rd6MTgxMO OH/o1ffPnTXyK5OhCwRamQiFzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpzVEk7 X4t7Xh5pkTpyZgHVP7FlMB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3y4A7G30scPFUyMoAMamgII/KQiIqkMr4aR4dMd/HcmR2uNY45mHD P5OhOvmPiS+WRPQ9chQ7tNYqbCEF12PCcKB7UhpY3G1NNW8ldXgYnZJlkdYJTPur 7h6LWw/ohWqCE5GbrLNzmFmdmARzHs5XOvD5Q39JAu4nWGF5QmDXYe9wmagiZs0w Lw7Fbi5MgzxO0X3kOsdXT8tfhTOtri3sejPHMj4K9ZmmGzmk/GnIuXjUmTS2eu6O eMss1hsAquXakLHLiYN4Nj99aJrhYAkpWA8vQjk5jf0xtt2H02j1mFYLgGn/Yosd CLWB95i/Fm5kn35lziLh8Jnk3LVmdaOw -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:32 2025 by rpki-client