$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft File: qbsN-21P9jtyiDO-CtZiN5bsihk.mft (raw, json) Hash identifier: gawnM9fDLJZHqKHwE2MC9/XBnPRH5bWXTNDO05RP7ws= Subject key identifier: 21:B1:9A:BA:2D:C0:C8:8A:3B:87:D0:32:E9:EA:AA:30:C7:4D:A3:3B Authority key identifier: A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 Certificate issuer: /CN=A91EBBD7/serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Certificate serial: 0A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft Manifest number: 0A25 Signing time: Mon 12 May 2025 19:37:25 +0000 Manifest this update: Mon 12 May 2025 19:37:24 +0000 Manifest next update: Mon 19 May 2025 19:37:24 +0000 Files and hashes: 1: qbsN-21P9jtyiDO-CtZiN5bsihk.crl (hash: OAJk15PW3BAowye53snd27zr2MkaPDbAKNIgd6CVgZw=) 2: 651072686CBB11EA95256D30C4F9AE02.roa (hash: RbBtMUxEM5O1piu47myWbtaMm/ZIwxdcYTXVUwgD12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2603 (0xa2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBD7, serialNumber=A9BB0DFB6D4FF63B728833BE0AD6623796EC8A19 Validity Not Before: May 12 19:37:24 2025 GMT Not After : May 19 19:37:24 2025 GMT Subject: CN=68224df5-752b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9c:c3:ff:7a:2f:0d:51:96:da:b9:d1:f4:ea: 1d:b1:e4:be:ac:6e:01:26:a2:80:1c:6b:6f:84:01: 93:7d:92:9c:89:15:0f:3c:0b:c5:94:84:37:d0:60: 00:79:c7:de:d1:45:65:fb:89:68:63:29:f8:46:10: 48:8d:96:84:55:68:ca:a1:23:9f:46:4b:77:38:51: 7e:d8:6d:2d:1e:84:2d:15:c5:2e:c9:50:c6:5d:30: d1:2d:91:f0:02:ba:eb:77:f1:df:cc:fb:f3:49:a3: 91:4f:a6:79:8c:20:d7:eb:10:66:c4:2c:8d:69:14: 2d:2b:ab:30:10:c8:0c:68:1b:c9:23:ab:33:71:fc: 0e:fb:4b:5b:9b:9d:28:9d:2b:09:cb:77:96:63:6c: 78:ec:72:8e:0a:11:8f:f1:ed:43:dc:66:10:99:8a: 5c:93:2b:ea:1f:2f:fa:84:e9:77:86:27:9f:4e:aa: 1f:1c:56:96:36:e1:03:63:d9:0b:3f:32:b7:5d:5d: fe:f9:c3:f5:d8:1a:03:02:a6:9e:87:b3:e9:dd:09: d7:4f:74:4e:af:93:0b:97:70:5b:37:ec:74:fb:03: 3c:b0:d1:32:67:0f:a5:a3:1e:1b:5a:e8:5a:8f:89: f5:cd:ac:5e:e9:7c:7c:c3:63:09:1e:49:5e:75:6a: 54:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B1:9A:BA:2D:C0:C8:8A:3B:87:D0:32:E9:EA:AA:30:C7:4D:A3:3B X509v3 Authority Key Identifier: keyid:A9:BB:0D:FB:6D:4F:F6:3B:72:88:33:BE:0A:D6:62:37:96:EC:8A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbsN-21P9jtyiDO-CtZiN5bsihk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBD7/F93219126CB911EA80832E2EC4F9AE02/qbsN-21P9jtyiDO-CtZiN5bsihk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:92:b2:d3:22:67:fc:1a:99:50:ae:7f:9f:ec:f8:62:47:03: 09:4c:35:4f:7a:fd:86:46:5a:a6:93:5a:81:ed:c8:c8:c1:18: c5:0b:5e:0e:11:97:90:46:47:ce:97:ef:bd:37:ca:e4:fe:dc: f0:92:90:9b:9b:96:66:fb:72:17:d5:24:0e:15:3f:e4:c0:72: e3:70:8f:1a:98:ba:c4:db:0a:c3:a5:b8:d8:3b:46:11:9f:41: 3e:c6:62:1b:ca:b2:98:a2:ac:16:cf:a6:74:80:2a:f2:24:74: 25:7c:05:73:aa:87:bf:aa:17:b1:4d:f4:0f:9d:fb:c3:90:c1: 62:66:98:15:e4:29:af:b1:45:18:d6:ad:c9:96:96:7d:5f:5f: d3:02:b4:1e:3d:66:c8:b3:85:6f:dc:c0:f3:56:44:b8:54:35: df:f9:cc:e3:da:bd:bb:d6:d1:01:6c:1a:51:c2:3d:3a:1a:f5: a6:1f:94:d9:3f:f1:ad:05:ae:21:94:a1:4c:ab:c5:e9:44:db: ef:5b:6e:c8:09:0d:f7:cd:34:d0:5f:54:bd:c6:05:3c:27:32: 5b:0a:23:a7:0f:ce:ec:21:ec:b0:6e:8c:57:d0:db:a9:94:57: 5a:d5:7e:1b:52:3f:cc:cf:e5:d1:7f:1a:ca:06:70:a6:6c:42: 16:33:33:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCRDcxMTAvBgNVBAUTKEE5QkIwREZCNkQ0RkY2M0I3Mjg4MzNCRTBBRDY2MjM3 OTZFQzhBMTkwHhcNMjUwNTEyMTkzNzI0WhcNMjUwNTE5MTkzNzI0WjAYMRYwFAYD VQQDEw02ODIyNGRmNS03NTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5zD/3ovDVGW2rnR9OodseS+rG4BJqKAHGtvhAGTfZKciRUPPAvFlIQ30GAA ecfe0UVl+4loYyn4RhBIjZaEVWjKoSOfRkt3OFF+2G0tHoQtFcUuyVDGXTDRLZHw Arrrd/HfzPvzSaORT6Z5jCDX6xBmxCyNaRQtK6swEMgMaBvJI6szcfwO+0tbm50o nSsJy3eWY2x47HKOChGP8e1D3GYQmYpckyvqHy/6hOl3hiefTqofHFaWNuEDY9kL PzK3XV3++cP12BoDAqaeh7Pp3QnXT3ROr5MLl3BbN+x0+wM8sNEyZw+lox4bWuha j4n1zaxe6Xx8w2MJHkledWpUBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGxmrot wMiKO4fQMunqqjDHTaM7MB8GA1UdIwQYMBaAFKm7DfttT/Y7cogzvgrWYjeW7IoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkJENy9GOTMyMTkxMjZD QjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlqdHlpRE8tQ3RaaU41YnNp aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fic04tMjFQOWp0eWlETy1DdFppTjVic2loay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkJENy9GOTMyMTkxMjZDQjkxMUVBODA4MzJFMkVDNEY5QUUwMi9xYnNOLTIxUDlq dHlpRE8tQ3RaaU41YnNpaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbkrLTImf8GplQrn+f7PhiRwMJTDVPev2GRlqmk1qB7cjIwRjFC14O EZeQRkfOl++9N8rk/tzwkpCbm5Zm+3IX1SQOFT/kwHLjcI8amLrE2wrDpbjYO0YR n0E+xmIbyrKYoqwWz6Z0gCryJHQlfAVzqoe/qhexTfQPnfvDkMFiZpgV5CmvsUUY 1q3JlpZ9X1/TArQePWbIs4Vv3MDzVkS4VDXf+czj2r271tEBbBpRwj06GvWmH5TZ P/GtBa4hlKFMq8XpRNvvW27ICQ33zTTQX1S9xgU8JzJbCiOnD87sIeywboxX0Nup lFda1X4bUj/Mz+XRfxrKBnCmbEIWMzNm -----END CERTIFICATE-----Generated at Tue May 13 08:36:31 2025 by rpki-client