$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: TfCuwZqhOTiwutVBMihNloTrN+KJGLvd9zw1ujNLmCE= Subject key identifier: 93:21:0E:2B:7B:A5:27:F6:AC:5E:73:E7:40:02:83:9B:3D:45:CE:07 Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0C3A Signing time: Mon 28 Jul 2025 18:56:23 +0000 Manifest this update: Mon 28 Jul 2025 18:56:22 +0000 Manifest next update: Mon 04 Aug 2025 18:56:22 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: uxJ6qZM0JjgecRxwSy0wyCqyWfpQ2a7mUE+nwFRrHMw=) 2: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: 6O0VKauTuWTfzmPjcovFKdSm/+YMqCBqWG3p+BX8OSE=) 3: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: YvJPp5TLJmmNMFrXdStXJanbJJfuz5ICtmKerDM4nQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 Aug 2025 18:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Jul 28 18:56:22 2025 GMT Not After : Aug 4 18:56:22 2025 GMT Subject: CN=6887c7d7-ab32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:af:e4:d5:74:89:91:cd:86:68:0d:bd:66:af: c4:d5:00:28:59:a8:01:0b:0a:c0:30:6a:82:b4:b3: 34:76:9a:8c:d5:ed:5f:e5:7a:36:a0:4b:d5:50:50: e4:16:3e:88:8f:e8:f1:31:58:43:c5:45:60:21:22: 1f:02:81:96:43:82:31:81:98:c7:cc:4d:7b:10:62: 40:fa:c0:71:31:e8:eb:1e:5e:9b:01:0a:45:f7:26: 39:b3:58:9d:44:53:c0:0a:d5:37:42:dd:9c:9c:b5: 73:15:5d:5c:c8:41:2e:45:e4:86:68:7f:53:fc:3f: aa:3b:28:2c:33:4a:c6:de:5c:a1:7d:10:0f:e6:37: 9b:b0:85:1e:29:fa:a1:16:a3:f9:f7:27:9b:fa:3a: 04:aa:09:68:34:b3:dc:6b:d5:1e:97:c6:b7:ea:f2: 84:5b:c4:c5:7d:a8:f3:60:c4:ef:cb:41:c4:05:c5: 19:ef:43:9a:d2:15:56:3b:d0:bf:99:ba:47:3e:ba: ca:00:b2:ca:eb:dd:c9:3b:ef:2e:d7:f3:60:2e:b2: 85:05:07:c3:21:15:3a:b5:85:83:da:20:89:da:e5: 01:33:83:ed:58:48:ee:39:75:d4:9f:23:d9:e6:72: d8:d3:f9:29:4e:d4:e8:2f:84:71:03:2d:a3:43:1d: 88:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:21:0E:2B:7B:A5:27:F6:AC:5E:73:E7:40:02:83:9B:3D:45:CE:07 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a1:87:53:e0:e6:39:e0:63:71:69:86:e6:be:2d:94:82:2c: 0b:0c:00:45:44:7a:11:29:43:ee:bf:05:38:07:58:05:ea:7b: b2:06:8a:81:85:5e:f2:3d:24:56:b1:4b:61:a8:0e:26:98:2b: 66:2a:0c:8f:6b:44:ca:6c:22:f8:84:5a:02:35:e7:c8:ac:23: 9e:59:f9:dd:57:b3:58:c8:2a:94:2e:46:ef:a9:fe:4d:4e:56: 22:b6:16:0a:f9:51:e8:8e:93:0a:de:5c:b4:65:c1:90:a1:fc: 17:7d:7f:36:c3:f6:c5:e8:a5:e9:60:27:06:39:95:9f:b9:9a: 47:84:08:37:8f:f2:8d:bc:34:49:08:c1:b5:4c:09:d4:22:aa: 7e:71:54:91:fe:cb:91:24:23:67:0f:54:5b:04:95:dd:30:a4: 14:06:45:28:e5:1d:38:b1:fb:74:3a:7d:74:a5:8d:87:07:38: f8:96:30:c4:d3:b0:19:8c:a4:aa:b4:3b:b1:6e:4b:44:9e:3a: 4a:ea:ac:57:ce:9a:06:9e:b6:31:1a:de:2c:a5:74:c2:4d:0e: 06:36:39:25:ca:dc:52:fa:b3:13:21:63:b4:cc:5b:11:27:fb: 42:16:57:b1:7b:39:e7:1a:9d:ed:b7:41:6d:5d:f5:7c:85:5c: 30:9b:68:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjUwNzI4MTg1NjIyWhcNMjUwODA0MTg1NjIyWjAYMRYwFAYD VQQDEw02ODg3YzdkNy1hYjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzK/k1XSJkc2GaA29Zq/E1QAoWagBCwrAMGqCtLM0dpqM1e1f5Xo2oEvVUFDk Fj6Ij+jxMVhDxUVgISIfAoGWQ4IxgZjHzE17EGJA+sBxMejrHl6bAQpF9yY5s1id RFPACtU3Qt2cnLVzFV1cyEEuReSGaH9T/D+qOygsM0rG3lyhfRAP5jebsIUeKfqh FqP59yeb+joEqgloNLPca9Uel8a36vKEW8TFfajzYMTvy0HEBcUZ70Oa0hVWO9C/ mbpHPrrKALLK693JO+8u1/NgLrKFBQfDIRU6tYWD2iCJ2uUBM4PtWEjuOXXUnyPZ 5nLY0/kpTtToL4RxAy2jQx2IuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMhDit7 pSf2rF5z50ACg5s9Rc4HMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4oYdT4OY54GNxaYbmvi2UgiwLDABFRHoRKUPuvwU4B1gF6nuyBoqB hV7yPSRWsUthqA4mmCtmKgyPa0TKbCL4hFoCNefIrCOeWfndV7NYyCqULkbvqf5N TlYithYK+VHojpMK3ly0ZcGQofwXfX82w/bF6KXpYCcGOZWfuZpHhAg3j/KNvDRJ CMG1TAnUIqp+cVSR/suRJCNnD1RbBJXdMKQUBkUo5R04sft0On10pY2HBzj4ljDE 07AZjKSqtDuxbktEnjpK6qxXzpoGnrYxGt4spXTCTQ4GNjklytxS+rMTIWO0zFsR J/tCFlexeznnGp3tt0FtXfV8hVwwm2jK -----END CERTIFICATE-----Generated at Tue Jul 29 19:00:26 2025 by rpki-client