$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: x/CS5ViF61V9D+4l5IVDuchATb+wSfJT7d8M9NpI19c= Subject key identifier: F4:B5:92:16:7E:D1:B5:FF:BE:BE:36:7B:4A:92:02:80:16:89:59:29 Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0CF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0CD1 Signing time: Thu 14 May 2026 18:28:33 +0000 Manifest this update: Thu 14 May 2026 18:28:33 +0000 Manifest next update: Thu 21 May 2026 18:28:33 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: bwxoZXP9iuDYNMRhBy5/I8pcozTtf9Htg9ml09JI+aE=) 2: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: H223H2o9dk5m/ZWR7SfR3uoyBy9MoGjlgT832ixhTqA=) 3: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: 84HSU/b3Ji+23l8vXYY4ngi5sLo8HjrYKnYa+FFKrMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 18:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3312 (0xcf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: May 14 18:28:33 2026 GMT Not After : May 21 18:28:33 2026 GMT Subject: CN=6a061451-b215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4d:9f:00:59:8c:12:01:66:65:1b:18:05:13: 46:40:69:aa:03:ea:1f:18:af:a6:48:f8:a7:9b:db: 61:d1:3c:50:af:0a:33:36:70:81:a3:9a:c6:9c:49: 11:1c:23:04:9d:09:92:6a:6d:30:24:27:75:48:8c: 48:1c:1b:d3:ec:b7:48:40:b1:97:17:fa:0d:ab:6c: 48:5f:ce:49:44:d9:a5:05:9e:ce:df:7d:87:07:6e: 39:56:4c:77:6f:dd:db:d7:62:4d:a3:da:36:a7:e0: af:4d:39:2d:a4:f8:6c:6c:bc:57:28:6f:0d:77:63: 1a:36:59:06:7b:0f:a8:b3:90:08:ed:44:22:95:22: f4:3e:7d:9b:b7:b8:9a:41:d9:33:0a:7f:a0:9a:ed: d5:dd:7a:82:07:1d:d0:4c:fa:0e:26:98:77:ad:c2: 1b:79:8b:3f:0a:d5:af:11:59:1c:13:23:67:53:6c: 43:6d:01:53:eb:43:4e:84:e9:9a:d1:55:8a:f4:d3: 88:65:62:34:69:f5:8d:e8:56:46:95:61:10:e3:81: 0f:3e:e0:97:19:93:fd:8c:b3:00:e3:a3:5b:5b:a8: 4d:a1:33:7e:26:46:0d:87:f3:c0:4f:81:65:6d:33: 3e:2e:45:d3:51:af:86:3f:cf:78:a4:69:16:37:61: f3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B5:92:16:7E:D1:B5:FF:BE:BE:36:7B:4A:92:02:80:16:89:59:29 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f0:a8:c9:7c:f9:b3:8c:1a:7d:5a:73:35:e8:77:14:3e:c7: 19:6c:d2:a8:1f:0f:fb:85:52:12:dd:a2:1d:3f:1d:72:e1:36: 8a:ac:e7:64:8c:c8:37:5c:43:dc:4f:d1:a3:84:35:b7:33:02: 65:75:93:38:7c:9f:4d:09:e4:4c:3e:5a:e3:14:bd:28:26:d6: 87:60:af:f1:e8:ce:8f:02:74:d7:75:71:af:52:a7:7e:d5:59: 6e:ae:cb:eb:11:fa:66:d0:7c:94:b1:26:e1:8a:c0:80:c5:86: 93:f9:f7:2d:14:e6:28:ab:b5:65:c5:be:90:22:ae:cf:c7:ea: 32:48:d8:a1:a8:d1:d1:6b:75:18:f4:d1:df:93:b6:50:ea:7d: 9a:2d:a8:2d:4d:8e:3b:40:03:e6:0c:9e:03:11:bc:4b:cc:cc: b9:33:56:cb:e5:ce:ed:2a:84:6f:30:30:07:0e:ef:ac:c7:42: ab:9e:ce:cb:74:b8:55:42:5a:06:a2:17:c5:1f:e7:87:fd:93: 41:5c:5c:5e:cb:c2:a7:b7:b2:15:40:4e:db:73:f2:34:60:84: f6:c4:be:44:32:bc:9d:04:5f:60:a3:7a:91:8a:a3:85:9a:40: b9:1e:23:84:fd:3a:ee:42:93:31:d0:1c:90:97:2a:12:78:cc: 48:08:d4:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjYwNTE0MTgyODMzWhcNMjYwNTIxMTgyODMzWjAYMRYwFAYD VQQDEw02YTA2MTQ1MS1iMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs02fAFmMEgFmZRsYBRNGQGmqA+ofGK+mSPinm9th0TxQrwozNnCBo5rGnEkR HCMEnQmSam0wJCd1SIxIHBvT7LdIQLGXF/oNq2xIX85JRNmlBZ7O332HB245Vkx3 b93b12JNo9o2p+CvTTktpPhsbLxXKG8Nd2MaNlkGew+os5AI7UQilSL0Pn2bt7ia QdkzCn+gmu3V3XqCBx3QTPoOJph3rcIbeYs/CtWvEVkcEyNnU2xDbQFT60NOhOma 0VWK9NOIZWI0afWN6FZGlWEQ44EPPuCXGZP9jLMA46NbW6hNoTN+JkYNh/PAT4Fl bTM+LkXTUa+GP894pGkWN2HzrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPS1khZ+ 0bX/vr42e0qSAoAWiVkpMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANfCoyXz5s4wafVpzNeh3FD7HGWzSqB8P+4VSEt2iHT8dcuE2iqznZIzIN1xD 3E/Ro4Q1tzMCZXWTOHyfTQnkTD5a4xS9KCbWh2Cv8ejOjwJ013Vxr1KnftVZbq7L 6xH6ZtB8lLEm4YrAgMWGk/n3LRTmKKu1ZcW+kCKuz8fqMkjYoajR0Wt1GPTR35O2 UOp9mi2oLU2OO0AD5gyeAxG8S8zMuTNWy+XO7SqEbzAwBw7vrMdCq57Oy3S4VUJa BqIXxR/nh/2TQVxcXsvCp7eyFUBO23PyNGCE9sS+RDK8nQRfYKN6kYqjhZpAuR4j hP067kKTMdAckJcqEnjMSAjUOQ== -----END CERTIFICATE-----Generated at Fri May 15 20:43:32 2026 by rpki-client