$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: TpV9ivObkVsYHd4S/Yqb/0XiTvigx05sOfHsi6LsAGQ= Subject key identifier: 4F:80:13:76:A6:79:EC:0F:7B:6C:92:91:6A:A9:01:12:89:B3:F0:92 Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0C3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0C21 Signing time: Sun 08 Jun 2025 18:28:28 +0000 Manifest this update: Sun 08 Jun 2025 18:28:28 +0000 Manifest next update: Sun 15 Jun 2025 18:28:28 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: Pn6adzfRxwzXGG0zjpw0Kztjod7X5Brjnwqx/iM+X1c=) 2: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: 6O0VKauTuWTfzmPjcovFKdSm/+YMqCBqWG3p+BX8OSE=) 3: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: YvJPp5TLJmmNMFrXdStXJanbJJfuz5ICtmKerDM4nQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 18:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3134 (0xc3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Jun 8 18:28:28 2025 GMT Not After : Jun 15 18:28:28 2025 GMT Subject: CN=6845d64c-b17d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:bc:ab:93:7b:98:88:86:99:7f:7a:e3:0d: af:2c:9f:38:f5:9b:f2:04:70:3d:ea:06:b0:f8:30: 85:f3:04:2a:e6:fa:db:6e:84:d5:fd:8d:c6:82:ba: 2c:23:21:a7:39:35:59:ab:e6:d9:03:9f:e5:2d:6d: bf:cb:19:a5:06:a4:c9:00:cf:98:d4:0c:2b:94:7c: 0b:55:7f:d0:8a:73:14:9d:66:bb:e1:c6:23:24:84: 7f:0d:fc:89:93:f3:68:f6:e3:40:ce:5a:a0:8f:63: 3f:f6:88:4d:e6:fd:2a:7f:c7:57:e3:42:9d:8b:28: b2:81:7f:e5:7f:5a:c5:57:ac:50:b0:2a:f1:32:8b: fc:01:ae:94:81:fe:57:ac:0e:df:73:0d:4b:d9:4b: bc:9f:2e:14:8d:81:87:57:34:f3:36:49:84:d5:31: 8b:f7:ed:12:f0:4b:71:49:c3:cf:bf:f0:b9:c2:95: cd:6c:ef:52:75:ca:fe:ea:2e:54:fd:33:11:aa:ea: 66:2b:f0:5b:f9:dd:29:19:99:62:6d:16:df:06:b7: 9b:f0:92:bd:be:a7:b2:38:1a:ba:0b:4b:22:85:bd: 0c:f2:e3:43:ff:83:b4:ce:48:ce:19:30:0a:aa:64: 15:17:92:d5:41:fd:7f:2e:e5:bc:10:15:7e:de:15: 40:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:80:13:76:A6:79:EC:0F:7B:6C:92:91:6A:A9:01:12:89:B3:F0:92 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:40:4d:02:4b:7e:93:2c:85:4e:f1:33:ae:f1:5e:b2:ab:71: 6d:b5:52:b0:ed:19:1c:9d:21:a8:26:b6:be:8c:67:ac:82:13: cd:ee:59:36:93:ae:2a:ee:12:e9:34:58:8f:c5:11:87:5e:19: 99:7a:1b:ed:5c:8d:39:46:9c:d9:a5:9d:3d:93:ec:22:56:f0: c0:e6:76:d2:1a:f9:1a:cc:f4:8f:49:e9:60:16:a0:45:7b:f6: 7d:80:be:9a:3e:66:a0:84:a5:a9:bc:4a:91:75:75:14:c2:1c: dd:93:24:1a:28:3a:d9:fd:ad:ee:65:33:cc:68:f7:b6:bf:fb: 9e:4b:46:00:dd:3d:9c:c4:8e:49:73:70:61:a9:e3:b2:60:9f: 9b:17:4a:91:38:1a:3c:b1:67:96:a9:d6:d6:cb:f5:b9:31:42: 3f:ba:f4:19:52:a4:e9:c0:ca:2d:e9:df:ce:80:d5:66:84:92: 0f:3c:f9:4a:4d:8f:3f:71:39:76:da:d8:b6:66:d3:10:5d:fd: 50:d6:24:77:6e:8c:01:22:bb:bc:21:83:64:30:83:c5:df:69: ad:85:c5:98:4e:55:a5:f4:62:ce:94:4c:e7:03:09:22:a9:9a: b6:d6:c5:c4:67:cf:f6:b4:f4:d9:d5:09:fd:e0:06:41:bf:f6: fb:b3:02:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjUwNjA4MTgyODI4WhcNMjUwNjE1MTgyODI4WjAYMRYwFAYD VQQDEw02ODQ1ZDY0Yy1iMTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFu8q5N7mIiGmX964w2vLJ849ZvyBHA96gaw+DCF8wQq5vrbboTV/Y3Ggros IyGnOTVZq+bZA5/lLW2/yxmlBqTJAM+Y1AwrlHwLVX/QinMUnWa74cYjJIR/DfyJ k/No9uNAzlqgj2M/9ohN5v0qf8dX40KdiyiygX/lf1rFV6xQsCrxMov8Aa6Ugf5X rA7fcw1L2Uu8ny4UjYGHVzTzNkmE1TGL9+0S8EtxScPPv/C5wpXNbO9Sdcr+6i5U /TMRqupmK/Bb+d0pGZlibRbfBreb8JK9vqeyOBq6C0sihb0M8uND/4O0zkjOGTAK qmQVF5LVQf1/LuW8EBV+3hVAgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+AE3am eewPe2ySkWqpARKJs/CSMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeQE0CS36TLIVO8TOu8V6yq3FttVKw7RkcnSGoJra+jGesghPN7lk2 k64q7hLpNFiPxRGHXhmZehvtXI05RpzZpZ09k+wiVvDA5nbSGvkazPSPSelgFqBF e/Z9gL6aPmaghKWpvEqRdXUUwhzdkyQaKDrZ/a3uZTPMaPe2v/ueS0YA3T2cxI5J c3BhqeOyYJ+bF0qROBo8sWeWqdbWy/W5MUI/uvQZUqTpwMot6d/OgNVmhJIPPPlK TY8/cTl22ti2ZtMQXf1Q1iR3bowBIru8IYNkMIPF32mthcWYTlWl9GLOlEznAwki qZq21sXEZ8/2tPTZ1Qn94AZBv/b7swIj -----END CERTIFICATE-----Generated at Sun Jun 8 22:39:50 2025 by rpki-client