
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json)
Hash identifier: 3/oB5HPHisNXD3kmd5rtbaK9/J/s0I0xKnxslwKSwpI=
Subject key identifier: 0C:48:4E:67:DA:00:E8:C0:50:32:9B:12:E6:88:16:F3:E6:EF:FD:58
Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9
Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9
Certificate serial: 0D0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
Manifest number: 0CEC
Signing time: Thu 02 Jul 2026 18:33:12 +0000
Manifest this update: Thu 02 Jul 2026 18:33:12 +0000
Manifest next update: Thu 09 Jul 2026 18:33:12 +0000
Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: Yp0tKYZWTFc+C3vGaNtig0egMbHPmPiPCITpeyXgw1k=)
2: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: XzUEcWrFObnHhypJzqr40j9vQlCZVakmt78JschNZdU=)
3: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: nj+oib/V31McsWuRSdIo8ebXzbzd0Aai1WTDOvqOntk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl
rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 18:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3341 (0xd0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9
Validity
Not Before: Jul 2 18:33:12 2026 GMT
Not After : Jul 9 18:33:12 2026 GMT
Subject: CN=6a46aee8-0e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c7:b5:1a:91:e6:e3:6c:02:f9:fb:c7:cc:19:
98:d7:95:96:ef:d5:53:da:a6:7c:7a:33:f2:ef:46:
8c:79:fd:e5:72:65:28:3c:17:a3:c1:18:7b:42:3b:
a5:63:e9:d1:a2:14:cb:b3:12:60:27:1f:0e:ef:55:
4e:e2:3f:b5:10:57:f7:6d:30:ad:af:d7:f9:89:86:
dd:5b:5e:e2:1a:a6:37:2b:5e:97:89:79:00:8c:2b:
d0:ee:4f:33:82:88:14:c3:55:7b:86:85:92:02:14:
8c:8b:75:18:af:64:e4:63:d2:3b:52:ad:c0:2d:bf:
90:62:98:4e:92:c8:d9:09:9c:11:54:e9:ce:24:0f:
2e:4b:f3:dd:5a:8a:da:4e:e1:96:5b:f6:52:40:67:
37:a2:bd:03:15:89:15:64:28:37:89:a8:ec:c9:d1:
93:b2:1b:aa:9c:13:15:c0:e1:1f:59:a6:33:7e:f5:
82:f4:ac:0c:2e:95:c9:67:12:8a:1c:63:b2:43:76:
e7:24:2e:f4:cb:f5:4a:52:0d:8a:7f:f8:9f:60:9f:
ab:59:f4:0a:a7:99:2b:4e:72:3d:ef:b9:98:b4:8d:
57:75:d7:24:5e:cf:73:fa:4c:04:a6:5f:7d:b1:c5:
82:71:b0:92:60:56:11:5e:b9:14:94:7e:8d:4b:32:
39:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:48:4E:67:DA:00:E8:C0:50:32:9B:12:E6:88:16:F3:E6:EF:FD:58
X509v3 Authority Key Identifier:
keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
05:2b:73:26:b9:42:ef:0b:79:98:76:b2:d8:b0:21:81:4b:cf:
46:c6:0a:ef:a4:63:ce:6e:32:d8:02:c8:e1:a1:46:75:48:9e:
f1:6e:a0:e3:3b:7e:ad:d9:f4:bb:27:9f:a0:9b:3b:26:7e:93:
1b:ba:45:84:54:dc:53:74:2d:db:91:4c:32:87:1c:0c:c7:57:
95:f1:92:74:a0:4e:4e:60:12:26:e7:eb:4f:6f:97:6f:30:15:
56:99:21:a6:82:92:5d:6a:c0:60:d7:f1:e4:5b:da:80:56:14:
df:1a:0f:11:20:a2:c4:63:e7:76:62:e7:02:25:f7:0b:3e:94:
42:85:82:02:b7:e7:a6:01:c0:09:7e:13:a4:c0:c6:3d:c1:dc:
c5:10:5b:fe:de:54:2f:8f:cf:ae:3e:9c:26:10:7e:ef:4d:ed:
be:ff:64:b0:7e:50:d6:cb:ff:07:ff:86:4f:b4:a0:b0:37:a8:
3c:95:b3:01:8f:86:0c:29:ac:60:03:2a:cb:d6:de:33:d7:d0:
46:79:72:54:e8:c6:17:a3:32:7f:ae:38:f1:7f:10:b3:dc:e7:
20:ae:97:ea:ec:f6:9c:7e:1a:9e:c0:8a:d4:33:12:a2:f6:e2:
c8:34:9c:dd:b6:85:17:d9:46:db:62:73:91:24:ad:d7:60:c7:
0f:48:c6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:26:24 2026 by rpki-client