$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: VI2eAsnRNI+b9GB42apFa8v+SyqBRhv5RvdBPKccmCQ= Subject key identifier: 64:31:E2:4A:34:B6:CF:CE:FF:E9:F3:83:99:5B:0B:41:62:4A:69:EB Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0CD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0CBA Signing time: Mon 30 Mar 2026 18:27:21 +0000 Manifest this update: Mon 30 Mar 2026 18:27:20 +0000 Manifest next update: Mon 06 Apr 2026 18:27:20 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: C84Uqncb0twL1PuvBmIEllRVMp3/oOf7dHnw8xqh5bI=) 2: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: 84HSU/b3Ji+23l8vXYY4ngi5sLo8HjrYKnYa+FFKrMA=) 3: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: H223H2o9dk5m/ZWR7SfR3uoyBy9MoGjlgT832ixhTqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3289 (0xcd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Mar 30 18:27:20 2026 GMT Not After : Apr 6 18:27:20 2026 GMT Subject: CN=69cac089-e8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:16:ad:f9:4f:66:f4:29:bf:71:71:51:58:7f: 17:54:ce:3c:15:d8:4a:1f:a4:76:d3:d1:9b:41:dc: 3d:31:bb:62:52:53:11:93:10:7a:d3:72:7a:9a:92: 81:cb:e6:77:32:f5:ea:a2:22:9c:77:6f:4c:66:d8: 46:b3:d9:ab:c9:05:57:4e:11:1a:74:7f:bd:14:e8: 9a:09:06:7d:e4:c3:30:c7:94:c7:6a:32:31:0a:24: 6d:4c:5a:16:05:cf:97:f3:d4:02:23:3b:8e:3f:84: c9:8f:84:5a:c7:28:38:c5:a2:bb:60:92:2a:12:2a: 64:79:9d:7b:34:b5:7c:a7:82:28:ee:2e:ac:9e:50: 40:91:91:ac:11:ed:e3:4f:87:4a:63:94:0f:e5:69: 02:a0:26:87:3f:c9:85:97:f3:47:3f:dc:5e:65:46: a1:e5:25:0a:16:ad:c4:f5:97:aa:d2:44:5f:67:00: 80:1c:97:21:ca:c3:eb:df:19:5a:b5:52:cb:8c:39: d1:25:6f:62:51:57:c7:5d:39:45:5b:8c:0a:c5:63: 6f:98:00:c1:71:e5:1e:1c:dc:92:34:45:f6:3d:42: 56:59:b1:ee:5e:73:82:46:72:64:a1:66:60:84:95: 42:43:ed:a2:38:fc:6a:e8:70:47:f4:e7:4f:e1:68: c0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:31:E2:4A:34:B6:CF:CE:FF:E9:F3:83:99:5B:0B:41:62:4A:69:EB X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:00:08:a2:7e:4e:48:af:af:a9:71:25:89:de:2a:80:ab:d5: fa:7a:42:ea:cc:93:97:29:37:e4:57:60:c2:89:74:9e:bc:e7: 12:2c:17:5f:0c:3e:1b:e8:4f:e1:14:e4:fc:b7:a8:0f:67:9e: c3:c1:0c:6c:11:40:de:2c:9e:56:67:83:28:0e:9e:2a:62:41: fd:b8:01:75:14:33:c1:98:28:71:36:91:6e:2e:d7:d6:76:2e: b9:07:90:94:81:bd:e9:96:9c:7c:b0:2b:ad:d7:d2:9c:18:85: c1:a1:b2:1d:46:33:62:ce:c3:a0:e5:b3:d9:e2:e6:79:15:90: 2e:01:bc:6f:43:8c:7b:7f:6f:5b:cf:08:97:34:9e:b1:a8:6d: ba:8d:55:69:fb:91:f4:65:4b:b4:7c:e2:bb:49:13:41:b6:2f: df:38:73:95:e9:5f:7d:bc:b5:45:d2:9e:3f:6f:f2:a4:c9:e1: e2:9e:d1:1e:2f:a5:a0:a4:67:39:68:b7:cd:7d:8f:18:a5:7b: a5:df:9c:2d:bc:2e:fd:94:26:91:05:0b:c4:ec:2a:46:7c:31: 24:31:36:68:4b:f4:aa:33:d3:7f:bf:ae:0d:14:48:cd:99:6c: e7:43:e8:3f:ab:00:7c:87:f6:59:80:24:d1:1d:11:ec:79:eb: a3:a8:4d:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjYwMzMwMTgyNzIwWhcNMjYwNDA2MTgyNzIwWjAYMRYwFAYD VQQDEw02OWNhYzA4OS1lOGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjhat+U9m9Cm/cXFRWH8XVM48FdhKH6R209GbQdw9MbtiUlMRkxB603J6mpKB y+Z3MvXqoiKcd29MZthGs9mryQVXThEadH+9FOiaCQZ95MMwx5THajIxCiRtTFoW Bc+X89QCIzuOP4TJj4Raxyg4xaK7YJIqEipkeZ17NLV8p4Io7i6snlBAkZGsEe3j T4dKY5QP5WkCoCaHP8mFl/NHP9xeZUah5SUKFq3E9Zeq0kRfZwCAHJchysPr3xla tVLLjDnRJW9iUVfHXTlFW4wKxWNvmADBceUeHNySNEX2PUJWWbHuXnOCRnJkoWZg hJVCQ+2iOPxq6HBH9OdP4WjAEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQx4ko0 ts/O/+nzg5lbC0FiSmnrMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZwAIon5OSK+vqXElid4qgKvV+npC6syTlyk35Fdgwol0nrznEiwXXww+G+hP 4RTk/LeoD2eew8EMbBFA3iyeVmeDKA6eKmJB/bgBdRQzwZgocTaRbi7X1nYuuQeQ lIG96ZacfLArrdfSnBiFwaGyHUYzYs7DoOWz2eLmeRWQLgG8b0OMe39vW88IlzSe sahtuo1VafuR9GVLtHziu0kTQbYv3zhzlelffby1RdKeP2/ypMnh4p7RHi+loKRn OWi3zX2PGKV7pd+cLbwu/ZQmkQULxOwqRnwxJDE2aEv0qjPTf7+uDRRIzZls50Po P6sAfIf2WYAk0R0R7Hnro6hNrA== -----END CERTIFICATE-----Generated at Mon Mar 30 22:54:46 2026 by rpki-client