Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
File:                     BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json)
Hash identifier:          3/oB5HPHisNXD3kmd5rtbaK9/J/s0I0xKnxslwKSwpI=
Subject key identifier:   0C:48:4E:67:DA:00:E8:C0:50:32:9B:12:E6:88:16:F3:E6:EF:FD:58
Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9
Certificate issuer:       /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9
Certificate serial:       0D0D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
Manifest number:          0CEC
Signing time:             Thu 02 Jul 2026 18:33:12 +0000
Manifest this update:     Thu 02 Jul 2026 18:33:12 +0000
Manifest next update:     Thu 09 Jul 2026 18:33:12 +0000
Files and hashes:         1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: Yp0tKYZWTFc+C3vGaNtig0egMbHPmPiPCITpeyXgw1k=)
                          2: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: XzUEcWrFObnHhypJzqr40j9vQlCZVakmt78JschNZdU=)
                          3: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: nj+oib/V31McsWuRSdIo8ebXzbzd0Aai1WTDOvqOntk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl
                          rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 18:33:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3341 (0xd0d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9
        Validity
            Not Before: Jul  2 18:33:12 2026 GMT
            Not After : Jul  9 18:33:12 2026 GMT
        Subject: CN=6a46aee8-0e93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:c7:b5:1a:91:e6:e3:6c:02:f9:fb:c7:cc:19:
                    98:d7:95:96:ef:d5:53:da:a6:7c:7a:33:f2:ef:46:
                    8c:79:fd:e5:72:65:28:3c:17:a3:c1:18:7b:42:3b:
                    a5:63:e9:d1:a2:14:cb:b3:12:60:27:1f:0e:ef:55:
                    4e:e2:3f:b5:10:57:f7:6d:30:ad:af:d7:f9:89:86:
                    dd:5b:5e:e2:1a:a6:37:2b:5e:97:89:79:00:8c:2b:
                    d0:ee:4f:33:82:88:14:c3:55:7b:86:85:92:02:14:
                    8c:8b:75:18:af:64:e4:63:d2:3b:52:ad:c0:2d:bf:
                    90:62:98:4e:92:c8:d9:09:9c:11:54:e9:ce:24:0f:
                    2e:4b:f3:dd:5a:8a:da:4e:e1:96:5b:f6:52:40:67:
                    37:a2:bd:03:15:89:15:64:28:37:89:a8:ec:c9:d1:
                    93:b2:1b:aa:9c:13:15:c0:e1:1f:59:a6:33:7e:f5:
                    82:f4:ac:0c:2e:95:c9:67:12:8a:1c:63:b2:43:76:
                    e7:24:2e:f4:cb:f5:4a:52:0d:8a:7f:f8:9f:60:9f:
                    ab:59:f4:0a:a7:99:2b:4e:72:3d:ef:b9:98:b4:8d:
                    57:75:d7:24:5e:cf:73:fa:4c:04:a6:5f:7d:b1:c5:
                    82:71:b0:92:60:56:11:5e:b9:14:94:7e:8d:4b:32:
                    39:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:48:4E:67:DA:00:E8:C0:50:32:9B:12:E6:88:16:F3:E6:EF:FD:58
            X509v3 Authority Key Identifier:
                keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:2b:73:26:b9:42:ef:0b:79:98:76:b2:d8:b0:21:81:4b:cf:
         46:c6:0a:ef:a4:63:ce:6e:32:d8:02:c8:e1:a1:46:75:48:9e:
         f1:6e:a0:e3:3b:7e:ad:d9:f4:bb:27:9f:a0:9b:3b:26:7e:93:
         1b:ba:45:84:54:dc:53:74:2d:db:91:4c:32:87:1c:0c:c7:57:
         95:f1:92:74:a0:4e:4e:60:12:26:e7:eb:4f:6f:97:6f:30:15:
         56:99:21:a6:82:92:5d:6a:c0:60:d7:f1:e4:5b:da:80:56:14:
         df:1a:0f:11:20:a2:c4:63:e7:76:62:e7:02:25:f7:0b:3e:94:
         42:85:82:02:b7:e7:a6:01:c0:09:7e:13:a4:c0:c6:3d:c1:dc:
         c5:10:5b:fe:de:54:2f:8f:cf:ae:3e:9c:26:10:7e:ef:4d:ed:
         be:ff:64:b0:7e:50:d6:cb:ff:07:ff:86:4f:b4:a0:b0:37:a8:
         3c:95:b3:01:8f:86:0c:29:ac:60:03:2a:cb:d6:de:33:d7:d0:
         46:79:72:54:e8:c6:17:a3:32:7f:ae:38:f1:7f:10:b3:dc:e7:
         20:ae:97:ea:ec:f6:9c:7e:1a:9e:c0:8a:d4:33:12:a2:f6:e2:
         c8:34:9c:dd:b6:85:17:d9:46:db:62:73:91:24:ad:d7:60:c7:
         0f:48:c6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:26:24 2026 by rpki-client