$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: 4INM3r5EPjAixtBcH1r5uJoosbAiERQoBDQgFfDve/4= Subject key identifier: 10:A5:AD:E7:C0:72:67:02:FC:A0:E6:0E:E7:A4:4C:22:CF:69:81:1C Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0C72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0C55 Signing time: Thu 18 Sep 2025 18:47:12 +0000 Manifest this update: Thu 18 Sep 2025 18:47:12 +0000 Manifest next update: Thu 25 Sep 2025 18:47:12 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: fydsV30vaHa/UTk0ld/0u6blbVmygCGhNEUACb4EKJ8=) 2: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: YvJPp5TLJmmNMFrXdStXJanbJJfuz5ICtmKerDM4nQo=) 3: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: 6O0VKauTuWTfzmPjcovFKdSm/+YMqCBqWG3p+BX8OSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3186 (0xc72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Sep 18 18:47:12 2025 GMT Not After : Sep 25 18:47:12 2025 GMT Subject: CN=68cc53b0-d167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:08:c7:fe:af:16:f5:30:c2:78:02:e2:4b:e2: d4:1b:16:09:94:ef:1e:82:8a:6b:da:07:47:c5:52: 01:62:97:f3:40:57:6d:ad:bf:43:83:11:18:5a:6b: 61:3a:9e:ba:47:58:73:c5:5d:1c:57:ef:a9:f7:18: 01:6a:fa:48:d3:0e:e5:69:9b:49:34:05:1a:c4:b0: 38:bf:0e:04:76:c7:2c:5c:cf:44:01:72:d4:e7:22: fd:94:c2:12:a3:75:b4:7c:e7:4b:13:1e:45:c5:ac: 08:b3:a7:64:03:34:6d:44:d7:7b:4a:52:81:b9:e0: 1c:e8:56:81:dd:86:25:b1:2e:3f:9e:3e:a5:9c:98: 16:b0:c5:1b:ac:fd:b8:6b:db:83:77:9b:e4:3c:5a: 5c:ac:fb:b0:f4:ba:b2:34:13:ca:e0:ee:46:28:fd: 5c:8f:de:f1:b0:22:fc:77:86:fc:38:25:f1:54:a1: ee:55:a8:a3:8d:4f:1e:7b:a5:62:4f:2b:ae:85:0e: 88:cb:e5:fd:8c:de:08:db:07:7e:da:a1:8f:0b:6e: 54:a7:3e:46:90:8f:db:27:e5:3a:8f:bc:5d:eb:f8: d4:4f:e9:be:02:54:f8:d9:7f:4f:23:9d:b7:95:ae: 39:a8:1e:8a:bb:68:5b:42:aa:8b:06:6c:e0:05:ea: b8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A5:AD:E7:C0:72:67:02:FC:A0:E6:0E:E7:A4:4C:22:CF:69:81:1C X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8b:35:29:2a:93:71:04:5e:f2:66:b7:65:52:9d:a1:ba:2f: f7:25:2f:e1:c2:42:73:8e:dd:d9:57:00:90:ef:6c:60:45:96: f9:63:53:15:67:4c:48:8e:4a:e5:dd:8a:c4:65:b7:1d:33:23: d6:a5:14:f5:a7:e8:65:39:71:5d:93:3f:c8:f0:9b:6e:3c:41: d6:5f:98:97:df:14:ec:8f:98:8c:62:08:e8:7d:ae:87:1b:9d: d9:23:6a:61:d3:2e:87:0e:8b:9a:5d:e9:3a:19:10:73:eb:bb: 88:97:41:97:d8:f6:f8:46:c7:98:4c:be:60:81:7f:c8:df:61: 7c:db:91:82:5e:1a:76:b8:8e:70:b2:39:6d:5a:36:70:bb:7a: 01:47:04:8b:c6:e0:b4:ff:62:7b:c0:3e:b3:54:c2:03:0c:38: 09:8c:9e:0c:d9:ff:ad:9d:d7:07:df:19:54:92:aa:81:ca:ed: cb:1a:46:63:1e:22:c9:b9:44:a8:fe:e9:b9:f1:d3:99:f1:33: fb:c0:4f:69:70:f5:f8:d4:b9:32:5a:94:92:c8:be:b9:70:f0: dd:44:97:c5:bc:d4:05:d9:a8:b9:47:96:8b:c3:92:53:c4:ea: 5e:27:6d:88:74:99:08:b7:4f:a8:6c:7a:70:5f:96:d1:ab:d3: 15:15:13:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjUwOTE4MTg0NzEyWhcNMjUwOTI1MTg0NzEyWjAYMRYwFAYD VQQDEw02OGNjNTNiMC1kMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwjH/q8W9TDCeALiS+LUGxYJlO8egopr2gdHxVIBYpfzQFdtrb9DgxEYWmth Op66R1hzxV0cV++p9xgBavpI0w7laZtJNAUaxLA4vw4EdscsXM9EAXLU5yL9lMIS o3W0fOdLEx5FxawIs6dkAzRtRNd7SlKBueAc6FaB3YYlsS4/nj6lnJgWsMUbrP24 a9uDd5vkPFpcrPuw9LqyNBPK4O5GKP1cj97xsCL8d4b8OCXxVKHuVaijjU8ee6Vi TyuuhQ6Iy+X9jN4I2wd+2qGPC25Upz5GkI/bJ+U6j7xd6/jUT+m+AlT42X9PI523 la45qB6Ku2hbQqqLBmzgBeq4PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBClrefA cmcC/KDmDuekTCLPaYEcMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyizUpKpNxBF7yZrdlUp2hui/3JS/hwkJzjt3ZVwCQ72xgRZb5Y1MV Z0xIjkrl3YrEZbcdMyPWpRT1p+hlOXFdkz/I8JtuPEHWX5iX3xTsj5iMYgjofa6H G53ZI2ph0y6HDouaXek6GRBz67uIl0GX2Pb4RseYTL5ggX/I32F825GCXhp2uI5w sjltWjZwu3oBRwSLxuC0/2J7wD6zVMIDDDgJjJ4M2f+tndcH3xlUkqqByu3LGkZj HiLJuUSo/um58dOZ8TP7wE9pcPX41LkyWpSSyL65cPDdRJfFvNQF2ai5R5aLw5JT xOpeJ22IdJkIt0+obHpwX5bRq9MVFRP8 -----END CERTIFICATE-----Generated at Fri Sep 19 03:57:05 2025 by rpki-client