$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: YLHh6fPjYkOBeYApF3DYTGGqTCrUGx4q2Ecjp+KLuHc= Subject key identifier: F7:8A:9B:32:FB:31:1C:6C:BB:94:B9:97:34:26:0A:22:C2:C2:CF:47 Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0C8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0C6D Signing time: Tue 04 Nov 2025 18:40:12 +0000 Manifest this update: Tue 04 Nov 2025 18:40:12 +0000 Manifest next update: Tue 11 Nov 2025 18:40:12 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: g6/FX1To0cLCMJ8FzowvqAstHKcsMudXVvKsCLQTwIw=) 2: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: YvJPp5TLJmmNMFrXdStXJanbJJfuz5ICtmKerDM4nQo=) 3: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: 6O0VKauTuWTfzmPjcovFKdSm/+YMqCBqWG3p+BX8OSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12, serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Nov 4 18:40:12 2025 GMT Not After : Nov 11 18:40:12 2025 GMT Subject: CN=690a488c-0626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:40:3f:38:0e:12:80:44:51:e3:e7:d6:fb:4c: a7:01:8b:6e:68:60:5b:3c:6e:87:60:80:38:d2:83: ad:8f:4c:5d:8b:8e:a3:46:f4:05:94:e4:2f:96:b7: d3:65:3b:6b:d4:ce:38:e7:59:f5:9a:84:a4:af:04: a5:a4:0c:6c:b2:14:30:9d:58:b4:e4:a3:5a:d6:26: e4:a6:37:2c:7a:0c:33:21:71:ed:6e:83:af:c4:f8: 48:a9:e3:7d:18:3f:c1:ad:b8:29:b5:c4:04:64:db: 73:82:f1:b4:48:a3:01:bb:e9:da:87:8b:fb:8d:60: 90:ea:a0:d4:7d:0b:5c:f5:1c:45:0f:18:91:61:9c: 18:ff:b6:e2:09:72:70:5f:4d:90:74:f2:eb:35:34: 77:cf:b4:df:61:35:d2:cb:48:bf:1b:74:fa:49:db: 07:ed:ad:34:fd:b8:23:04:89:49:3c:96:9a:6d:30: e8:f9:92:47:02:6d:dd:c8:82:12:29:8d:6a:2b:96: e6:c4:7b:9f:3d:66:e2:19:36:ca:f0:0c:36:b5:25: 87:ff:a3:34:c7:f8:c7:2a:30:1f:73:37:79:9c:11: 5b:6a:12:24:88:2a:6e:58:52:fb:d2:c3:b6:b9:93: 72:74:b9:af:47:86:1b:de:fe:4f:69:54:d8:76:17: ee:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8A:9B:32:FB:31:1C:6C:BB:94:B9:97:34:26:0A:22:C2:C2:CF:47 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:3d:9b:8a:88:d5:69:e5:c6:61:4e:96:94:b0:12:fe:de:a0: d3:bf:b6:e3:d2:0b:58:09:62:bf:a1:40:b9:29:0f:43:65:4a: 95:37:63:13:f4:9b:ac:da:9b:45:ff:6e:30:91:c0:c5:55:ce: 42:0d:04:da:9e:31:5f:bb:22:e9:64:92:77:ad:8a:ce:8e:7f: c6:e3:f9:e2:35:1a:4a:03:01:31:84:f9:ad:79:6a:ae:66:3d: 88:50:36:a2:31:ee:4e:38:4d:05:03:a3:d2:fe:38:1b:db:fe: b0:9a:94:b3:eb:2c:9d:0a:f1:6e:ae:a0:44:0f:d5:c0:15:f1: 20:5f:e8:4f:e9:0d:0b:86:e4:5d:cf:19:cb:19:43:8f:28:2b: 57:af:fa:56:ab:23:ca:98:6f:23:58:b0:df:7d:c2:26:ff:df: e1:dc:b7:9f:5b:67:c0:8c:d9:28:59:22:e8:fa:5d:a3:2f:45: e1:f1:f5:f4:f3:47:ea:12:57:fe:38:8e:d7:75:94:1b:b7:9d: 7f:0a:bb:c2:22:58:3f:df:6b:c6:95:cb:ac:45:52:44:a5:d2: 83:71:fc:45:e1:d7:b1:3f:08:b0:b7:34:e0:07:99:d0:66:d7: d2:f0:80:23:e5:2e:8e:43:04:17:d4:b4:d5:4d:61:a6:70:e0: d8:aa:b0:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjUxMTA0MTg0MDEyWhcNMjUxMTExMTg0MDEyWjAYMRYwFAYD VQQDEw02OTBhNDg4Yy0wNjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUA/OA4SgERR4+fW+0ynAYtuaGBbPG6HYIA40oOtj0xdi46jRvQFlOQvlrfT ZTtr1M4451n1moSkrwSlpAxsshQwnVi05KNa1ibkpjcsegwzIXHtboOvxPhIqeN9 GD/BrbgptcQEZNtzgvG0SKMBu+nah4v7jWCQ6qDUfQtc9RxFDxiRYZwY/7biCXJw X02QdPLrNTR3z7TfYTXSy0i/G3T6SdsH7a00/bgjBIlJPJaabTDo+ZJHAm3dyIIS KY1qK5bmxHufPWbiGTbK8Aw2tSWH/6M0x/jHKjAfczd5nBFbahIkiCpuWFL70sO2 uZNydLmvR4Yb3v5PaVTYdhfu3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeKmzL7 MRxsu5S5lzQmCiLCws9HMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVPZuKiNVp5cZhTpaUsBL+3qDTv7bj0gtYCWK/oUC5KQ9DZUqVN2MT 9Jus2ptF/24wkcDFVc5CDQTanjFfuyLpZJJ3rYrOjn/G4/niNRpKAwExhPmteWqu Zj2IUDaiMe5OOE0FA6PS/jgb2/6wmpSz6yydCvFurqBED9XAFfEgX+hP6Q0LhuRd zxnLGUOPKCtXr/pWqyPKmG8jWLDffcIm/9/h3LefW2fAjNkoWSLo+l2jL0Xh8fX0 80fqElf+OI7XdZQbt51/CrvCIlg/32vGlcusRVJEpdKDcfxF4dexPwiwtzTgB5nQ ZtfS8IAj5S6OQwQX1LTVTWGmcODYqrAf -----END CERTIFICATE-----Generated at Wed Nov 5 09:40:17 2025 by rpki-client