$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: wf1X5VQMWA3ZCHtIEkLdGQaBF9u22LoBBc52nRmHCvo= Subject key identifier: CD:68:90:DF:8B:24:93:4D:D5:CE:5F:E7:00:3A:92:58:69:6E:D7:84 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 0118 Signing time: Sat 01 Jun 2024 06:36:49 +0000 Manifest this update: Sat 01 Jun 2024 06:36:48 +0000 Manifest next update: Sat 08 Jun 2024 06:36:48 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: d3gEwpn/hDxRPD7uuX28anAAAx2b6Wjuq6Cro724qpE=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: Shs9mCOElP23gCk1qChO6oCDzXrGpICaqUKMU94TuiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Jun 1 06:36:48 2024 GMT Not After : Jun 8 06:36:48 2024 GMT Subject: CN=665ac181-a4e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:a2:b1:f5:d2:c9:c3:42:d1:16:46:b0:a7: a8:02:b2:ff:e9:2a:c6:b1:5e:3c:70:5c:e5:2c:23: 89:3c:62:35:00:ab:1b:19:e5:2a:06:3e:f6:39:1e: e1:6b:1a:3a:df:c7:b7:c6:d8:12:e3:73:3b:59:67: 88:8c:2b:79:4a:ce:4c:93:2c:e7:0d:12:28:d4:c1: 8f:39:c9:d8:9c:51:da:3b:3b:cc:94:09:09:0f:01: 02:7a:97:53:52:15:55:fe:5b:b5:bf:f7:6f:2e:54: 03:3d:ae:7d:e9:91:41:32:c3:68:e7:18:90:2a:a2: c0:78:4a:79:43:2c:7c:d2:0d:ab:86:ca:34:28:4e: 76:a8:04:d1:a3:f8:67:78:e4:1d:7b:8d:02:a6:57: 5f:6b:0a:9e:7b:b4:d4:3f:5f:82:38:70:4d:ac:b5: 4e:5f:3d:2c:4d:fa:72:0c:0a:57:d3:42:8d:29:5e: 17:37:a0:55:d9:be:cf:7f:89:d9:12:1a:e3:d2:17: 69:f3:4a:84:52:41:fc:ef:d6:82:46:09:0d:86:98: 69:3a:0d:d4:bb:1f:54:fe:fa:ac:37:59:da:fc:63: 3b:61:93:fb:14:0e:59:2c:87:42:28:d0:7b:dc:eb: bc:4b:85:03:36:02:2a:ff:ec:19:68:2f:6f:33:bf: 67:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:68:90:DF:8B:24:93:4D:D5:CE:5F:E7:00:3A:92:58:69:6E:D7:84 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:55:42:c1:9e:9d:c7:69:fc:35:a8:3a:43:06:20:86:b1:ee: 9b:f9:eb:8e:78:4b:cc:72:d9:b2:99:b7:82:22:7d:5d:28:c9: 22:1d:d0:dd:0d:fc:cd:c6:aa:3c:52:51:d1:63:a0:56:80:20: a8:65:67:36:8f:4d:32:aa:6a:3f:9b:31:4f:d2:a6:eb:48:ba: 05:ef:1c:c4:79:b2:57:0e:c8:b6:f5:99:62:9d:74:56:fa:30: 94:12:4a:0b:c5:58:f7:d5:57:57:ce:de:81:ac:dd:30:49:96: 1b:2e:6b:36:d8:86:68:c5:0c:cc:f0:8e:0b:8d:2e:8e:65:4c: 8a:13:32:09:de:fe:17:91:61:fa:3d:3d:15:4b:7e:27:6a:bf: 69:15:62:6d:33:df:2d:1c:44:49:d2:ff:d8:45:a7:89:51:c0: c0:ef:bc:e9:32:14:b1:1d:0d:d3:74:99:d0:90:de:63:1e:59: 3d:ac:4a:c1:34:d0:29:59:6e:20:eb:98:75:c2:ad:b5:1a:33: 2d:33:25:d0:e7:47:a2:0b:fe:ad:c4:3b:a8:ad:d0:54:6e:5e: 22:3d:8a:3d:7e:f1:47:ae:d4:60:9a:c5:08:e8:a5:10:ba:cd: b8:b7:25:27:b2:c6:e6:02:27:f5:14:e1:8a:cc:9a:55:6f:97: 19:b4:be:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjQwNjAxMDYzNjQ4WhcNMjQwNjA4MDYzNjQ4WjAYMRYwFAYD VQQDEw02NjVhYzE4MS1hNGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeOisfXSycNC0RZGsKeoArL/6SrGsV48cFzlLCOJPGI1AKsbGeUqBj72OR7h axo638e3xtgS43M7WWeIjCt5Ss5MkyznDRIo1MGPOcnYnFHaOzvMlAkJDwECepdT UhVV/lu1v/dvLlQDPa596ZFBMsNo5xiQKqLAeEp5Qyx80g2rhso0KE52qATRo/hn eOQde40Cpldfawqee7TUP1+COHBNrLVOXz0sTfpyDApX00KNKV4XN6BV2b7Pf4nZ Ehrj0hdp80qEUkH879aCRgkNhphpOg3Uux9U/vqsN1na/GM7YZP7FA5ZLIdCKNB7 3Ou8S4UDNgIq/+wZaC9vM79ntwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1okN+L JJNN1c5f5wA6klhpbteEMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEVULBnp3Hafw1qDpDBiCGse6b+euOeEvMctmymbeCIn1dKMkiHdDd DfzNxqo8UlHRY6BWgCCoZWc2j00yqmo/mzFP0qbrSLoF7xzEebJXDsi29ZlinXRW +jCUEkoLxVj31VdXzt6BrN0wSZYbLms22IZoxQzM8I4LjS6OZUyKEzIJ3v4XkWH6 PT0VS34nar9pFWJtM98tHERJ0v/YRaeJUcDA77zpMhSxHQ3TdJnQkN5jHlk9rErB NNApWW4g65h1wq21GjMtMyXQ50eiC/6txDuordBUbl4iPYo9fvFHrtRgmsUI6KUQ us24tyUnssbmAif1FOGKzJpVb5cZtL6R -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:19 2024 by rpki-client on console-fra.rpki-client.org