$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: yzMiWiCxfKpRRgf0iaV9sQbCPwA4s20xEXYMIKrGSnw= Subject key identifier: 16:52:37:EB:13:F7:5F:23:CF:EB:97:B0:C1:2A:41:20:C2:BD:1E:7E Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 1E Signing time: Sun 19 May 2024 08:37:46 +0000 Manifest this update: Sun 19 May 2024 08:37:45 +0000 Manifest next update: Sun 26 May 2024 08:37:45 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: MnDCMEvwf54nXNtUL23tTQN2/OzLS9ZKzSVXjkQgYnc=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: /ilft+qpBhnR4btCBCpxqp2GFPVCqW7ca/7qUfLIXBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: May 19 08:37:45 2024 GMT Not After : May 26 08:37:45 2024 GMT Subject: CN=6649ba59-6266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d0:f6:9b:5a:1c:17:ef:a7:db:7b:a8:bb:7f: 58:51:3b:61:ff:a2:11:d3:27:cc:4e:db:06:87:9e: 13:18:cf:1a:c3:3a:9b:5e:ab:df:d6:ec:01:fb:0a: 9d:4f:2a:90:c8:99:1b:95:e7:23:1a:4b:59:87:45: e6:cb:7f:58:39:2a:24:10:2c:0d:fd:cd:bb:6f:44: 42:8a:db:fb:cf:fd:3f:ad:b3:b7:a0:3b:88:14:45: ca:2b:e3:b1:86:fd:1b:d2:e6:e2:89:b4:9a:ef:6f: b4:b9:0e:6e:15:39:8c:3c:b7:56:b5:14:ce:e4:3f: ea:2c:dc:ad:4a:e5:e5:8d:59:11:13:44:09:0a:98: 25:6d:d5:10:c6:d0:f3:ab:9f:8b:60:21:7f:88:23: 49:e9:c0:20:ec:c3:26:46:e4:ac:67:4e:e8:8b:25: 8e:32:90:7f:81:a9:b2:da:99:1f:d1:81:e7:eb:a8: 5b:fd:65:67:b4:53:46:2b:a9:33:29:be:c9:15:15: f7:c7:3f:90:2a:e0:9d:e5:bc:a7:f8:cd:c7:a4:75: 48:d1:a4:ba:7f:95:86:17:c8:bb:06:2e:aa:9e:f0: 16:ef:14:5d:71:38:e8:94:8c:e6:9e:50:08:80:74: 32:37:5d:ea:37:4a:f2:55:72:b6:d5:69:32:52:98: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:52:37:EB:13:F7:5F:23:CF:EB:97:B0:C1:2A:41:20:C2:BD:1E:7E X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:96:75:87:82:99:0b:ee:f9:84:83:7a:e9:ca:3c:0d:fb:e2: 6e:56:d4:61:72:1b:72:07:c5:62:3c:91:67:07:49:87:52:4d: f3:e1:6d:3d:61:14:91:98:61:37:71:02:f2:c7:05:7a:0a:74: 88:cf:cf:06:99:d9:62:88:7e:83:a7:89:8b:df:c0:f7:5a:5c: 9c:8d:f5:e5:f9:3c:f4:59:d3:55:d6:a7:19:26:f1:b0:16:19: bd:0d:bb:72:cc:ba:76:19:8a:00:6f:12:f9:12:75:1e:ab:89: 46:46:7d:0b:68:ad:21:5b:35:2f:7d:d9:43:31:8e:85:b6:d5: 5b:6b:95:8f:40:23:40:4f:b4:06:84:d1:81:95:6e:4c:1c:e6: 44:25:94:e8:0e:f0:92:15:af:92:82:c8:21:37:3e:10:87:00: 4f:7b:c1:c0:da:cf:1d:ef:d8:0a:ed:ca:40:ca:9a:94:af:c5: dd:31:dd:eb:78:d6:f2:b8:54:88:3b:d5:6f:6c:9b:37:9f:44: 9e:49:f3:78:1d:78:a1:7c:b3:76:91:66:92:4b:b2:09:38:be: b9:72:78:5c:7d:be:57:9f:16:aa:5b:d3:88:57:52:ae:5f:65: 67:48:ca:2b:c3:5c:96:b9:81:28:f9:08:70:60:57:1a:dd:19: 5a:6f:3f:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjlBQTExMC8GA1UEBRMoMDUwMTQ3Qjk0REM5RDZDQkU4QzBCMEYxQUQwQzAxODNB NjA3N0MzNDAeFw0yNDA1MTkwODM3NDVaFw0yNDA1MjYwODM3NDVaMBgxFjAUBgNV BAMTDTY2NDliYTU5LTYyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj0PabWhwX76fbe6i7f1hRO2H/ohHTJ8xO2waHnhMYzxrDOpteq9/W7AH7Cp1P KpDImRuV5yMaS1mHRebLf1g5KiQQLA39zbtvREKK2/vP/T+ts7egO4gURcor47GG /RvS5uKJtJrvb7S5Dm4VOYw8t1a1FM7kP+os3K1K5eWNWRETRAkKmCVt1RDG0POr n4tgIX+II0npwCDswyZG5KxnTuiLJY4ykH+BqbLamR/RgefrqFv9ZWe0U0YrqTMp vskVFffHP5Aq4J3lvKf4zcekdUjRpLp/lYYXyLsGLqqe8BbvFF1xOOiUjOaeUAiA dDI3Xeo3SvJVcrbVaTJSmJQTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFlI36xP3 XyPP65ewwSpBIMK9Hn4wHwYDVR0jBBgwFoAUBQFHuU3J1svowLDxrQwBg6YHfDQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyOUFBLzVGMDY5M0Y0RTc0 OTExRUVCQzUyNkYyOUM0RjlBRTAyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZE US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlFGSHVVM0oxc3Zvd0xEeHJRd0JnNllIZkRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYy OUFBLzVGMDY5M0Y0RTc0OTExRUVCQzUyNkYyOUM0RjlBRTAyL0JRRkh1VTNKMXN2 b3dMRHhyUXdCZzZZSGZEUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABmWdYeCmQvu+YSDeunKPA374m5W1GFyG3IHxWI8kWcHSYdSTfPhbT1h FJGYYTdxAvLHBXoKdIjPzwaZ2WKIfoOniYvfwPdaXJyN9eX5PPRZ01XWpxkm8bAW Gb0Nu3LMunYZigBvEvkSdR6riUZGfQtorSFbNS992UMxjoW21VtrlY9AI0BPtAaE 0YGVbkwc5kQllOgO8JIVr5KCyCE3PhCHAE97wcDazx3v2ArtykDKmpSvxd0x3et4 1vK4VIg71W9smzefRJ5J83gdeKF8s3aRZpJLsgk4vrlyeFx9vlefFqpb04hXUq5f ZWdIyivDXJa5gSj5CHBgVxrdGVpvP/A= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org