$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft File: BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json) Hash identifier: 6JyOqpj+z8D15mWePtxIOJKMXKt/uSp75hleckAopeA= Subject key identifier: CF:7D:AF:9E:F4:87:E6:1B:0E:6B:69:2D:97:A3:84:1B:D8:51:6D:40 Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0B65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft Manifest number: 0B52 Signing time: Sat 18 May 2024 19:41:02 +0000 Manifest this update: Sat 18 May 2024 19:41:01 +0000 Manifest next update: Sat 25 May 2024 19:41:01 +0000 Files and hashes: 1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: 7KuZDPnp0tIxQ+leZ/s0MkXS78iREKBDVQ9J1KMRErI=) 2: 9F83FF76379211EB87782474C4F9AE02.roa (hash: d27MSHQNcK/RyRyY25Y+zw+yINkzZippHHhMWzl4CyQ=) 3: 0C6D400AB0CF11ECBD82BF74C4F9AE02.roa (hash: 0SXw5HKnfxoOPiWO2UyldANG5rDWzVkfKPynNtiTihA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: May 18 19:41:01 2024 GMT Not After : May 25 19:41:01 2024 GMT Subject: CN=6649044d-cd60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:71:20:00:08:cb:7c:57:ea:20:df:c3:d3: ee:f8:3f:8f:6c:a2:67:bb:8f:53:51:79:b9:50:dd: 41:94:96:1c:f8:00:68:55:cf:ec:a0:3d:47:7e:b6: ac:b1:46:09:34:8a:f9:c0:e6:62:b2:41:9a:a4:71: 99:7e:bf:68:50:84:ca:24:63:ea:2e:df:44:7e:f4: b0:b3:d9:cb:d1:d6:ef:a3:0f:3d:52:ce:54:07:c1: dc:72:08:a5:e8:85:db:51:8e:49:3c:d7:ce:78:23: db:45:4e:6b:12:81:bf:09:2b:60:b9:bd:e4:a7:bf: 65:90:92:bb:21:18:6a:89:f7:58:78:a2:78:af:f0: 2f:33:da:64:d9:ce:b3:fa:57:21:52:0d:49:af:f0: 09:e6:48:a7:1a:80:a5:b0:c6:90:59:c7:1f:09:bd: cf:11:4c:f0:65:1c:dd:72:fe:f5:75:c4:e8:9c:6c: 8c:69:ed:f1:ae:48:74:b7:fc:90:8b:35:4a:99:3d: 8f:a6:80:bc:67:e7:b8:77:54:b8:93:f9:be:9e:c7: c5:01:ea:c1:e3:da:58:68:ec:8c:2e:d2:e9:03:89: 0a:00:ca:3d:14:ef:46:fd:36:2c:29:27:fd:31:62: 1b:bc:7b:62:d4:20:6b:25:4b:05:a5:e4:76:82:6b: 40:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7D:AF:9E:F4:87:E6:1B:0E:6B:69:2D:97:A3:84:1B:D8:51:6D:40 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ae:02:63:fc:54:98:7b:f8:04:36:6c:53:74:46:76:f1:3f: ba:5e:cf:0f:07:83:ef:65:5e:05:5c:f0:3c:c9:82:8e:c2:fb: 9b:43:5d:21:be:ef:df:da:23:10:f1:f2:97:75:8f:c3:27:50: 1c:9e:5c:29:c4:cb:91:b3:60:ca:80:6b:e3:60:16:2a:db:10: 2c:7b:33:ee:e5:0c:e1:da:ed:b7:34:5b:98:a3:47:c5:5d:d8: 99:14:75:7a:1f:37:65:55:f5:f1:79:2a:a3:28:77:cc:b7:d2: d3:b8:3e:ac:79:96:07:c7:dc:9d:93:ca:44:0b:15:75:b5:f2: 53:8d:dd:4c:da:64:ef:99:b8:87:b3:d9:74:2c:6d:ae:27:fa: 16:2b:72:c7:06:f2:ce:6c:71:d5:1e:fa:54:9b:b3:61:a8:f9: 86:e5:a1:38:8c:2f:50:8d:90:92:78:d2:6f:3c:92:26:e7:9f: 54:10:79:72:42:0f:4f:10:73:47:d2:ae:5e:28:e1:02:0a:e6: e1:a0:43:1e:3e:e0:91:17:cd:b6:4a:03:ee:92:a4:91:0c:67: 19:98:9e:af:7f:5f:12:40:d6:7a:94:e6:6a:98:8c:02:94:ed: 3d:b8:05:b7:d1:41:86:67:9d:c8:95:05:cc:14:fa:46:bf:b5: e9:8d:cb:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjQwNTE4MTk0MTAxWhcNMjQwNTI1MTk0MTAxWjAYMRYwFAYD VQQDEw02NjQ5MDQ0ZC1jZDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWlxIAAIy3xX6iDfw9Pu+D+PbKJnu49TUXm5UN1BlJYc+ABoVc/soD1Hfras sUYJNIr5wOZiskGapHGZfr9oUITKJGPqLt9EfvSws9nL0dbvow89Us5UB8Hccgil 6IXbUY5JPNfOeCPbRU5rEoG/CStgub3kp79lkJK7IRhqifdYeKJ4r/AvM9pk2c6z +lchUg1Jr/AJ5kinGoClsMaQWccfCb3PEUzwZRzdcv71dcTonGyMae3xrkh0t/yQ izVKmT2PpoC8Z+e4d1S4k/m+nsfFAerB49pYaOyMLtLpA4kKAMo9FO9G/TYsKSf9 MWIbvHti1CBrJUsFpeR2gmtACQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM99r570 h+YbDmtpLZejhBvYUW1AMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUrgJj/FSYe/gENmxTdEZ28T+6Xs8PB4PvZV4FXPA8yYKOwvubQ10h vu/f2iMQ8fKXdY/DJ1AcnlwpxMuRs2DKgGvjYBYq2xAsezPu5Qzh2u23NFuYo0fF XdiZFHV6HzdlVfXxeSqjKHfMt9LTuD6seZYHx9ydk8pECxV1tfJTjd1M2mTvmbiH s9l0LG2uJ/oWK3LHBvLObHHVHvpUm7NhqPmG5aE4jC9QjZCSeNJvPJIm559UEHly Qg9PEHNH0q5eKOECCubhoEMePuCRF822SgPukqSRDGcZmJ6vf18SQNZ6lOZqmIwC lO09uAW30UGGZ53IlQXMFPpGv7Xpjcua -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org