$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: VCAB5qJe6egOCQADo3gPZMKihhsKR/AeRxEshii+V2k= Subject key identifier: E1:BF:D3:F7:73:21:F6:0D:CD:C9:85:A2:DD:A0:D9:5F:9A:2B:B1:04 Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1C17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1C08 Signing time: Sat 04 May 2024 16:39:53 +0000 Manifest this update: Sat 04 May 2024 16:39:53 +0000 Manifest next update: Sat 11 May 2024 16:39:53 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: XwVMmtWaMIZClmfo3Dy3RnnJhjAAvlJYPKD24C8QSJU=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: Wf9gDz4SgwHMXZaATbqe72tgbhQrS+r0U7gGh2yqylk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7191 (0x1c17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: May 4 16:39:53 2024 GMT Not After : May 11 16:39:53 2024 GMT Subject: CN=663664d9-69b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e3:35:82:0e:a3:19:95:83:75:a0:0f:15:33: 50:38:e5:79:2a:cc:4c:e6:69:e3:c9:c3:80:c5:de: d4:4d:d7:5d:39:51:b6:92:5b:28:55:55:9d:28:b6: 27:90:d1:78:80:e0:55:ac:b2:4e:77:21:d5:5f:5a: 40:4d:f2:50:6e:64:55:8b:e8:e9:30:2b:b7:d5:e7: 7e:f6:f3:40:46:a0:f4:60:2f:b2:b5:b8:8f:d0:91: 46:50:ce:61:24:68:5f:4e:f7:85:c2:7c:52:f7:5b: 8b:60:01:b5:a9:ed:68:a3:8a:e0:46:33:2d:1a:ca: 7a:6c:49:ba:4b:71:cb:6b:c1:45:c4:7d:06:d9:c5: 90:6e:68:64:b3:2d:8f:07:c8:35:2b:82:33:c3:87: 98:5e:d0:9c:3e:01:24:17:85:4a:a5:aa:94:fc:5e: d8:62:35:c8:eb:19:08:0f:fd:11:28:0b:9b:bb:19: 97:ea:fc:46:b8:cf:a0:f1:0b:1f:9e:81:02:0e:ac: 85:78:c3:47:a5:cd:72:87:4d:cc:a8:7c:9e:7e:d0: 80:b2:4c:53:a1:16:f9:6b:e6:5f:59:4a:46:15:7f: 62:87:d8:23:f9:81:37:2f:2d:0e:2e:de:18:9d:82: 02:6b:19:7b:0b:e6:7b:5a:e2:e9:73:a8:a9:b4:08: 91:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BF:D3:F7:73:21:F6:0D:CD:C9:85:A2:DD:A0:D9:5F:9A:2B:B1:04 X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:4b:2a:84:f9:ec:9d:bf:bd:90:b2:95:98:48:d9:b6:08:33: cd:9d:e3:fd:a3:48:99:ea:03:75:24:5a:c6:42:6f:53:42:32: 64:f6:05:4a:2b:97:81:28:8f:06:0e:7a:96:d6:3f:37:6d:31: 09:fb:93:ef:2b:60:55:c0:dc:e2:ad:04:0b:f5:37:a7:4b:8d: 4d:47:b8:8e:db:dc:11:3c:17:d6:74:79:02:07:40:e2:de:1a: 61:cf:1d:df:7d:fc:86:ce:a5:05:9b:07:dc:24:94:51:c8:5e: fd:e1:92:7a:b1:c1:df:4c:b0:fa:7f:6c:0c:9c:3f:07:c6:6a: a4:71:5c:8e:1c:68:f5:a9:b2:11:ec:89:e6:bf:a4:eb:a4:34: d3:9e:76:10:b4:f5:4c:4b:d1:73:8b:b6:d9:c1:a7:1e:68:40: 2e:18:07:08:46:bd:fc:e1:32:1b:b7:74:1b:f0:92:cf:ac:cc: 71:38:a0:07:33:13:5b:a9:bc:66:65:ce:5a:06:b3:c1:5c:cd: 33:6e:3a:be:f1:24:3a:6b:98:7d:df:c8:da:a0:c2:ad:81:27: 85:90:aa:bd:c2:79:d5:37:29:91:2d:82:e9:5b:c6:51:bc:21: 79:d3:e1:3f:35:60:41:5e:e9:24:8a:9f:05:25:76:17:7d:d3: 35:ef:2a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjQwNTA0MTYzOTUzWhcNMjQwNTExMTYzOTUzWjAYMRYwFAYD VQQDEw02NjM2NjRkOS02OWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uM1gg6jGZWDdaAPFTNQOOV5KsxM5mnjycOAxd7UTdddOVG2klsoVVWdKLYn kNF4gOBVrLJOdyHVX1pATfJQbmRVi+jpMCu31ed+9vNARqD0YC+ytbiP0JFGUM5h JGhfTveFwnxS91uLYAG1qe1oo4rgRjMtGsp6bEm6S3HLa8FFxH0G2cWQbmhksy2P B8g1K4Izw4eYXtCcPgEkF4VKpaqU/F7YYjXI6xkID/0RKAubuxmX6vxGuM+g8Qsf noECDqyFeMNHpc1yh03MqHyeftCAskxToRb5a+ZfWUpGFX9ih9gj+YE3Ly0OLt4Y nYICaxl7C+Z7WuLpc6iptAiRJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG/0/dz IfYNzcmFot2g2V+aK7EEMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXSyqE+eydv72QspWYSNm2CDPNneP9o0iZ6gN1JFrGQm9TQjJk9gVK K5eBKI8GDnqW1j83bTEJ+5PvK2BVwNzirQQL9TenS41NR7iO29wRPBfWdHkCB0Di 3hphzx3fffyGzqUFmwfcJJRRyF794ZJ6scHfTLD6f2wMnD8HxmqkcVyOHGj1qbIR 7Inmv6TrpDTTnnYQtPVMS9Fzi7bZwaceaEAuGAcIRr384TIbt3Qb8JLPrMxxOKAH MxNbqbxmZc5aBrPBXM0zbjq+8SQ6a5h938jaoMKtgSeFkKq9wnnVNymRLYLpW8ZR vCF50+E/NWBBXukkip8FJXYXfdM17yrp -----END CERTIFICATE-----Generated at Sat May 4 17:44:38 2024 by rpki-client on console-ams.rpki-client.org