$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: xQaIzYC+/lbJzIFxSasAqK/Ekc3FdsOVp0ZrygJWXJk= Subject key identifier: 70:A9:B5:44:AB:CE:60:6C:F7:1D:84:C4:C6:CF:99:F5:C7:A3:7C:D9 Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1C81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1C71 Signing time: Fri 22 Nov 2024 16:11:41 +0000 Manifest this update: Fri 22 Nov 2024 16:11:41 +0000 Manifest next update: Fri 29 Nov 2024 16:11:41 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: 7XSZMUUqRHyNUrhWKctSx9shAPfZAunrBQu/7vO9huI=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: nQvCGi6jeXRQddJ1rEuK0BsRcyU/PM81aNvBcFuVAoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7297 (0x1c81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Nov 22 16:11:41 2024 GMT Not After : Nov 29 16:11:41 2024 GMT Subject: CN=6740ad3d-9a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:02:29:fa:72:ec:17:35:6c:50:af:ab:e6:45: 4f:f7:86:f2:8f:24:61:49:db:b1:80:62:64:f1:8d: 81:7b:8f:5e:41:68:1f:5c:05:68:ba:c9:ae:06:4e: f4:4c:5e:ce:50:70:62:b1:5b:59:3f:de:f5:50:e1: a7:53:33:07:b2:2f:48:72:3c:a1:5a:c9:dd:52:5c: 3e:a2:50:ff:44:8b:da:ea:f7:c3:fd:ae:37:c7:1f: 6b:37:34:3f:19:12:b1:e6:d1:d1:c6:d0:7d:8c:0d: d2:27:17:85:49:09:7c:f8:8f:fa:d9:71:22:a3:31: 06:d7:64:7b:69:ce:b2:9f:b7:e7:3c:f5:cc:a2:c7: 75:e2:92:60:00:40:30:74:de:da:b8:23:d4:b7:59: f7:94:c1:a0:86:90:e3:c3:d0:a0:d5:57:04:3b:d0: 13:fe:ec:15:5d:dc:90:30:c3:85:db:0f:aa:2c:b4: f0:15:c1:73:81:ce:d9:e6:a1:a4:fb:b5:f8:7c:fb: 10:d5:7f:b8:cd:38:a1:ea:34:14:9c:49:83:96:32: d6:94:e8:da:ec:ff:18:cb:0c:18:61:2f:3c:cc:07: db:1f:fc:21:65:b7:85:5a:4a:e9:54:33:7e:30:d1: 35:a7:b6:9a:39:8c:2d:03:1e:a2:3f:0d:14:5c:53: 85:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A9:B5:44:AB:CE:60:6C:F7:1D:84:C4:C6:CF:99:F5:C7:A3:7C:D9 X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:fb:c9:53:55:b2:10:cf:62:89:af:18:e5:34:3a:25:d0:a2: b6:57:35:57:2a:b0:df:fd:45:f5:c4:6e:2e:66:4c:6b:80:ef: 14:d8:cf:72:42:6c:50:9b:b5:24:31:d8:12:f8:52:bb:73:9c: b4:c4:cb:2d:df:81:bc:8b:d5:96:c5:f5:dd:6a:97:d6:d9:c8: d6:d1:bd:92:ad:b0:79:9a:0b:ae:84:4e:c3:07:cc:61:54:91: 5d:bf:e4:77:8a:f7:ed:23:c7:6c:e8:a0:5f:e4:d1:ef:c3:07: 0f:2f:a7:89:bd:9f:de:e6:14:3b:0f:a1:20:c3:24:d0:d9:ea: 0f:50:1a:fe:f4:e1:7c:7d:91:9b:54:9a:fe:59:ca:7d:a8:79: 8c:e8:a5:f8:7b:ec:c0:f1:ca:4e:17:92:4a:6e:3e:30:9c:1a: 7c:e4:5e:77:52:0b:c7:90:b2:48:b1:3b:2c:39:90:9c:f8:13: 6d:fa:4d:3a:f3:38:1b:fd:a9:8f:6a:03:10:c4:04:f2:61:15: 96:46:a6:7e:e6:0c:12:9b:b8:76:ce:b0:5a:2e:e2:43:56:db: 0a:5d:67:07:63:aa:a4:27:8e:78:20:e6:c8:7f:72:45:22:45: 9a:83:a6:8a:d4:56:19:b1:2c:eb:95:f0:d0:31:eb:4e:ea:49: df:3a:02:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjQxMTIyMTYxMTQxWhcNMjQxMTI5MTYxMTQxWjAYMRYwFAYD VQQDEw02NzQwYWQzZC05YTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywIp+nLsFzVsUK+r5kVP94byjyRhSduxgGJk8Y2Be49eQWgfXAVousmuBk70 TF7OUHBisVtZP971UOGnUzMHsi9IcjyhWsndUlw+olD/RIva6vfD/a43xx9rNzQ/ GRKx5tHRxtB9jA3SJxeFSQl8+I/62XEiozEG12R7ac6yn7fnPPXMosd14pJgAEAw dN7auCPUt1n3lMGghpDjw9Cg1VcEO9AT/uwVXdyQMMOF2w+qLLTwFcFzgc7Z5qGk +7X4fPsQ1X+4zTih6jQUnEmDljLWlOja7P8YywwYYS88zAfbH/whZbeFWkrpVDN+ MNE1p7aaOYwtAx6iPw0UXFOF9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCptUSr zmBs9x2ExMbPmfXHo3zZMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx+8lTVbIQz2KJrxjlNDol0KK2VzVXKrDf/UX1xG4uZkxrgO8U2M9y QmxQm7UkMdgS+FK7c5y0xMst34G8i9WWxfXdapfW2cjW0b2SrbB5mguuhE7DB8xh VJFdv+R3ivftI8ds6KBf5NHvwwcPL6eJvZ/e5hQ7D6EgwyTQ2eoPUBr+9OF8fZGb VJr+Wcp9qHmM6KX4e+zA8cpOF5JKbj4wnBp85F53UgvHkLJIsTssOZCc+BNt+k06 8zgb/amPagMQxATyYRWWRqZ+5gwSm7h2zrBaLuJDVtsKXWcHY6qkJ454IObIf3JF IkWag6aK1FYZsSzrlfDQMetO6knfOgKE -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:44 2024 by rpki-client on console-fra.rpki-client.org