$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: AEwyQtM1tC/Ea4cDv79ZI3UZXxV7AKQ3n9/VLd53QOc= Subject key identifier: A9:4B:23:F9:D5:A5:19:66:BB:F8:CC:B2:EC:57:D5:34:D5:8B:29:0D Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 010C Signing time: Tue 07 May 2024 05:25:28 +0000 Manifest this update: Tue 07 May 2024 05:25:27 +0000 Manifest next update: Tue 14 May 2024 05:25:27 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: UVzuaRYqChZHKAvIelzD5o5N6T42zls965kfq5Ln1UE=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: Shs9mCOElP23gCk1qChO6oCDzXrGpICaqUKMU94TuiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: May 7 05:25:27 2024 GMT Not After : May 14 05:25:27 2024 GMT Subject: CN=6639bb48-a084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5a:e6:c2:b3:dd:83:26:dd:32:ae:9e:48:55: 91:c1:22:55:7d:f9:84:d2:d2:f7:02:52:a2:ca:09: 9c:4a:5b:96:fc:36:af:4b:1a:d7:2c:3e:d8:6a:d1: b0:c0:5c:fe:22:a8:19:00:b2:29:47:16:27:68:3c: 5a:84:fb:c7:9e:bb:9a:4a:fb:18:8e:3c:ea:c9:bb: cb:3f:b3:f5:bd:36:a8:43:90:21:8a:ef:50:6b:02: bb:63:9a:1b:d7:a4:8a:d6:fe:b6:b8:bb:75:39:93: 6d:5c:62:4b:58:e8:ef:32:d0:3f:8a:0e:53:8f:5e: 24:42:91:07:af:cc:02:f3:10:d1:de:81:79:7c:5a: 98:83:2c:43:2f:a1:ec:d4:97:b9:89:9f:59:a6:82: b0:8e:bf:3e:9f:b8:32:45:c3:93:21:f0:b4:57:c4: 76:48:bd:0e:39:55:4a:f8:db:60:58:8a:94:4d:b6: 4c:71:97:f7:7b:67:9a:34:57:8e:92:3d:1d:6b:bc: 18:3e:6a:61:1a:43:ea:c2:b9:46:90:6c:63:32:ec: 2b:30:52:5b:8b:6a:8d:b1:24:df:a4:8e:b7:58:98: 99:ac:3e:b8:6a:4c:50:b3:89:b6:20:63:e1:52:d6: 45:c5:3e:f2:3f:2a:0c:d8:94:b5:66:f8:64:6c:34: ea:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4B:23:F9:D5:A5:19:66:BB:F8:CC:B2:EC:57:D5:34:D5:8B:29:0D X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:5c:8d:bc:7f:1b:70:ae:50:5a:d7:26:97:ad:f2:7f:d5:62: 98:5a:90:1d:81:6b:99:96:28:16:6c:ac:66:8f:46:7f:3f:b3: b6:92:71:1c:13:da:25:5e:45:05:48:76:21:51:55:d1:43:1d: 72:89:41:78:d5:b9:95:23:89:b3:03:2e:49:bb:ec:a7:42:ec: 4c:67:38:39:63:54:6e:56:b6:21:78:95:7b:f1:e6:60:77:4f: dc:c1:95:52:25:60:a6:9b:02:3b:99:7f:1b:31:b5:10:97:0d: de:15:f9:f8:08:a9:ef:39:62:b9:56:83:f8:23:8c:7f:75:dc: 7e:b6:a3:c1:89:0b:d2:d3:72:19:51:61:19:af:f1:a9:e6:90: d9:b7:10:09:b6:5d:fe:1c:e2:ea:31:6e:83:b6:e2:a0:b8:3b: 77:b5:97:96:24:b5:34:bb:ba:95:6b:a6:0f:da:9a:67:80:90: 7d:48:99:88:9e:b5:59:14:ab:ec:ad:4d:71:b0:ed:f6:7e:54: b0:51:76:a8:a5:53:66:19:a3:c2:58:b1:50:5a:77:11:2e:33: 3c:57:f5:bf:e1:72:81:ff:9b:20:a0:d7:08:8d:3f:9d:58:34: f8:49:22:a8:75:f5:73:24:25:e2:61:d3:ff:fa:75:a7:b1:47: 8f:60:0e:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjQwNTA3MDUyNTI3WhcNMjQwNTE0MDUyNTI3WjAYMRYwFAYD VQQDEw02NjM5YmI0OC1hMDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VrmwrPdgybdMq6eSFWRwSJVffmE0tL3AlKiygmcSluW/DavSxrXLD7YatGw wFz+IqgZALIpRxYnaDxahPvHnruaSvsYjjzqybvLP7P1vTaoQ5Ahiu9QawK7Y5ob 16SK1v62uLt1OZNtXGJLWOjvMtA/ig5Tj14kQpEHr8wC8xDR3oF5fFqYgyxDL6Hs 1Je5iZ9ZpoKwjr8+n7gyRcOTIfC0V8R2SL0OOVVK+NtgWIqUTbZMcZf3e2eaNFeO kj0da7wYPmphGkPqwrlGkGxjMuwrMFJbi2qNsSTfpI63WJiZrD64akxQs4m2IGPh UtZFxT7yPyoM2JS1ZvhkbDTqcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlLI/nV pRlmu/jMsuxX1TTViykNMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrXI28fxtwrlBa1yaXrfJ/1WKYWpAdgWuZligWbKxmj0Z/P7O2knEc E9olXkUFSHYhUVXRQx1yiUF41bmVI4mzAy5Ju+ynQuxMZzg5Y1RuVrYheJV78eZg d0/cwZVSJWCmmwI7mX8bMbUQlw3eFfn4CKnvOWK5VoP4I4x/ddx+tqPBiQvS03IZ UWEZr/Gp5pDZtxAJtl3+HOLqMW6DtuKguDt3tZeWJLU0u7qVa6YP2ppngJB9SJmI nrVZFKvsrU1xsO32flSwUXaopVNmGaPCWLFQWncRLjM8V/W/4XKB/5sgoNcIjT+d WDT4SSKodfVzJCXiYdP/+nWnsUePYA7T -----END CERTIFICATE-----Generated at Tue May 7 06:20:17 2024 by rpki-client on console-fra.rpki-client.org