$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: oZ1jggzgOfJYe9MvB9w+4h8qE8554v308xrFrGtwRGI= Subject key identifier: E5:30:E3:6B:06:67:9C:D2:E9:9A:AB:DA:73:74:31:A6:EE:57:32:20 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 0170 Signing time: Sat 23 Nov 2024 02:11:34 +0000 Manifest this update: Sat 23 Nov 2024 02:11:34 +0000 Manifest next update: Sat 30 Nov 2024 02:11:34 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: dCPaxQrcxsZYq8Q59nzVXf6PbGpxN8zRu+u8mz6+n6o=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: Shs9mCOElP23gCk1qChO6oCDzXrGpICaqUKMU94TuiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Nov 23 02:11:34 2024 GMT Not After : Nov 30 02:11:34 2024 GMT Subject: CN=674139d6-bf40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5f:42:2d:1b:0a:df:16:cf:26:6f:ec:c8:f0: 16:e0:98:a8:54:28:34:3e:15:bf:7f:1c:2a:51:7d: 95:2e:90:cb:bd:45:44:bb:bb:c1:1e:f0:ed:62:e9: 7d:e4:a0:30:85:6b:e4:ac:40:cd:36:02:38:b8:2c: 5b:24:7d:f1:e2:19:8f:72:34:bc:f4:5d:6f:d2:5d: 37:3b:7b:dc:99:04:08:ef:e8:32:f7:43:f6:af:7b: 87:11:4f:fa:ed:a2:f8:0b:54:36:f1:a1:ce:f8:db: 95:b7:05:94:95:d5:53:d3:ee:d4:10:a2:f4:dc:da: b2:55:c3:19:1c:ce:19:0a:97:7b:97:ca:c0:ea:d5: 8e:e6:2c:f4:be:b2:6c:d7:a9:77:6b:6f:a3:64:5a: 0c:ce:dd:3a:d4:4d:fb:3e:dc:54:e0:01:54:2a:16: ed:17:fe:6b:d7:e9:bb:b3:16:58:6b:45:73:b5:8e: c1:71:84:20:5d:4d:92:82:6b:1f:45:cb:30:03:8d: 51:52:d9:a0:19:e0:e3:28:ee:f5:13:33:69:7f:9f: 89:32:ad:5a:a2:8b:19:d7:54:cf:d2:09:6e:6b:51: 97:c4:cc:62:d9:9a:a8:a8:36:04:5e:89:07:3c:de: e1:37:6e:2c:b5:f7:6c:78:15:52:55:5b:ea:25:f3: 89:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:30:E3:6B:06:67:9C:D2:E9:9A:AB:DA:73:74:31:A6:EE:57:32:20 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:6e:b1:fd:b6:1e:72:a4:6b:ed:82:ee:0b:8f:40:9e:8a:9e: 19:b9:af:04:52:92:cb:d1:03:c4:41:33:7e:f5:be:29:aa:b8: de:0a:ab:2c:46:ba:f4:dd:aa:2a:fb:19:58:26:6a:1c:75:44: 18:af:a0:95:ad:01:af:a4:8a:02:48:12:fb:aa:04:6c:fb:75: ee:c4:21:36:03:42:43:ac:8a:f6:56:5c:5d:75:a1:5b:da:a9: 2a:9e:b1:b4:fa:c9:b5:1b:a9:bb:04:1d:04:40:3f:68:e2:a1: 86:8c:3c:ac:96:6a:07:04:7c:91:0b:ca:89:8d:9d:57:ee:e0: 90:d8:77:c9:9a:c3:a3:6b:bd:e5:a0:d7:23:35:58:f6:c8:74: 7c:50:f5:92:e1:25:7c:97:2b:f0:23:5e:28:b4:14:88:b2:86: eb:d5:ff:e9:98:fb:0d:31:2e:05:f0:10:2f:62:25:15:14:e3: 7d:b5:0c:74:fb:6a:d9:2f:30:db:6c:93:11:ca:9b:ca:87:28: 9b:4f:ee:82:87:77:ce:92:20:8b:80:5e:fb:20:ac:c2:da:11: 31:5d:de:ba:85:36:61:e2:3a:81:bb:86:33:7c:e7:2b:a6:f9: 00:3f:2f:ac:44:76:b7:cc:1d:8a:26:1d:fd:99:b9:bb:9d:60: 7e:30:3e:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjQxMTIzMDIxMTM0WhcNMjQxMTMwMDIxMTM0WjAYMRYwFAYD VQQDEw02NzQxMzlkNi1iZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApl9CLRsK3xbPJm/syPAW4JioVCg0PhW/fxwqUX2VLpDLvUVEu7vBHvDtYul9 5KAwhWvkrEDNNgI4uCxbJH3x4hmPcjS89F1v0l03O3vcmQQI7+gy90P2r3uHEU/6 7aL4C1Q28aHO+NuVtwWUldVT0+7UEKL03NqyVcMZHM4ZCpd7l8rA6tWO5iz0vrJs 16l3a2+jZFoMzt061E37PtxU4AFUKhbtF/5r1+m7sxZYa0VztY7BcYQgXU2Sgmsf RcswA41RUtmgGeDjKO71EzNpf5+JMq1aoosZ11TP0glua1GXxMxi2ZqoqDYEXokH PN7hN24stfdseBVSVVvqJfOJtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUw42sG Z5zS6Zqr2nN0MabuVzIgMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAbrH9th5ypGvtgu4Lj0Ceip4Zua8EUpLL0QPEQTN+9b4pqrjeCqss Rrr03aoq+xlYJmocdUQYr6CVrQGvpIoCSBL7qgRs+3XuxCE2A0JDrIr2VlxddaFb 2qkqnrG0+sm1G6m7BB0EQD9o4qGGjDyslmoHBHyRC8qJjZ1X7uCQ2HfJmsOja73l oNcjNVj2yHR8UPWS4SV8lyvwI14otBSIsobr1f/pmPsNMS4F8BAvYiUVFON9tQx0 +2rZLzDbbJMRypvKhyibT+6Ch3fOkiCLgF77IKzC2hExXd66hTZh4jqBu4YzfOcr pvkAPy+sRHa3zB2KJh39mbm7nWB+MD4o -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org