$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: l1gUu5zZhHmMKLsCbRB7O631dqcmwufTWbdMqonKKNk= Subject key identifier: AD:5B:1C:FE:D5:A6:AC:4A:06:07:14:12:AC:B5:CB:BE:D8:FA:66:25 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01B5 Signing time: Thu 03 Apr 2025 02:27:55 +0000 Manifest this update: Thu 03 Apr 2025 02:27:54 +0000 Manifest next update: Thu 10 Apr 2025 02:27:54 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: 6e3WBngQwRxa6FqQ9BB3Esi4lpGby5NIkBETfBBMwqk=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C Validity Not Before: Apr 3 02:27:54 2025 GMT Not After : Apr 10 02:27:54 2025 GMT Subject: CN=67edf22b-6051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:71:9b:f4:fe:07:76:1b:a7:38:fa:d9:c0:27: 47:60:fe:f9:3b:80:dc:53:0d:a2:7d:de:33:7b:99: 6c:dc:28:97:84:f8:a0:a8:28:fd:ac:30:96:5b:38: f1:cd:20:50:cf:3d:b5:e1:cf:54:ff:fa:e4:9f:b0: a4:f5:00:25:71:f4:fa:83:ec:18:f6:c1:2e:02:19: b6:49:95:0a:69:e3:51:79:f1:45:40:26:06:05:14: 8a:01:66:2d:08:7a:45:fb:42:94:c9:63:ca:48:30: b2:28:f7:07:06:21:8e:32:ee:f2:a6:5e:16:8e:85: cc:c5:8d:f4:d4:b9:ac:49:52:70:34:a2:04:c7:9a: db:96:96:8d:02:c0:df:25:ac:b2:a4:52:1e:0b:af: 83:75:43:1b:d7:ba:8c:bf:93:a1:25:41:31:3f:c3: df:7e:3d:6f:2f:fb:57:bf:07:a6:3c:57:22:f6:cd: 35:49:34:06:40:91:50:f8:0b:78:ee:53:11:b1:86: 18:42:e9:2d:86:64:5d:aa:36:13:37:3d:93:62:eb: 70:2f:e3:4a:03:cd:75:81:bf:a2:cb:33:50:ef:96: 03:53:0d:63:af:0d:02:6e:35:46:8d:d5:fc:ae:63: a1:12:63:f9:da:1d:05:e6:68:87:72:d5:2b:54:70: 54:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5B:1C:FE:D5:A6:AC:4A:06:07:14:12:AC:B5:CB:BE:D8:FA:66:25 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:e5:89:5e:aa:08:f3:9d:0e:6c:66:b6:82:ce:42:88:fc:32: 6a:ee:54:94:39:8f:f0:1b:e9:a8:f7:bc:0d:ce:59:ae:17:66: 4f:f8:53:83:d2:63:3c:74:bb:47:94:b5:ac:b2:07:55:35:46: cb:b9:47:d0:00:a2:ad:20:f0:cb:13:a1:84:b4:fc:11:e0:e0: 36:a8:2f:82:99:82:f4:90:a2:37:03:9c:a1:14:3f:73:c5:6b: 0d:a2:57:6b:b6:4a:92:a3:78:0c:ea:08:a1:f1:e4:cd:6b:10: 44:bd:7b:17:03:89:5d:0c:ce:c8:da:26:89:f8:73:c4:bf:88: 46:5f:77:90:63:12:92:11:52:e1:6c:4c:e4:81:1a:7d:bf:f2: 55:c2:aa:e8:cb:ec:b6:96:bc:dd:10:8e:70:8b:bf:8d:4a:53: 61:c6:01:f7:f6:5d:75:1f:de:1d:2c:b5:31:7c:f1:31:7f:9e: ba:49:77:9c:b8:46:5e:08:49:68:7b:19:e2:f1:35:47:d9:51: 10:8b:2d:e4:11:2d:4b:fa:e5:30:14:5b:2f:36:6f:b0:dd:6a: 99:6f:b8:e2:c2:dc:c0:91:4b:ee:bd:f7:94:60:50:81:66:c3: 1a:a9:be:c0:04:81:5d:60:93:fc:b6:79:97:53:df:60:7c:23: 36:43:cb:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwNDAzMDIyNzU0WhcNMjUwNDEwMDIyNzU0WjAYMRYwFAYD VQQDEw02N2VkZjIyYi02MDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HGb9P4HdhunOPrZwCdHYP75O4DcUw2ifd4ze5ls3CiXhPigqCj9rDCWWzjx zSBQzz214c9U//rkn7Ck9QAlcfT6g+wY9sEuAhm2SZUKaeNRefFFQCYGBRSKAWYt CHpF+0KUyWPKSDCyKPcHBiGOMu7ypl4WjoXMxY301LmsSVJwNKIEx5rblpaNAsDf JayypFIeC6+DdUMb17qMv5OhJUExP8Pffj1vL/tXvwemPFci9s01STQGQJFQ+At4 7lMRsYYYQukthmRdqjYTNz2TYutwL+NKA811gb+iyzNQ75YDUw1jrw0CbjVGjdX8 rmOhEmP52h0F5miHctUrVHBUvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1bHP7V pqxKBgcUEqy1y77Y+mYlMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd5YleqgjznQ5sZraCzkKI/DJq7lSUOY/wG+mo97wNzlmuF2ZP+FOD 0mM8dLtHlLWssgdVNUbLuUfQAKKtIPDLE6GEtPwR4OA2qC+CmYL0kKI3A5yhFD9z xWsNoldrtkqSo3gM6gih8eTNaxBEvXsXA4ldDM7I2iaJ+HPEv4hGX3eQYxKSEVLh bEzkgRp9v/JVwqroy+y2lrzdEI5wi7+NSlNhxgH39l11H94dLLUxfPExf566SXec uEZeCEloexni8TVH2VEQiy3kES1L+uUwFFsvNm+w3WqZb7jiwtzAkUvuvfeUYFCB ZsMaqb7ABIFdYJP8tnmXU99gfCM2Q8u8 -----END CERTIFICATE-----Generated at Fri Apr 4 21:33:51 2025 by rpki-client