$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: Bzd7WrpaV9mttZ8pCtdIyr4JZggS1HLmTfRIZnf74rA= Subject key identifier: 1A:8E:0F:0D:8A:09:CA:80:F8:CB:39:F6:31:E5:7F:51:D3:D8:65:2B Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01EA Signing time: Sat 19 Jul 2025 02:45:53 +0000 Manifest this update: Sat 19 Jul 2025 02:45:52 +0000 Manifest next update: Sat 26 Jul 2025 02:45:52 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: Or/qZe7gA4+TbyoxQ2cJhcLA0CuOzj3EZq8WAcQYJko=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Jul 19 02:45:52 2025 GMT Not After : Jul 26 02:45:52 2025 GMT Subject: CN=687b06e1-c63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:28:f8:80:9e:39:e6:60:71:b1:ee:7a:1e:68: 3d:98:6c:b9:6e:28:20:13:34:92:88:0f:54:eb:85: b9:f4:de:3d:0c:02:4c:b1:64:96:09:4c:cf:52:7e: 77:41:2f:74:80:b3:9d:d9:8a:89:54:2a:e6:dc:3e: 68:f1:22:58:d8:aa:09:87:55:e5:98:8e:3f:05:bc: 42:55:88:50:0c:cb:0d:b1:63:5a:be:10:a0:1f:b7: ed:a7:5e:63:64:38:08:7b:c3:db:1a:19:50:a5:f5: 04:75:94:fd:ca:be:04:c8:a3:40:7f:cb:13:a1:86: 70:c3:60:49:07:c6:55:cf:86:0c:7d:56:38:d6:e6: e5:cf:be:5d:3f:8f:96:ab:b1:e7:26:43:5e:20:bf: 05:e8:28:df:8e:72:a5:ef:63:21:31:37:64:1e:ab: dd:a4:82:87:d5:ef:aa:bb:23:b0:d7:41:af:2f:5d: 38:36:f0:b6:8d:67:4d:5d:ec:f5:aa:6d:e5:39:48: c3:f8:0b:26:1b:d5:03:37:1d:c1:73:2e:5e:b7:75: 07:12:92:d4:7c:e8:67:36:1a:d4:56:80:65:7d:3b: 63:8b:ca:10:24:e9:26:cb:66:0b:d8:49:df:f2:0d: c7:51:8b:1a:fd:63:3f:37:0c:c4:f7:79:68:1e:4c: 26:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8E:0F:0D:8A:09:CA:80:F8:CB:39:F6:31:E5:7F:51:D3:D8:65:2B X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:55:30:18:1d:06:4d:28:2e:14:9f:38:eb:20:b0:5b:82:ad: 67:79:da:99:02:6f:ef:28:ce:34:8d:e5:95:93:e8:fc:3f:c7: 06:ee:12:44:ce:37:de:7c:b6:d3:82:4a:e3:2f:a5:e1:10:11: 38:73:4e:e7:6f:7e:e2:d1:ce:60:aa:8c:1f:39:6d:3e:21:a5: d4:a1:cf:ba:50:0d:4b:40:54:41:22:aa:07:0b:b4:f6:6f:e3: a5:98:d5:7a:b5:bf:5b:7e:59:9e:f3:6d:ed:e0:79:8e:06:cc: 20:11:3b:df:38:52:79:94:1b:61:18:73:26:23:40:74:1a:54: 2a:2c:5b:c2:65:fa:6e:80:91:5e:32:c0:a5:58:8e:8e:70:9c: 8b:6a:89:b8:af:c3:08:d8:21:52:6f:35:21:28:c9:2d:3d:8e: 5c:85:63:72:03:69:80:00:b0:3a:b9:dc:ba:12:61:1c:6b:81: 57:93:5b:4f:5a:78:92:50:52:81:f7:bb:f2:00:b1:93:a3:16: fe:dc:b4:60:bc:9b:22:3a:ac:7c:69:c3:6a:d0:75:1e:d9:86: c8:b9:b2:d3:a9:0b:aa:57:88:e3:0f:67:eb:08:fa:5a:13:af: 37:50:f1:ee:45:dd:06:be:1f:6a:82:f2:da:c1:9b:8c:1a:c9: 9b:b2:21:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwNzE5MDI0NTUyWhcNMjUwNzI2MDI0NTUyWjAYMRYwFAYD VQQDEw02ODdiMDZlMS1jNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSj4gJ455mBxse56Hmg9mGy5biggEzSSiA9U64W59N49DAJMsWSWCUzPUn53 QS90gLOd2YqJVCrm3D5o8SJY2KoJh1XlmI4/BbxCVYhQDMsNsWNavhCgH7ftp15j ZDgIe8PbGhlQpfUEdZT9yr4EyKNAf8sToYZww2BJB8ZVz4YMfVY41ublz75dP4+W q7HnJkNeIL8F6CjfjnKl72MhMTdkHqvdpIKH1e+quyOw10GvL104NvC2jWdNXez1 qm3lOUjD+AsmG9UDNx3Bcy5et3UHEpLUfOhnNhrUVoBlfTtji8oQJOkmy2YL2Enf 8g3HUYsa/WM/NwzE93loHkwmeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqODw2K CcqA+Ms59jHlf1HT2GUrMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEVTAYHQZNKC4UnzjrILBbgq1nedqZAm/vKM40jeWVk+j8P8cG7hJE zjfefLbTgkrjL6XhEBE4c07nb37i0c5gqowfOW0+IaXUoc+6UA1LQFRBIqoHC7T2 b+OlmNV6tb9bflme823t4HmOBswgETvfOFJ5lBthGHMmI0B0GlQqLFvCZfpugJFe MsClWI6OcJyLaom4r8MI2CFSbzUhKMktPY5chWNyA2mAALA6udy6EmEca4FXk1tP WniSUFKB97vyALGToxb+3LRgvJsiOqx8acNq0HUe2YbIubLTqQuqV4jjD2frCPpa E683UPHuRd0Gvh9qgvLawZuMGsmbsiG2 -----END CERTIFICATE-----Generated at Mon Jul 21 03:19:56 2025 by rpki-client