$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: 2Z11/JT5jxqkEtUDbzikss5CwF8jwSac1x629DvnRvI= Subject key identifier: BB:95:4E:55:89:43:9B:30:FE:52:68:80:4F:0B:C3:0B:5E:8A:F9:3B Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0293 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 028C Signing time: Thu 21 May 2026 01:50:22 +0000 Manifest this update: Thu 21 May 2026 01:50:21 +0000 Manifest next update: Thu 28 May 2026 01:50:21 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: NTXlL8ar5MiRNozIsgZgNmADHehHuXd3Obb6aEijz2k=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: a5rkQCdGd6WLgCsLjH9k9RC6TMcBTGsLeQcwPsfq9Ws=) 3: A7DDB8A23E6611F19FA73FF6CD833773.roa (hash: sE7hyGMb+RZELa0prUkJH8bGHJ/zMp5lIGg2bRbPuWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: May 21 01:50:21 2026 GMT Not After : May 28 01:50:21 2026 GMT Subject: CN=6a0e64dd-e8bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ca:c7:d6:86:c4:ff:b3:9f:c1:ab:e2:48:17: d4:6f:00:29:b6:52:1c:4b:cc:92:17:07:a1:96:7a: 0a:60:a8:07:aa:56:0e:47:4e:8e:20:52:dc:80:87: 46:60:5b:54:32:3b:3e:e2:e5:b2:64:a7:56:73:14: c1:ad:de:26:16:ac:06:a0:fb:bd:04:b3:f7:bc:b3: 6a:52:4c:48:eb:49:0a:2f:39:a9:db:29:c5:06:82: c3:b1:ca:5a:f6:2e:9b:e1:36:64:45:f3:cd:ed:33: 5a:98:19:57:a9:c6:3a:65:9d:da:4a:f1:3d:4d:c7: 0a:0b:8f:aa:7f:10:27:02:88:db:07:40:b0:fd:d1: 64:d8:a1:6b:62:16:bf:37:58:c2:1e:bb:4c:0e:38: b5:7b:2d:a1:32:30:ba:a6:50:ed:18:41:e9:ff:5c: f5:af:b5:c9:ff:65:e7:13:e9:04:97:3c:a8:28:69: 33:b0:c9:d4:7a:d7:17:a9:0d:a1:56:7c:0e:1e:bc: 06:23:42:35:36:dd:09:9f:df:98:1e:9d:8e:5a:47: 36:9b:4d:6f:36:fa:02:10:99:b5:95:82:8a:fc:1c: c7:17:a9:df:be:e9:66:aa:0f:f2:5d:82:47:53:69: 54:f5:f3:d6:16:9a:6e:4d:e4:b7:5d:1a:1e:50:a2: c8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:95:4E:55:89:43:9B:30:FE:52:68:80:4F:0B:C3:0B:5E:8A:F9:3B X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:88:0c:4c:b8:cc:5d:be:c3:ce:ff:ae:bd:2e:f1:85:17:c7: b0:7f:15:e2:a6:00:08:57:dd:0a:0d:c7:44:50:0c:79:59:23: 1b:8f:9d:8b:96:a6:03:38:df:9c:5a:58:89:93:96:ef:22:b0: d3:b6:6f:df:23:94:57:cb:8d:39:c8:cc:11:94:32:8d:a4:e2: 6c:6c:e3:2f:b6:53:a4:c5:43:04:28:55:70:d9:1a:76:bb:b0: 4e:c0:d2:06:6c:7d:aa:04:35:8f:aa:6c:02:76:d7:c4:c3:34: 2d:f9:5c:24:dd:1e:95:9b:f0:b2:e6:87:55:cd:be:c5:87:3e: f7:06:1c:8c:9d:4d:0e:99:6e:3c:13:8e:c2:df:ba:a8:3e:5d: fa:4e:2b:3b:e0:b7:4c:bc:8a:cb:80:5a:a5:8a:e8:d7:47:63: 09:c9:1a:2e:86:ef:d0:90:2c:f3:bd:7c:b5:fb:08:94:07:ca: 0f:2d:63:14:0e:52:19:16:7e:d0:b9:1b:6b:30:f3:37:70:2e: eb:2b:08:e6:76:e6:29:da:d5:0b:5f:f9:66:fb:63:26:ae:7f: c8:b6:7a:be:74:80:21:67:d3:b6:92:8f:c7:e2:38:bb:45:c9: 51:9b:b5:13:41:ea:a2:02:a5:b7:77:8a:87:33:e3:9e:7f:2e: b7:2c:64:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjYwNTIxMDE1MDIxWhcNMjYwNTI4MDE1MDIxWjAYMRYwFAYD VQQDEw02YTBlNjRkZC1lOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7srH1obE/7OfwaviSBfUbwAptlIcS8ySFwehlnoKYKgHqlYOR06OIFLcgIdG YFtUMjs+4uWyZKdWcxTBrd4mFqwGoPu9BLP3vLNqUkxI60kKLzmp2ynFBoLDscpa 9i6b4TZkRfPN7TNamBlXqcY6ZZ3aSvE9TccKC4+qfxAnAojbB0Cw/dFk2KFrYha/ N1jCHrtMDji1ey2hMjC6plDtGEHp/1z1r7XJ/2XnE+kElzyoKGkzsMnUetcXqQ2h VnwOHrwGI0I1Nt0Jn9+YHp2OWkc2m01vNvoCEJm1lYKK/BzHF6nfvulmqg/yXYJH U2lU9fPWFppuTeS3XRoeUKLIzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLuVTlWJ Q5sw/lJogE8Lwwteivk7MB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArIgMTLjMXb7Dzv+uvS7xhRfHsH8V4qYACFfdCg3HRFAMeVkjG4+di5amAzjf nFpYiZOW7yKw07Zv3yOUV8uNOcjMEZQyjaTibGzjL7ZTpMVDBChVcNkadruwTsDS Bmx9qgQ1j6psAnbXxMM0LflcJN0elZvwsuaHVc2+xYc+9wYcjJ1NDpluPBOOwt+6 qD5d+k4rO+C3TLyKy4BapYro10djCckaLobv0JAs8718tfsIlAfKDy1jFA5SGRZ+ 0LkbazDzN3Au6ysI5nbmKdrVC1/5ZvtjJq5/yLZ6vnSAIWfTtpKPx+I4u0XJUZu1 E0HqogKlt3eKhzPjnn8utyxkAA== -----END CERTIFICATE-----Generated at Thu May 21 09:38:34 2026 by rpki-client