$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: /ehIJqm53hCgtuISmenRJJj8p+R7/axbhpOyczP5i9U= Subject key identifier: 1E:B0:7A:FC:9A:CC:50:9A:40:F2:DC:17:CF:EE:C3:4C:B6:89:51:09 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 021E Signing time: Fri 31 Oct 2025 02:02:37 +0000 Manifest this update: Fri 31 Oct 2025 02:02:37 +0000 Manifest next update: Fri 07 Nov 2025 02:02:37 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: nO4sDtgIS6J9xfreHBxN+rFqPAy6UUhW/65/3QYkBsM=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 02:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Oct 31 02:02:37 2025 GMT Not After : Nov 7 02:02:37 2025 GMT Subject: CN=690418bd-9b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7a:0c:47:e4:d2:28:cd:10:51:f4:7a:09:bf: 1e:d9:27:0f:93:82:ca:a7:93:86:5c:64:fd:ce:11: ba:d1:d0:97:bc:80:46:f8:80:cd:ac:0b:fc:cf:d4: 36:4b:61:66:f2:3d:3b:87:80:4c:7f:aa:2c:f9:7d: 1d:94:84:eb:65:20:89:30:c4:8c:43:0f:f4:95:ab: 27:cd:bd:71:fa:c4:57:0c:da:4d:cb:ba:89:ab:2b: 66:3f:2e:d6:e6:69:80:d3:7d:37:07:60:3f:8c:6e: c7:d2:6b:bc:3a:25:53:fd:7b:6e:50:2c:07:1e:06: 2a:e2:04:9a:9e:c4:6d:d6:ee:31:fe:30:64:b7:49: 76:4a:b2:47:7b:7f:e7:30:67:ac:c1:f2:62:38:43: 70:7d:de:8e:1f:fc:69:03:d5:d9:c4:71:c2:75:8e: cd:8e:af:8f:4d:67:08:eb:9a:79:70:4d:60:8b:dd: d5:14:9a:61:f4:af:87:c2:8f:24:ec:2e:d1:23:cb: bf:06:13:8e:6c:34:22:bb:57:11:18:28:9a:95:bd: a7:bd:95:4a:97:27:ab:e0:72:65:13:67:ba:94:f0: b4:e5:dc:96:ce:27:c8:03:2d:47:0a:b5:25:e4:87: fa:7c:00:34:38:cc:75:48:64:f2:e9:22:2e:c3:76: e1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B0:7A:FC:9A:CC:50:9A:40:F2:DC:17:CF:EE:C3:4C:B6:89:51:09 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ce:a2:d0:17:a0:02:8f:67:44:32:0d:87:0c:49:7f:74:9f: ec:9d:27:85:ab:9e:45:19:91:50:96:66:fc:15:d9:58:b5:67: e0:f8:63:c7:d3:91:de:f2:67:61:04:6d:55:4b:fc:68:97:b2: 02:b9:10:52:4c:31:67:e1:cb:99:2e:91:a9:a0:8e:5f:71:d2: e3:f5:b8:98:b7:da:0e:58:8d:58:c0:3e:dd:87:17:ee:71:a0: ef:4f:7c:8f:ad:2f:12:b1:d3:36:53:e4:ee:90:31:fc:d2:44: 43:b9:1c:1d:80:e9:1f:cd:c4:f2:ab:31:a0:dd:9c:84:72:77: e9:f6:01:2c:fc:80:1b:e5:52:20:dd:cf:d8:10:ec:91:25:bf: 4a:0a:cd:70:bf:2b:ba:46:1b:3d:2d:a8:59:c2:4e:3e:b3:98: 9c:b5:d2:95:03:80:91:27:72:48:94:8d:82:31:70:91:fb:4d: b1:02:42:86:44:2d:24:49:9a:05:05:1d:b4:0f:91:5e:9e:5f: a6:87:6a:60:7a:14:cf:f5:b3:ee:e0:0e:cc:09:0b:b7:f7:23: ec:9c:23:6e:15:f6:84:a6:af:b9:7a:c8:5b:dc:5b:11:72:0b: f3:87:10:96:3a:e9:74:82:ec:de:f7:7a:9a:f2:ac:e7:2a:ff: de:17:e3:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUxMDMxMDIwMjM3WhcNMjUxMTA3MDIwMjM3WjAYMRYwFAYD VQQDEw02OTA0MThiZC05YjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HoMR+TSKM0QUfR6Cb8e2ScPk4LKp5OGXGT9zhG60dCXvIBG+IDNrAv8z9Q2 S2Fm8j07h4BMf6os+X0dlITrZSCJMMSMQw/0lasnzb1x+sRXDNpNy7qJqytmPy7W 5mmA0303B2A/jG7H0mu8OiVT/XtuUCwHHgYq4gSansRt1u4x/jBkt0l2SrJHe3/n MGeswfJiOENwfd6OH/xpA9XZxHHCdY7Njq+PTWcI65p5cE1gi93VFJph9K+Hwo8k 7C7RI8u/BhOObDQiu1cRGCialb2nvZVKlyer4HJlE2e6lPC05dyWzifIAy1HCrUl 5If6fAA0OMx1SGTy6SIuw3bhPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6wevya zFCaQPLcF8/uw0y2iVEJMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZzqLQF6ACj2dEMg2HDEl/dJ/snSeFq55FGZFQlmb8FdlYtWfg+GPH 05He8mdhBG1VS/xol7ICuRBSTDFn4cuZLpGpoI5fcdLj9biYt9oOWI1YwD7dhxfu caDvT3yPrS8SsdM2U+TukDH80kRDuRwdgOkfzcTyqzGg3ZyEcnfp9gEs/IAb5VIg 3c/YEOyRJb9KCs1wvyu6Rhs9LahZwk4+s5ictdKVA4CRJ3JIlI2CMXCR+02xAkKG RC0kSZoFBR20D5Fenl+mh2pgehTP9bPu4A7MCQu39yPsnCNuFfaEpq+5eshb3FsR cgvzhxCWOul0guze93qa8qznKv/eF+Nt -----END CERTIFICATE-----Generated at Fri Oct 31 05:47:43 2025 by rpki-client