$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: +n5IkGsckyPTfu8WLJz5ynYll42KY0glkcaOKh2qjG0= Subject key identifier: B7:F1:AC:22:31:3D:56:80:C4:88:81:5B:28:2C:2F:4A:53:FB:29:88 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 0205 Signing time: Tue 09 Sep 2025 02:20:46 +0000 Manifest this update: Tue 09 Sep 2025 02:20:46 +0000 Manifest next update: Tue 16 Sep 2025 02:20:46 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: htH3XL2vkztpmpZul/Cm23mkyuOhcoNyamMcTQLzDzA=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Sep 9 02:20:46 2025 GMT Not After : Sep 16 02:20:46 2025 GMT Subject: CN=68bf8efe-2ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:f7:26:1f:e4:57:12:81:7c:50:3e:89:91: bc:53:08:f5:5d:9c:52:66:c6:f9:24:2f:b7:18:a6: 52:fe:a8:8f:b2:31:c0:6d:3c:37:7b:2b:f3:e3:58: d8:9c:cb:3c:b3:c5:61:08:40:db:9f:90:09:3a:cd: f5:03:ba:3c:76:52:03:f7:ba:ad:80:ad:31:5e:45: 8d:fe:16:75:47:3b:7d:84:d2:fc:89:c9:eb:10:71: c6:04:1e:f1:10:f5:be:27:42:aa:2d:bf:bb:72:45: 02:57:9f:39:82:86:46:7c:2a:95:43:04:97:ef:00: 0d:28:25:de:e9:3b:24:2f:c6:dd:07:d3:e1:91:68: 54:97:99:4d:9f:74:c1:4c:c7:71:b5:f7:4d:c8:d1: d4:65:e0:7e:ed:41:d3:1a:80:ca:1f:1c:18:7a:77: 7a:68:9e:5c:12:30:55:42:b4:2a:1e:ba:eb:2e:e0: e2:00:77:a3:25:12:41:33:ac:f0:27:c2:66:d8:58: 31:0c:bb:e8:f0:b4:9b:09:0c:d0:ef:4b:4a:28:32: c6:37:b1:47:f1:75:f9:7a:84:a4:a3:b3:39:16:63: 49:2e:10:70:f8:94:bd:b9:57:5a:51:f2:bf:af:fe: 82:be:42:34:6a:d0:02:e6:4b:09:0a:02:00:d6:df: ac:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F1:AC:22:31:3D:56:80:C4:88:81:5B:28:2C:2F:4A:53:FB:29:88 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d4:e6:81:ca:93:6c:e0:36:de:6c:51:e8:0a:21:61:c1:e1: a1:ef:f1:fb:a4:21:d1:77:93:a4:55:f1:a4:2a:72:5a:bb:ba: 36:57:40:5c:b6:33:2e:55:71:db:7a:94:cd:41:37:3f:20:1d: 5d:78:fd:a2:5a:f2:5a:1f:37:9e:90:b8:11:de:3c:69:5b:1b: f0:81:90:8c:cf:e2:5f:72:ff:e9:a1:d2:04:44:4a:3f:53:61: 3d:f4:05:33:6b:1b:71:5f:ef:89:e1:d2:a9:fb:b3:01:52:14: a8:7a:2e:2d:ad:f1:a5:4a:6c:b2:c4:aa:0c:82:f6:03:a8:32: ef:05:23:c3:76:f4:1e:24:65:7d:2e:2f:bd:56:e5:3e:1f:2b: c2:f2:52:6a:b0:c4:26:15:6a:da:06:c7:e6:79:4b:23:e8:96: ff:0c:37:cf:b4:2e:1b:af:68:bd:55:78:03:e8:29:d6:84:ee: 26:54:d7:46:df:3e:6a:ce:2b:fd:9b:b6:b7:f8:d5:6b:07:a7: 70:2b:70:50:eb:08:e3:b2:2d:6a:83:12:c3:8b:dc:b5:17:ec: d8:60:a8:f9:a4:8e:9f:d4:c6:3f:ed:47:d2:79:96:ba:90:ce: 57:77:b8:31:2e:e9:ef:3c:07:19:8a:88:1b:7f:15:7d:91:75: f2:32:de:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwOTA5MDIyMDQ2WhcNMjUwOTE2MDIyMDQ2WjAYMRYwFAYD VQQDEw02OGJmOGVmZS0yYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8j3Jh/kVxKBfFA+iZG8Uwj1XZxSZsb5JC+3GKZS/qiPsjHAbTw3eyvz41jY nMs8s8VhCEDbn5AJOs31A7o8dlID97qtgK0xXkWN/hZ1Rzt9hNL8icnrEHHGBB7x EPW+J0KqLb+7ckUCV585goZGfCqVQwSX7wANKCXe6TskL8bdB9PhkWhUl5lNn3TB TMdxtfdNyNHUZeB+7UHTGoDKHxwYend6aJ5cEjBVQrQqHrrrLuDiAHejJRJBM6zw J8Jm2FgxDLvo8LSbCQzQ70tKKDLGN7FH8XX5eoSko7M5FmNJLhBw+JS9uVdaUfK/ r/6CvkI0atAC5ksJCgIA1t+sQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfxrCIx PVaAxIiBWygsL0pT+ymIMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq1OaBypNs4DbebFHoCiFhweGh7/H7pCHRd5OkVfGkKnJau7o2V0Bc tjMuVXHbepTNQTc/IB1deP2iWvJaHzeekLgR3jxpWxvwgZCMz+Jfcv/podIEREo/ U2E99AUzaxtxX++J4dKp+7MBUhSoei4trfGlSmyyxKoMgvYDqDLvBSPDdvQeJGV9 Li+9VuU+HyvC8lJqsMQmFWraBsfmeUsj6Jb/DDfPtC4br2i9VXgD6CnWhO4mVNdG 3z5qziv9m7a3+NVrB6dwK3BQ6wjjsi1qgxLDi9y1F+zYYKj5pI6f1MY/7UfSeZa6 kM5Xd7gxLunvPAcZiogbfxV9kXXyMt7B -----END CERTIFICATE-----Generated at Tue Sep 9 13:15:11 2025 by rpki-client