$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: p2xNwpnDsjMAmjDaa8I0apr+WRWLgcAMuXY4Jiqw9VI= Subject key identifier: 61:72:D2:59:CF:4A:AB:46:10:F4:6F:33:0A:D8:3C:92:3B:0E:BE:F4 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 0271 Signing time: Tue 31 Mar 2026 01:41:27 +0000 Manifest this update: Tue 31 Mar 2026 01:41:26 +0000 Manifest next update: Tue 07 Apr 2026 01:41:26 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: OKyqJgQTOZdBlDU/guT18Ntpm5qan0m3ZvA9CFKlGAw=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: a5rkQCdGd6WLgCsLjH9k9RC6TMcBTGsLeQcwPsfq9Ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Mar 31 01:41:26 2026 GMT Not After : Apr 7 01:41:26 2026 GMT Subject: CN=69cb2647-b7f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:06:97:0c:27:66:24:af:1c:f0:3b:c2:65: 18:9a:25:5f:80:69:2b:e6:81:ef:a3:54:e0:6b:9a: eb:95:28:00:f3:e8:c9:ff:cc:44:54:e0:9d:5f:c5: 12:ce:32:23:d5:27:84:9e:60:be:84:8f:e1:4a:55: 8c:7d:72:5a:da:aa:1c:1d:bb:ca:9d:15:b2:89:b1: a1:96:7d:4d:8f:0f:d0:60:f0:0b:8b:b1:bb:ef:10: 10:95:bb:ba:76:51:35:14:b0:d2:07:e5:95:7e:23: 43:2f:35:82:6c:9d:5b:57:72:31:16:89:74:5f:3c: ca:9b:6a:c1:96:31:ad:f7:30:74:50:fb:56:9f:cf: b7:ac:5d:27:d4:89:67:5a:aa:63:b5:11:21:0c:5d: 95:b2:5d:db:b4:08:3b:ca:d8:a9:66:df:a3:c8:9f: 65:90:5e:69:a4:de:c4:fb:0b:c0:4b:01:a7:60:1a: 2e:f5:40:35:9d:f4:4a:92:58:9d:ed:56:73:da:8e: 98:bb:af:6a:ac:9d:bd:42:df:49:36:4c:47:75:d3: 1e:a4:5c:16:74:eb:bf:93:f3:96:6e:b1:2d:27:54: 56:14:38:ac:52:32:98:4a:e3:27:71:be:2d:07:c8: 69:fa:6b:4a:a0:a0:85:df:56:dc:8d:19:4c:da:ef: ae:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:72:D2:59:CF:4A:AB:46:10:F4:6F:33:0A:D8:3C:92:3B:0E:BE:F4 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:1b:88:ea:ab:a5:1a:8a:4c:52:36:46:b5:25:22:32:88:33: 8b:e1:7b:3f:4b:1f:a0:65:71:34:cb:1b:13:fa:3a:fc:a3:ca: e7:f8:c9:a9:7a:98:81:13:a0:ab:c8:03:3b:60:74:7f:0c:2c: bd:f7:dc:24:0b:01:19:0f:e1:67:f4:af:5d:f7:40:b5:89:27: be:bf:b1:19:4b:1a:ce:15:98:cd:b5:6f:af:0a:2e:26:f4:16: 57:c9:51:23:33:54:d9:56:c0:c5:52:6e:c2:c1:0b:53:7d:5d: 6a:6d:52:1b:57:60:08:ef:6c:96:e8:30:a6:3a:41:ee:98:d8: bb:4e:af:6c:77:79:b9:bf:9a:a2:f7:c2:52:f4:d1:47:30:cf: 89:da:7f:6a:ac:d0:c5:f1:6a:84:c2:c0:81:44:7e:3d:a1:44: b0:a0:10:b6:42:01:a4:b2:9f:02:0a:ba:20:e4:02:c9:15:2f: 35:8c:5b:d2:29:fc:c6:72:4f:f5:ba:96:dd:e3:60:24:33:14: a6:50:ec:25:d6:2f:50:66:fc:b4:04:02:1c:6d:70:b8:b6:6c: 06:e5:48:94:66:cf:af:fd:e0:31:32:7d:27:8c:cb:2a:25:38: 6f:57:ca:35:c8:bb:bc:6f:95:c2:5c:c2:19:32:b3:91:9d:25: e6:a5:4a:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjYwMzMxMDE0MTI2WhcNMjYwNDA3MDE0MTI2WjAYMRYwFAYD VQQDEw02OWNiMjY0Ny1iN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXcGlwwnZiSvHPA7wmUYmiVfgGkr5oHvo1Tga5rrlSgA8+jJ/8xEVOCdX8US zjIj1SeEnmC+hI/hSlWMfXJa2qocHbvKnRWyibGhln1Njw/QYPALi7G77xAQlbu6 dlE1FLDSB+WVfiNDLzWCbJ1bV3IxFol0XzzKm2rBljGt9zB0UPtWn8+3rF0n1Iln WqpjtREhDF2Vsl3btAg7ytipZt+jyJ9lkF5ppN7E+wvASwGnYBou9UA1nfRKklid 7VZz2o6Yu69qrJ29Qt9JNkxHddMepFwWdOu/k/OWbrEtJ1RWFDisUjKYSuMncb4t B8hp+mtKoKCF31bcjRlM2u+urQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGFy0lnP SqtGEPRvMwrYPJI7Dr70MB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfxuI6qulGopMUjZGtSUiMogzi+F7P0sfoGVxNMsbE/o6/KPK5/jJqXqYgROg q8gDO2B0fwwsvffcJAsBGQ/hZ/SvXfdAtYknvr+xGUsazhWYzbVvrwouJvQWV8lR IzNU2VbAxVJuwsELU31dam1SG1dgCO9slugwpjpB7pjYu06vbHd5ub+aovfCUvTR RzDPidp/aqzQxfFqhMLAgUR+PaFEsKAQtkIBpLKfAgq6IOQCyRUvNYxb0in8xnJP 9bqW3eNgJDMUplDsJdYvUGb8tAQCHG1wuLZsBuVIlGbPr/3gMTJ9J4zLKiU4b1fK Nci7vG+VwlzCGTKzkZ0l5qVKHA== -----END CERTIFICATE-----Generated at Tue Mar 31 11:19:04 2026 by rpki-client