$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: +b8r9nqXejss8RTZqqJAMmup03it6Utfr82WQqEOZoI= Subject key identifier: A2:D6:2D:B6:9C:CC:DA:14:62:57:76:8A:3A:BA:DF:18:68:61:6B:45 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01D1 Signing time: Sat 31 May 2025 02:34:06 +0000 Manifest this update: Sat 31 May 2025 02:34:05 +0000 Manifest next update: Sat 07 Jun 2025 02:34:05 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: wiUh9EiRfrWLe+lBOlkK9OYh82y7SIhWEcpJLWYaTLc=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: May 31 02:34:05 2025 GMT Not After : Jun 7 02:34:05 2025 GMT Subject: CN=683a6a9e-45a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6d:3f:c3:b8:49:35:c9:73:23:37:8b:35:7b: cf:ad:da:a8:ee:88:4b:68:ca:db:9f:ea:0f:1e:db: c0:64:33:9e:75:5c:39:71:fb:7d:5c:3d:f5:6b:36: 61:23:4f:8a:69:2c:ed:e8:02:2f:cd:9f:94:1f:8d: 19:ca:e3:15:58:b4:f9:00:cd:93:e6:e5:38:b2:e9: e5:64:12:dc:16:4d:64:b8:f2:d0:a1:e4:e6:69:d9: b6:d3:fb:94:5e:bc:d9:dc:8d:f8:f4:4d:48:f7:b5: 50:59:ff:db:8d:46:30:a4:7f:23:c0:8e:bd:8f:57: 1d:7a:4c:71:4b:3c:e7:93:31:4d:ef:47:c7:32:2e: 34:ae:09:b0:2f:12:8d:60:60:9d:69:ea:02:51:53: e6:52:95:10:a0:de:ca:3d:b2:5b:4e:19:5e:14:b9: f8:18:96:62:24:3c:51:9f:39:98:1b:af:0e:79:88: 8d:f0:64:b4:4e:80:fe:7f:8c:bb:c4:e2:b5:58:bf: a2:d9:45:1d:9b:a6:c2:1e:12:68:42:df:0f:53:eb: dd:f0:4b:fd:35:f4:f6:78:66:74:f4:d8:36:ca:83: c0:25:20:f9:f9:91:e5:3c:80:87:28:96:26:6c:9f: f5:02:03:e2:82:96:55:e4:3a:d7:60:df:6e:ae:37: 36:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D6:2D:B6:9C:CC:DA:14:62:57:76:8A:3A:BA:DF:18:68:61:6B:45 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b8:c9:c9:20:76:9e:cf:f8:30:6a:d8:df:3d:86:46:56:82: 52:82:31:20:18:68:b6:8c:6e:06:18:9c:5b:b7:80:4b:e9:3b: a4:b3:65:93:b2:9b:5e:4d:f6:6a:74:c0:e1:83:e5:bf:d4:f1: 0a:62:b3:3a:8a:29:33:90:54:e0:a4:e7:4d:1a:53:d7:50:d5: b9:d9:eb:02:8e:38:36:d0:2d:d3:29:c9:e3:eb:3f:3d:ce:67: fc:80:59:87:59:33:ed:cc:fc:1c:de:c1:ad:e5:9a:94:cd:6f: 14:86:db:91:32:bd:41:2a:a4:d5:68:34:9c:6a:83:47:53:a6: ee:4f:9b:b5:2b:0b:87:eb:d3:7f:b4:af:2d:86:c3:03:28:eb: fc:c2:b3:b1:3b:15:09:e9:45:22:e6:39:b4:d7:35:5b:ba:e2: 55:2f:70:b1:41:ab:ce:dd:59:e9:f4:8e:71:5a:99:62:d9:be: 5a:cb:5f:bf:c0:68:5e:c9:e6:c3:5d:17:78:db:63:ed:f2:b4: 5a:66:86:27:c7:9e:22:42:0b:1a:43:d0:e6:bf:b4:33:cf:cc: 20:ca:3c:2a:70:e4:73:f3:57:64:72:bf:1d:f0:b9:fa:26:a0: 32:9a:16:06:de:22:07:05:90:40:a9:c6:2e:35:5a:d1:66:6d: 4a:b4:00:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwNTMxMDIzNDA1WhcNMjUwNjA3MDIzNDA1WjAYMRYwFAYD VQQDEw02ODNhNmE5ZS00NWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG0/w7hJNclzIzeLNXvPrdqo7ohLaMrbn+oPHtvAZDOedVw5cft9XD31azZh I0+KaSzt6AIvzZ+UH40ZyuMVWLT5AM2T5uU4sunlZBLcFk1kuPLQoeTmadm20/uU XrzZ3I349E1I97VQWf/bjUYwpH8jwI69j1cdekxxSzznkzFN70fHMi40rgmwLxKN YGCdaeoCUVPmUpUQoN7KPbJbThleFLn4GJZiJDxRnzmYG68OeYiN8GS0ToD+f4y7 xOK1WL+i2UUdm6bCHhJoQt8PU+vd8Ev9NfT2eGZ09Ng2yoPAJSD5+ZHlPICHKJYm bJ/1AgPigpZV5DrXYN9urjc2swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLWLbac zNoUYld2ijq63xhoYWtFMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNuMnJIHaez/gwatjfPYZGVoJSgjEgGGi2jG4GGJxbt4BL6Tuks2WT spteTfZqdMDhg+W/1PEKYrM6iikzkFTgpOdNGlPXUNW52esCjjg20C3TKcnj6z89 zmf8gFmHWTPtzPwc3sGt5ZqUzW8UhtuRMr1BKqTVaDScaoNHU6buT5u1KwuH69N/ tK8thsMDKOv8wrOxOxUJ6UUi5jm01zVbuuJVL3CxQavO3Vnp9I5xWpli2b5ay1+/ wGheyebDXRd422Pt8rRaZoYnx54iQgsaQ9Dmv7Qzz8wgyjwqcORz81dkcr8d8Ln6 JqAymhYG3iIHBZBAqcYuNVrRZm1KtABt -----END CERTIFICATE-----Generated at Sat May 31 17:00:18 2025 by rpki-client