$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: IbZS3WQ6oNH8XMf3vVbwn+i3pGctCmErymSg6jLyNYc= Subject key identifier: BA:B2:BF:BE:45:BB:71:CA:A2:B2:21:7E:5C:C3:A6:AC:05:E3:25:DC Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 0288 Signing time: Wed 13 May 2026 01:53:49 +0000 Manifest this update: Wed 13 May 2026 01:53:48 +0000 Manifest next update: Wed 20 May 2026 01:53:48 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: MGBCEq9K9/+JWKEBGEHMXwLBSJpHBcPNr7tvfKeVqqo=) 2: A7DDB8A23E6611F19FA73FF6CD833773.roa (hash: sE7hyGMb+RZELa0prUkJH8bGHJ/zMp5lIGg2bRbPuWY=) 3: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: a5rkQCdGd6WLgCsLjH9k9RC6TMcBTGsLeQcwPsfq9Ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: May 13 01:53:48 2026 GMT Not After : May 20 01:53:48 2026 GMT Subject: CN=6a03d9ad-3df6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:41:83:17:cb:a7:7c:c8:1d:16:25:c0:35:f1: 3c:c8:a9:cb:c4:2d:e2:f0:53:89:43:49:0a:b3:d1: 2e:4a:92:72:de:6f:d1:4b:6a:5b:b2:44:81:e9:5d: 89:53:ad:73:0b:38:03:73:23:dd:49:f9:06:3c:1f: a4:01:e8:0b:4b:fb:cc:52:c9:ef:ee:47:99:05:2b: e8:23:5f:ab:cc:8c:33:c2:fc:66:22:14:c6:d2:5f: eb:a3:c0:e7:3e:74:3b:fa:6e:25:84:a1:97:ac:37: 1a:71:27:d5:30:cc:c0:43:9a:df:ef:e1:ae:f2:c6: f8:d2:2c:56:15:c9:71:59:54:ee:10:ff:0d:a7:01: 14:d2:4a:fa:6c:81:70:20:f1:3d:9b:54:92:4b:e7: c8:b3:9e:4f:2a:0e:86:98:2d:9d:32:fc:5a:ac:4d: a7:22:a8:e8:bc:66:dd:e1:cd:93:2e:b9:2b:76:9c: 5a:d7:81:5d:1d:5c:c2:92:0a:17:05:b5:f7:28:16: 3c:05:36:28:ed:74:48:d5:8b:3d:5d:aa:6c:a5:10: 57:84:a9:f3:e0:0b:7a:81:e6:4c:d5:9b:4b:c6:81: a8:d6:3f:60:b8:9f:f2:8c:94:48:7b:d2:a6:70:de: 6e:38:36:76:f3:7b:00:0a:25:69:7d:d8:a5:ff:f4: 11:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B2:BF:BE:45:BB:71:CA:A2:B2:21:7E:5C:C3:A6:AC:05:E3:25:DC X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0a:76:e4:01:e9:f1:ef:f4:4b:7c:8e:1c:2a:e1:42:05:b2: 69:73:37:87:5f:59:7c:f7:90:33:57:6b:84:88:6d:85:36:b7: 7e:07:a5:e8:e4:8d:93:bd:07:f9:b6:0a:fa:c4:4b:5a:7b:de: 80:d0:75:69:95:ba:dc:3a:19:7a:f1:f5:50:0a:0c:5e:f3:cc: a7:bc:30:52:3e:5a:68:ca:29:2c:44:ba:8c:00:95:3d:34:9a: cc:a8:96:d0:70:16:4b:4d:c3:d3:a8:c4:de:6f:5a:e8:eb:c4: c4:1e:25:98:7a:41:1f:55:48:63:96:c7:ea:55:73:ea:65:56: 88:86:85:3e:a9:14:80:ad:49:62:08:cc:1e:c2:98:1d:4e:1a: dc:31:9b:9d:89:18:5a:19:71:a3:ab:7d:2e:39:3b:2e:c5:47: c9:de:bd:9b:e7:cd:e3:96:7b:cd:18:7e:70:b6:27:ab:29:1a: ab:9a:df:99:76:8d:9d:27:2c:f8:79:82:ce:66:3d:02:1c:71: 87:56:b1:1d:85:46:24:99:d0:0b:79:db:07:6f:14:34:35:df: a9:9c:87:ca:09:54:f2:8e:46:f2:31:8f:d4:63:26:6b:dc:04: 9e:51:a0:9e:76:8b:f8:5b:75:dd:86:82:24:cf:de:c7:a0:7a: 26:9b:eb:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjYwNTEzMDE1MzQ4WhcNMjYwNTIwMDE1MzQ4WjAYMRYwFAYD VQQDEw02YTAzZDlhZC0zZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50GDF8unfMgdFiXANfE8yKnLxC3i8FOJQ0kKs9EuSpJy3m/RS2pbskSB6V2J U61zCzgDcyPdSfkGPB+kAegLS/vMUsnv7keZBSvoI1+rzIwzwvxmIhTG0l/ro8Dn PnQ7+m4lhKGXrDcacSfVMMzAQ5rf7+Gu8sb40ixWFclxWVTuEP8NpwEU0kr6bIFw IPE9m1SSS+fIs55PKg6GmC2dMvxarE2nIqjovGbd4c2TLrkrdpxa14FdHVzCkgoX BbX3KBY8BTYo7XRI1Ys9XapspRBXhKnz4At6geZM1ZtLxoGo1j9guJ/yjJRIe9Km cN5uODZ283sACiVpfdil//QRIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLqyv75F u3HKorIhflzDpqwF4yXcMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJQp25AHp8e/0S3yOHCrhQgWyaXM3h19ZfPeQM1drhIhthTa3fgel6OSNk70H +bYK+sRLWnvegNB1aZW63DoZevH1UAoMXvPMp7wwUj5aaMopLES6jACVPTSazKiW 0HAWS03D06jE3m9a6OvExB4lmHpBH1VIY5bH6lVz6mVWiIaFPqkUgK1JYgjMHsKY HU4a3DGbnYkYWhlxo6t9Ljk7LsVHyd69m+fN45Z7zRh+cLYnqykaq5rfmXaNnScs +HmCzmY9Ahxxh1axHYVGJJnQC3nbB28UNDXfqZyHyglU8o5G8jGP1GMma9wEnlGg nnaL+Ft13YaCJM/ex6B6JpvrDQ== -----END CERTIFICATE-----Generated at Wed May 13 06:40:20 2026 by rpki-client