$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: jY1x5Hq9b3vh1VHqMl0FbyEUWWbzVZK3AE+umTKbbyU= Subject key identifier: A5:BF:00:5D:D0:51:01:E8:1E:17:06:45:59:43:E0:3E:D4:A6:85:42 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01E1 Signing time: Tue 01 Jul 2025 03:03:29 +0000 Manifest this update: Tue 01 Jul 2025 03:03:29 +0000 Manifest next update: Tue 08 Jul 2025 03:03:29 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: rtHn7ysXxINaPtf0AJe0umDUHl7bKaTGLAc3BXBmBJs=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Jul 1 03:03:29 2025 GMT Not After : Jul 8 03:03:29 2025 GMT Subject: CN=68635001-610c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:2f:7d:56:c7:15:71:90:9c:8a:05:75:d6: ea:c5:69:16:35:e2:e5:04:80:5e:6b:e7:37:78:41: a4:0e:27:80:ad:3e:15:52:37:a5:02:4e:a0:56:90: 26:ca:28:af:99:8b:b8:f7:a9:84:d0:e7:4f:74:1e: 13:bb:c0:4d:8b:1e:c7:3c:c9:56:f6:c9:45:7b:ad: 2f:ef:c8:d7:3d:1d:64:93:0f:d4:54:f5:a4:8e:8e: 7c:2a:ac:d6:4b:ad:11:93:61:8c:42:a6:1d:93:07: 01:9e:78:4b:61:a7:e7:1f:64:77:1b:a4:d7:a8:28: fe:72:e8:f0:49:c5:0b:e6:2a:51:f8:c8:aa:f0:a6: 51:1b:c7:a1:11:0f:ab:27:70:fb:b8:0c:a1:f5:5e: 60:0a:34:98:fe:d1:2f:6d:e6:02:c6:2b:3d:46:0c: 9d:aa:1a:26:33:18:30:31:bb:57:23:25:f1:aa:ba: 2d:92:0b:37:37:2f:62:db:22:d6:c3:10:ac:b4:72: ed:53:fd:eb:b6:ed:53:6a:b6:83:de:b6:15:da:eb: b0:3f:f5:5b:42:7f:ea:8c:a5:2e:e7:2d:be:bf:d2: a6:10:8f:06:6f:8c:1b:37:e4:ae:a0:77:82:ca:fa: 45:03:82:22:b2:65:b7:e9:3a:b7:fd:3d:ed:3a:81: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BF:00:5D:D0:51:01:E8:1E:17:06:45:59:43:E0:3E:D4:A6:85:42 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:3a:a5:64:03:85:a3:c9:12:c5:b5:36:4a:f4:ca:46:b6:8a: 85:52:f3:fd:49:4f:ac:e7:24:b0:de:d2:41:eb:3e:c0:66:3c: 68:1f:ae:1c:f7:5c:a9:76:7d:c0:df:1f:ea:ab:c0:94:e8:a4: 3d:c7:9c:36:65:19:8d:d1:fc:67:c4:58:12:17:21:5e:ee:ac: 6f:16:15:56:ab:6a:5a:ad:af:ac:c6:21:26:19:f3:8b:bb:2a: 32:12:87:61:af:40:25:36:f9:b3:04:e2:60:c7:bc:7d:82:be: 67:c8:b3:f2:98:37:f5:05:f7:d3:26:73:1c:44:88:72:57:79: 9e:f1:42:de:9b:86:73:59:7a:bb:75:eb:32:84:d2:0a:4e:05: 30:73:25:85:ed:59:b1:8f:05:cb:18:16:34:c8:a0:4e:86:14: 96:74:aa:66:e8:65:64:7a:e9:27:da:2e:47:e2:65:16:dd:fb: a1:b5:62:33:81:2c:84:cf:1d:a7:d5:42:0c:74:61:62:4e:d9: b6:ec:a6:ab:a6:eb:1b:a1:a7:0c:29:77:43:16:c7:99:bb:85: 38:72:c4:35:08:5a:dd:0f:34:5c:a7:98:19:85:62:42:a1:42: 1a:2c:2c:5e:82:c0:93:e6:79:f0:50:87:7a:2e:fa:8d:b5:de: 30:f6:06:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwNzAxMDMwMzI5WhcNMjUwNzA4MDMwMzI5WjAYMRYwFAYD VQQDEw02ODYzNTAwMS02MTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt10vfVbHFXGQnIoFddbqxWkWNeLlBIBea+c3eEGkDieArT4VUjelAk6gVpAm yiivmYu496mE0OdPdB4Tu8BNix7HPMlW9slFe60v78jXPR1kkw/UVPWkjo58KqzW S60Rk2GMQqYdkwcBnnhLYafnH2R3G6TXqCj+cujwScUL5ipR+Miq8KZRG8ehEQ+r J3D7uAyh9V5gCjSY/tEvbeYCxis9RgydqhomMxgwMbtXIyXxqrotkgs3Ny9i2yLW wxCstHLtU/3rtu1TaraD3rYV2uuwP/VbQn/qjKUu5y2+v9KmEI8Gb4wbN+SuoHeC yvpFA4IismW36Tq3/T3tOoFBXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKW/AF3Q UQHoHhcGRVlD4D7UpoVCMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJOqVkA4WjyRLFtTZK9MpGtoqFUvP9SU+s5ySw3tJB6z7AZjxoH64c 91ypdn3A3x/qq8CU6KQ9x5w2ZRmN0fxnxFgSFyFe7qxvFhVWq2para+sxiEmGfOL uyoyEodhr0AlNvmzBOJgx7x9gr5nyLPymDf1BffTJnMcRIhyV3me8ULem4ZzWXq7 desyhNIKTgUwcyWF7VmxjwXLGBY0yKBOhhSWdKpm6GVkeukn2i5H4mUW3fuhtWIz gSyEzx2n1UIMdGFiTtm27KarpusboacMKXdDFseZu4U4csQ1CFrdDzRcp5gZhWJC oUIaLCxegsCT5nnwUId6LvqNtd4w9gaD -----END CERTIFICATE-----Generated at Wed Jul 2 20:17:24 2025 by rpki-client