$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: lCqK4Gkrgx07UKVwqfWMyNE1xI5PGaJrPB+SZ/KcGGw= Subject key identifier: 38:D0:D5:77:52:41:65:B5:73:65:42:74:37:75:11:DE:1D:39:14:63 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 026E Signing time: Wed 25 Mar 2026 01:28:17 +0000 Manifest this update: Wed 25 Mar 2026 01:28:17 +0000 Manifest next update: Wed 01 Apr 2026 01:28:17 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: RIzchMtGbya5UMpeOI/iZMpT06AIxRk4HUVA7SIIUQ4=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: a5rkQCdGd6WLgCsLjH9k9RC6TMcBTGsLeQcwPsfq9Ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Mar 25 01:28:17 2026 GMT Not After : Apr 1 01:28:17 2026 GMT Subject: CN=69c33a31-8846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:70:51:45:f8:1b:46:19:ef:6d:a5:ed:dc:05: 6a:4b:64:26:26:1d:88:48:cd:0f:84:ad:fd:66:df: f3:11:34:d5:c8:8a:e8:51:af:72:03:9a:d8:b9:63: fb:4b:c6:f9:26:a1:70:ac:ed:2c:f1:2e:06:69:87: b4:24:5b:89:7f:01:93:fa:f5:22:84:f1:4b:f0:31: b0:3d:3c:1c:f7:c4:e2:06:cb:c2:d4:a8:f9:49:5d: e0:0e:51:ce:66:e9:71:9a:81:c2:7a:fb:6a:19:ee: 41:5e:a2:90:ee:43:b5:2b:2d:5b:af:da:01:c6:cf: 90:57:db:2f:04:6e:04:cd:04:e2:21:0c:2d:48:74: 19:da:cb:03:2a:f4:25:06:fc:ab:27:da:b8:bf:04: d8:76:60:06:9e:25:c4:9d:23:61:bd:c9:98:4c:1a: 7c:fc:8c:e5:f2:00:60:75:77:9e:69:78:54:15:8d: cb:e9:07:2b:49:ef:dc:c2:d4:c7:f9:b7:e2:da:20: ec:b1:8f:aa:a4:86:5d:97:b1:77:14:8c:79:4f:c0: 42:dd:e6:e4:95:3d:a8:9e:2f:54:b7:90:9f:22:fe: 1b:c2:d9:d5:2c:44:a0:b1:e5:f1:03:19:80:5f:67: fa:0c:4d:26:e4:e4:16:d6:32:f8:a3:6a:69:07:fb: dd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D0:D5:77:52:41:65:B5:73:65:42:74:37:75:11:DE:1D:39:14:63 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:06:0a:1c:8e:9b:4e:6c:b0:62:cc:27:16:aa:61:f9:e7:17: 56:d0:e7:f3:d4:5c:d0:99:8e:42:96:6b:a5:66:b9:db:79:a1: 39:7a:76:f5:d1:3d:db:10:0d:40:b1:e1:62:f1:a3:73:a3:b4: 90:b4:d5:06:a2:c0:69:7a:f2:67:f5:5a:eb:d9:55:6b:bc:ca: da:f3:8c:f6:b3:37:7c:fe:48:59:34:3c:40:88:fb:df:a1:de: de:ae:68:46:9b:04:70:5c:4a:2e:40:76:b8:5c:a9:81:33:a4: 45:a8:5a:33:c7:a7:5c:2b:1d:8a:08:aa:18:51:38:0e:4b:6c: 20:2a:0b:35:99:7c:08:fc:61:ec:aa:37:ea:08:f4:03:5a:6d: 3b:8d:63:24:ef:19:8b:d6:3c:8c:80:d0:f2:6b:cb:4d:4c:7a: 96:f6:2a:62:05:8d:fd:6f:d9:9a:0d:f3:01:56:36:68:2f:3b: 23:fa:1a:94:30:67:c8:0e:42:de:b2:0d:c4:e4:64:b0:bf:1a: 47:af:54:e4:9e:d2:48:c9:33:1c:4b:4e:27:63:2c:e9:12:da: 2f:2b:f1:f2:52:a3:2b:dd:e8:4c:24:4c:8e:6a:79:1c:77:cd: 87:16:e1:fe:e9:87:83:8d:d7:6a:44:b7:a0:0b:ca:57:4a:b1: c4:10:82:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjYwMzI1MDEyODE3WhcNMjYwNDAxMDEyODE3WjAYMRYwFAYD VQQDEw02OWMzM2EzMS04ODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3BRRfgbRhnvbaXt3AVqS2QmJh2ISM0PhK39Zt/zETTVyIroUa9yA5rYuWP7 S8b5JqFwrO0s8S4GaYe0JFuJfwGT+vUihPFL8DGwPTwc98TiBsvC1Kj5SV3gDlHO ZulxmoHCevtqGe5BXqKQ7kO1Ky1br9oBxs+QV9svBG4EzQTiIQwtSHQZ2ssDKvQl BvyrJ9q4vwTYdmAGniXEnSNhvcmYTBp8/Izl8gBgdXeeaXhUFY3L6QcrSe/cwtTH +bfi2iDssY+qpIZdl7F3FIx5T8BC3ebklT2oni9Ut5CfIv4bwtnVLESgseXxAxmA X2f6DE0m5OQW1jL4o2ppB/vdvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDjQ1XdS QWW1c2VCdDd1Ed4dORRjMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnwYKHI6bTmywYswnFqph+ecXVtDn89Rc0JmOQpZrpWa523mhOXp29dE92xAN QLHhYvGjc6O0kLTVBqLAaXryZ/Va69lVa7zK2vOM9rM3fP5IWTQ8QIj736He3q5o RpsEcFxKLkB2uFypgTOkRahaM8enXCsdigiqGFE4DktsICoLNZl8CPxh7Ko36gj0 A1ptO41jJO8Zi9Y8jIDQ8mvLTUx6lvYqYgWN/W/Zmg3zAVY2aC87I/oalDBnyA5C 3rINxORksL8aR69U5J7SSMkzHEtOJ2Ms6RLaLyvx8lKjK93oTCRMjmp5HHfNhxbh /umHg43XakS3oAvKV0qxxBCC2Q== -----END CERTIFICATE-----Generated at Thu Mar 26 13:53:30 2026 by rpki-client