$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: S/PkHlCtoMvuslgzdrvJKE6FqIlCciW0nJtPYy0VDdo= Subject key identifier: CC:6D:0F:45:A5:ED:0A:97:B4:31:C5:F1:C5:33:C1:17:00:D4:7B:B4 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01FC Signing time: Sat 23 Aug 2025 02:30:15 +0000 Manifest this update: Sat 23 Aug 2025 02:30:15 +0000 Manifest next update: Sat 30 Aug 2025 02:30:15 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: 10c5ip2ysakZouFoknEv4TSBxKDtuhqKzxSSYcQ6cYI=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Aug 23 02:30:15 2025 GMT Not After : Aug 30 02:30:15 2025 GMT Subject: CN=68a927b7-6d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6a:ff:20:62:a4:7f:a3:25:d8:cc:47:7d:de: ad:94:34:21:f6:ba:f5:bb:d7:89:4f:0e:e3:a2:73: 02:56:6a:a4:4e:d8:61:82:0a:10:ff:c1:6e:2d:d3: 18:8b:6c:32:53:e0:25:be:d7:b8:09:f5:c6:e7:ac: 62:07:1b:ea:f8:cb:be:21:00:be:99:d2:67:00:af: 30:13:7b:22:0c:66:92:47:1f:68:f7:94:65:f4:0a: 42:76:ad:87:a9:0e:e7:6e:57:d0:81:bc:69:bb:c6: 71:7e:a5:13:87:86:17:2b:70:08:ad:8e:d9:97:42: 3a:f4:d9:10:32:bb:7a:00:7b:e2:dd:e8:6b:bc:3b: 7b:57:c9:e2:21:06:92:e8:79:9b:1d:ce:21:d5:c7: a0:0e:2c:11:e5:e3:5a:09:3e:ef:3e:84:94:cd:f1: 46:0d:15:a7:84:6d:20:f9:8b:25:ec:06:f6:6a:44: ca:05:46:c2:f0:0b:d4:07:77:1f:79:b7:2c:24:3c: e3:69:32:5e:34:fa:f8:23:f3:6e:6e:87:17:4c:7c: e3:e5:88:3a:3f:c0:03:17:0f:65:65:0a:92:85:64: 80:f4:f3:94:60:46:aa:45:83:bb:27:93:7f:42:94: fd:1c:5a:0e:06:ff:65:23:f2:49:ac:2e:a6:24:fa: ea:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6D:0F:45:A5:ED:0A:97:B4:31:C5:F1:C5:33:C1:17:00:D4:7B:B4 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:11:f7:70:50:33:02:a6:96:32:97:ce:fe:db:14:12:d8:a3: 0a:ed:04:fc:43:b8:c1:aa:bd:fa:2f:2e:b0:3f:57:6f:d0:90: 40:55:32:73:81:94:f8:27:89:f0:62:a8:d6:a7:fd:f0:f3:1e: c8:33:d4:b5:90:4b:c5:ed:88:7f:10:f2:b8:98:47:b3:a4:fd: 5f:e7:2c:39:b9:cf:34:c9:c7:7d:bb:ba:bc:13:4e:45:4b:e7: 57:ba:51:ca:d9:ec:77:3c:24:93:0b:eb:5d:9c:24:68:b7:82: 01:f3:99:5d:05:e3:62:1a:1c:5d:cf:d2:63:62:b7:c2:78:58: 81:ed:a9:4b:18:6f:cc:54:2d:a2:81:b5:dc:b1:46:8a:7b:f3: 70:e1:11:7c:90:b0:ee:fb:b5:f6:50:c6:b5:d0:66:6b:cc:73: d6:c7:96:fb:46:b0:08:f0:e1:78:2c:03:df:7e:c5:4d:63:90: df:43:ff:e9:61:c2:69:28:d1:e0:38:2a:b6:09:70:9b:f2:62: 0b:96:dc:4c:c8:1c:3c:83:91:0a:e5:b3:34:5c:81:41:f9:94: b6:44:d9:35:6e:e7:cc:71:26:8d:a7:79:2a:2a:88:ec:8b:4c: 5f:b1:1f:97:5b:f5:65:10:2a:27:c5:c4:14:19:fc:ad:b1:59: d2:09:5f:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwODIzMDIzMDE1WhcNMjUwODMwMDIzMDE1WjAYMRYwFAYD VQQDEw02OGE5MjdiNy02ZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32r/IGKkf6Ml2MxHfd6tlDQh9rr1u9eJTw7jonMCVmqkTthhggoQ/8FuLdMY i2wyU+Alvte4CfXG56xiBxvq+Mu+IQC+mdJnAK8wE3siDGaSRx9o95Rl9ApCdq2H qQ7nblfQgbxpu8ZxfqUTh4YXK3AIrY7Zl0I69NkQMrt6AHvi3ehrvDt7V8niIQaS 6HmbHc4h1cegDiwR5eNaCT7vPoSUzfFGDRWnhG0g+Ysl7Ab2akTKBUbC8AvUB3cf ebcsJDzjaTJeNPr4I/NubocXTHzj5Yg6P8ADFw9lZQqShWSA9POUYEaqRYO7J5N/ QpT9HFoOBv9lI/JJrC6mJPrqYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxtD0Wl 7QqXtDHF8cUzwRcA1Hu0MB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfEfdwUDMCppYyl87+2xQS2KMK7QT8Q7jBqr36Ly6wP1dv0JBAVTJz gZT4J4nwYqjWp/3w8x7IM9S1kEvF7Yh/EPK4mEezpP1f5yw5uc80ycd9u7q8E05F S+dXulHK2ex3PCSTC+tdnCRot4IB85ldBeNiGhxdz9JjYrfCeFiB7alLGG/MVC2i gbXcsUaKe/Nw4RF8kLDu+7X2UMa10GZrzHPWx5b7RrAI8OF4LAPffsVNY5DfQ//p YcJpKNHgOCq2CXCb8mILltxMyBw8g5EK5bM0XIFB+ZS2RNk1bufMcSaNp3kqKojs i0xfsR+XW/VlEConxcQUGfytsVnSCV+L -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:58 2025 by rpki-client