$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: IytGTKIBF4uVf2tp9Ii6Rs8o7oPF+npVg9xosGL/rm4= Subject key identifier: 5C:A4:8D:35:F9:98:5F:E2:11:4B:B3:38:F0:42:E0:F2:52:7C:E1:4D Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01C0 Signing time: Fri 25 Apr 2025 02:11:40 +0000 Manifest this update: Fri 25 Apr 2025 02:11:39 +0000 Manifest next update: Fri 02 May 2025 02:11:39 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: zFUda7Qh6fwJ9tXVkK0PuohJhA1EnBxRZ15GP91Wkl8=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Apr 25 02:11:39 2025 GMT Not After : May 2 02:11:39 2025 GMT Subject: CN=680aef5c-ca55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:89:20:ad:f0:d3:93:3b:62:67:b2:27:2a:04: eb:76:90:82:58:5b:cf:9a:7f:ce:28:fa:b7:38:9c: 2e:33:1f:5d:11:b1:96:bf:fb:fd:01:3a:78:69:40: 9a:e0:e5:d5:5f:5d:81:f8:8d:bc:9d:18:2f:e2:40: 1b:46:4f:6c:7e:57:74:33:ed:6b:20:80:2a:f1:7a: 09:b8:27:b6:e1:65:1c:96:19:3f:24:4a:85:1d:1f: 19:97:a6:b9:bb:60:59:0a:25:cc:bf:ed:15:36:54: ae:7b:c0:7f:01:d1:38:bb:64:7e:bb:04:6c:88:b0: eb:e1:9b:90:d7:c5:e5:52:d1:33:c9:be:66:4c:be: 28:2d:d2:90:33:f3:80:86:71:e4:d1:ef:04:f6:b7: 40:e9:ac:49:c4:da:77:ab:68:6d:27:2f:ff:60:26: b9:3a:af:20:c0:a6:de:5b:fb:b3:e7:9a:80:ca:d8: 10:30:1d:b9:1d:8c:87:1b:b7:fb:a2:4b:b6:ed:d1: 5c:fe:db:90:08:ce:e3:3d:4d:8b:9d:ad:d9:7a:ac: da:3d:d2:10:97:00:7a:7e:8e:66:5d:04:60:7a:b2: 4b:6e:48:59:de:86:72:86:d0:dc:87:7d:f5:b4:14: 63:19:39:8a:a5:58:ef:f7:17:39:82:58:7a:2a:de: 35:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A4:8D:35:F9:98:5F:E2:11:4B:B3:38:F0:42:E0:F2:52:7C:E1:4D X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:cd:dc:18:27:14:23:bb:6b:b3:10:84:6e:90:03:1c:6d:bd: ed:c8:c4:76:17:a5:f4:09:65:b8:f4:56:79:1f:63:31:7c:83: 84:6f:3b:64:c6:e6:7d:0d:5f:11:4f:ca:b0:3e:56:a0:d7:01: 82:e5:af:5f:0d:c9:40:88:24:68:10:73:b8:36:e3:35:1b:43: 8a:c0:d4:e1:4e:33:71:b1:2c:31:7c:cd:2f:96:ba:00:7d:96: f9:74:0a:a7:99:27:8d:0a:f8:65:ef:48:a8:34:d2:4d:ba:92: ac:ff:51:4c:97:2f:df:dd:d2:af:38:25:56:f7:d5:90:e3:32: df:a2:53:ff:7c:1c:fb:8b:92:b9:b4:2c:d0:be:08:77:80:dd: a2:2e:0f:6c:3f:96:81:c5:c4:93:5c:63:a0:c2:fd:dc:cb:b4: ad:c2:8b:43:0c:aa:70:ef:b4:4e:1b:7c:cb:a8:19:23:60:ca: 9c:a3:2a:a0:03:fe:4f:05:90:d6:7e:08:40:43:27:07:db:47: a6:b0:15:94:db:bc:c5:70:17:13:ac:52:1d:c6:8a:df:5f:52: a9:15:28:9c:87:aa:c9:da:95:8f:83:8e:80:9c:6c:79:5b:b4: 44:8b:1f:bc:c8:bd:df:55:53:48:e9:5a:c2:63:88:fe:3b:52: 14:5c:29:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwNDI1MDIxMTM5WhcNMjUwNTAyMDIxMTM5WjAYMRYwFAYD VQQDEw02ODBhZWY1Yy1jYTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9okgrfDTkztiZ7InKgTrdpCCWFvPmn/OKPq3OJwuMx9dEbGWv/v9ATp4aUCa 4OXVX12B+I28nRgv4kAbRk9sfld0M+1rIIAq8XoJuCe24WUclhk/JEqFHR8Zl6a5 u2BZCiXMv+0VNlSue8B/AdE4u2R+uwRsiLDr4ZuQ18XlUtEzyb5mTL4oLdKQM/OA hnHk0e8E9rdA6axJxNp3q2htJy//YCa5Oq8gwKbeW/uz55qAytgQMB25HYyHG7f7 oku27dFc/tuQCM7jPU2Lna3ZeqzaPdIQlwB6fo5mXQRgerJLbkhZ3oZyhtDch331 tBRjGTmKpVjv9xc5glh6Kt418wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFykjTX5 mF/iEUuzOPBC4PJSfOFNMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGzdwYJxQju2uzEIRukAMcbb3tyMR2F6X0CWW49FZ5H2MxfIOEbztk xuZ9DV8RT8qwPlag1wGC5a9fDclAiCRoEHO4NuM1G0OKwNThTjNxsSwxfM0vlroA fZb5dAqnmSeNCvhl70ioNNJNupKs/1FMly/f3dKvOCVW99WQ4zLfolP/fBz7i5K5 tCzQvgh3gN2iLg9sP5aBxcSTXGOgwv3cy7StwotDDKpw77ROG3zLqBkjYMqcoyqg A/5PBZDWfghAQycH20emsBWU27zFcBcTrFIdxorfX1KpFSich6rJ2pWPg46AnGx5 W7REix+8yL3fVVNI6VrCY4j+O1IUXClh -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:59 2025 by rpki-client