$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: xakTvaFJnm/NjYa1PzHSKkYgmjLrdWshsCCKzwci8Hw= Subject key identifier: 36:D0:29:29:67:30:8D:EA:2A:48:77:7D:50:B4:60:A6:87:36:32:6C Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 01D9 Signing time: Sun 15 Jun 2025 02:02:12 +0000 Manifest this update: Sun 15 Jun 2025 02:02:11 +0000 Manifest next update: Sun 22 Jun 2025 02:02:11 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: 1Pkb7FxAMJLUb1lFACHecPTK8zwsrh6dVBDo28+Zuhk=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: YLNPavuZCOudMxVfyqmjZm9NJz/Z+dCM3fPBM36z61c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Jun 15 02:02:11 2025 GMT Not After : Jun 22 02:02:11 2025 GMT Subject: CN=684e29a4-7f58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e0:50:75:49:a4:f9:fa:37:4d:4f:3d:11:61: 36:b4:b8:0b:50:2a:c1:19:25:1e:96:26:c3:b4:d5: fd:47:5c:13:7e:36:4f:13:c3:4e:7a:cb:d6:85:0b: 37:3f:0a:78:31:21:49:c9:c5:f4:20:29:10:a9:b3: 41:ac:3d:90:34:43:72:e5:da:b5:71:70:68:c7:89: 69:81:ea:33:e1:bd:c5:cf:d7:b2:b7:b4:86:eb:23: eb:43:1e:a6:60:12:c5:bb:8e:b7:1f:87:4e:71:20: 14:e0:62:20:b9:3d:41:6d:f8:a7:9c:81:21:63:b6: 29:d6:d1:51:54:19:2f:fe:8d:fb:db:a7:a5:a3:85: 75:d1:8c:1f:c7:7f:ee:8e:b6:7e:e7:58:de:1c:ef: 3f:fe:8b:ff:5e:e6:11:5d:6e:27:ad:37:59:e2:24: 0c:2e:df:21:c7:eb:73:22:74:c3:d9:a4:5c:f7:86: b6:24:7b:e3:30:12:b0:fa:c6:c1:63:28:a6:4a:2e: 95:b4:f0:ac:e7:6c:1b:85:f3:df:0c:ff:23:fa:44: 3c:1d:dc:4f:6b:ad:60:fb:6f:3d:fc:2b:c1:ce:35: 52:88:61:1e:2c:41:78:65:51:5d:bc:41:df:64:08: 85:49:1d:26:15:eb:94:15:8d:2b:fc:65:ea:73:9b: f4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D0:29:29:67:30:8D:EA:2A:48:77:7D:50:B4:60:A6:87:36:32:6C X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:9c:d5:e0:42:67:13:2b:f5:c0:44:f4:a9:00:f7:c5:f7:15: d6:eb:b1:ac:20:ab:01:de:be:f3:44:fc:ef:db:53:1f:83:1e: 35:0e:6a:3e:04:92:fb:f7:81:69:47:ac:0c:89:7c:2c:ce:c3: c1:0c:93:fc:b8:e9:5c:68:b9:7a:c6:66:1d:6e:a7:7d:69:bc: 3c:d0:12:87:48:94:50:e2:51:74:fe:45:84:52:1f:ea:a8:f9: e4:8b:ee:a0:2a:f5:57:d6:46:a3:3a:e0:fe:94:cc:1e:ce:a7: da:13:62:5a:db:a4:34:ed:43:f1:a0:1d:d4:bc:c6:23:84:37: 8a:34:c5:20:c6:4a:b1:c2:6c:6d:b8:b0:7a:5b:e7:51:c1:51: f3:8d:7f:15:a7:40:8c:d0:11:21:6a:03:dd:cf:29:ed:6e:c9: 66:6d:a5:12:4b:6c:d0:0d:8d:7f:f9:88:3b:6c:22:e7:cf:96: 79:d5:01:1f:1a:d9:69:7e:0c:1d:e5:a3:b1:44:02:75:a9:50: 30:ba:3e:05:21:84:df:aa:b9:e1:6d:3b:d5:f2:78:68:22:00: 2b:28:2f:20:b4:96:24:27:26:bb:7f:27:7c:44:c6:9b:26:b4: 79:9b:98:18:ab:53:e1:3f:1c:61:43:8f:e5:3c:45:97:7a:2e: 93:94:da:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjUwNjE1MDIwMjExWhcNMjUwNjIyMDIwMjExWjAYMRYwFAYD VQQDEw02ODRlMjlhNC03ZjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+BQdUmk+fo3TU89EWE2tLgLUCrBGSUelibDtNX9R1wTfjZPE8NOesvWhQs3 Pwp4MSFJycX0ICkQqbNBrD2QNENy5dq1cXBox4lpgeoz4b3Fz9eyt7SG6yPrQx6m YBLFu463H4dOcSAU4GIguT1BbfinnIEhY7Yp1tFRVBkv/o3726elo4V10Ywfx3/u jrZ+51jeHO8//ov/XuYRXW4nrTdZ4iQMLt8hx+tzInTD2aRc94a2JHvjMBKw+sbB YyimSi6VtPCs52wbhfPfDP8j+kQ8HdxPa61g+289/CvBzjVSiGEeLEF4ZVFdvEHf ZAiFSR0mFeuUFY0r/GXqc5v0GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbQKSln MI3qKkh3fVC0YKaHNjJsMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUnNXgQmcTK/XARPSpAPfF9xXW67GsIKsB3r7zRPzv21Mfgx41Dmo+ BJL794FpR6wMiXwszsPBDJP8uOlcaLl6xmYdbqd9abw80BKHSJRQ4lF0/kWEUh/q qPnki+6gKvVX1kajOuD+lMwezqfaE2Ja26Q07UPxoB3UvMYjhDeKNMUgxkqxwmxt uLB6W+dRwVHzjX8Vp0CM0BEhagPdzyntbslmbaUSS2zQDY1/+Yg7bCLnz5Z51QEf Gtlpfgwd5aOxRAJ1qVAwuj4FIYTfqrnhbTvV8nhoIgArKC8gtJYkJya7fyd8RMab JrR5m5gYq1PhPxxhQ4/lPEWXei6TlNqY -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:18 2025 by rpki-client