$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft File: BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft (raw, json) Hash identifier: 1D/v/KmJ0QPyIMoYLb49Ol9WobITr82ejYI5i71Lcqk= Subject key identifier: 98:62:7E:23:B0:3A:18:24:73:D8:39:39:3B:3E:5C:4F:BE:3B:90:B8 Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft Manifest number: 027A Signing time: Fri 17 Apr 2026 01:43:05 +0000 Manifest this update: Fri 17 Apr 2026 01:43:04 +0000 Manifest next update: Fri 24 Apr 2026 01:43:04 +0000 Files and hashes: 1: BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl (hash: oPK+VWe+Bl5NSe6Ghjkm4itLe9Kir9aucl/BIj0dyTM=) 2: A20DDFE2725911ED8CB4D763C4F9AE02.roa (hash: a5rkQCdGd6WLgCsLjH9k9RC6TMcBTGsLeQcwPsfq9Ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C, serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Apr 17 01:43:04 2026 GMT Not After : Apr 24 01:43:04 2026 GMT Subject: CN=69e19029-bb3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1c:33:08:aa:01:11:03:67:6e:8d:e7:57:4a: 1c:b8:4c:f5:87:64:95:45:7c:e6:78:25:70:d2:53: 57:f6:d2:85:2e:5b:bf:7a:b9:07:ec:9b:ab:7a:d2: ea:c8:a1:52:5e:2c:30:ff:4b:fc:a7:97:2a:35:f8: c4:07:9e:1c:fe:56:43:03:d4:77:79:4d:6d:c4:d2: 0f:ce:af:98:e9:b5:45:e5:87:ab:1f:36:c6:ec:5c: 25:26:b4:d1:dd:83:c6:c6:27:08:81:1f:ec:27:4b: 16:8e:56:a5:e2:a2:21:6d:06:70:99:d9:5b:c3:78: 28:b0:41:da:dd:33:3f:c3:ce:37:3d:c2:2c:06:60: 26:90:3f:48:cb:44:fd:62:62:85:33:16:cb:3f:02: cb:7f:71:11:e0:e4:81:15:02:da:2b:51:b5:55:bd: 06:58:c5:68:7b:a3:d2:21:a6:7a:1f:1d:67:5d:8c: 52:6f:1a:82:43:65:b8:4e:b9:0f:fb:01:2f:33:ae: 5b:4b:48:5f:28:28:04:cc:3c:7b:b0:1c:4b:57:bd: e7:bb:d0:94:09:1e:41:4e:8c:27:70:4e:f5:99:83: 52:90:19:80:8e:28:63:07:cf:8a:f3:87:37:7e:e6: 0c:60:e3:6e:f5:2c:ba:c0:fe:90:31:14:6e:2b:10: dc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:62:7E:23:B0:3A:18:24:73:D8:39:39:3B:3E:5C:4F:BE:3B:90:B8 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:1d:cd:a6:db:62:f9:32:b9:b0:fb:71:0b:98:ab:46:be:de: bb:3f:c9:a8:d3:8f:9e:99:21:dc:c2:84:42:c1:44:c5:42:04: 04:b7:d3:c7:ff:b5:d4:f7:67:f2:c0:61:ef:14:c1:de:f6:eb: 83:73:70:61:76:7e:44:e0:ec:fa:4c:ec:aa:49:c3:70:cf:46: 95:5a:03:85:ea:c1:c5:25:35:9a:be:a1:0c:93:37:5b:c8:aa: fd:24:dc:5d:57:e7:48:de:53:09:6b:76:d0:fa:c8:91:09:9b: d0:cc:6f:f3:49:88:72:16:18:70:a1:2e:9b:09:5c:dc:04:6a: 3e:7a:41:d3:e1:c4:b5:e4:2c:03:96:db:16:5b:a6:60:e0:1c: 67:23:3d:dd:ab:7b:aa:ba:d5:bf:27:26:ae:8c:11:c8:29:99: bb:da:c7:49:80:38:c8:54:2e:a5:f4:fb:a8:07:6c:3d:49:8f: 58:b5:22:bc:d0:c1:54:2f:74:e3:95:e2:93:7f:22:a3:d2:f7: 77:bb:70:d4:c4:9f:44:94:0e:43:67:e1:4b:8f:f0:02:7f:59: 29:7f:ad:e2:e5:ce:3c:4a:2f:a6:0f:71:0b:ab:84:94:eb:b1: 99:2e:5c:32:2c:ab:c1:01:b3:37:f0:94:64:ba:71:5b:53:20: 98:0f:6d:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjYwNDE3MDE0MzA0WhcNMjYwNDI0MDE0MzA0WjAYMRYwFAYD VQQDEw02OWUxOTAyOS1iYjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBwzCKoBEQNnbo3nV0ocuEz1h2SVRXzmeCVw0lNX9tKFLlu/erkH7JuretLq yKFSXiww/0v8p5cqNfjEB54c/lZDA9R3eU1txNIPzq+Y6bVF5YerHzbG7FwlJrTR 3YPGxicIgR/sJ0sWjlal4qIhbQZwmdlbw3gosEHa3TM/w843PcIsBmAmkD9Iy0T9 YmKFMxbLPwLLf3ER4OSBFQLaK1G1Vb0GWMVoe6PSIaZ6Hx1nXYxSbxqCQ2W4TrkP +wEvM65bS0hfKCgEzDx7sBxLV73nu9CUCR5BTowncE71mYNSkBmAjihjB8+K84c3 fuYMYONu9Sy6wP6QMRRuKxDchQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJhifiOw Ohgkc9g5OTs+XE++O5C4MB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Qy9GNzAwQTlFQzcyNTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdH WkN4QmFmcUZFM0xYajdfS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARB3Nptti+TK5sPtxC5irRr7euz/JqNOPnpkh3MKEQsFExUIEBLfTx/+11Pdn 8sBh7xTB3vbrg3NwYXZ+RODs+kzsqknDcM9GlVoDherBxSU1mr6hDJM3W8iq/STc XVfnSN5TCWt20PrIkQmb0Mxv80mIchYYcKEumwlc3ARqPnpB0+HEteQsA5bbFlum YOAcZyM93at7qrrVvycmrowRyCmZu9rHSYA4yFQupfT7qAdsPUmPWLUivNDBVC90 45Xik38io9L3d7tw1MSfRJQOQ2fhS4/wAn9ZKX+t4uXOPEovpg9xC6uElOuxmS5c MiyrwQGzN/CUZLpxW1MgmA9tbQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:28:20 2026 by rpki-client