Alternatively this should work with the builder too
(http.request.uri.path eq "/" and http.request.uri.query matches "^[a-zA-Z0-9]{8}=[a-zA-Z0-9]{8}$")
*) The problem is the builder does not take into account that the backslash could actually be escaping a character but always believes it actually needs to escape the backslash itself, so instead of an escaped/literal question mark you end up with an optional backslash character.