$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: Nmtfj/JWExt0tYWDVQNzYksXO8DVVpEDdbGip6Wwbu0= Subject key identifier: A6:B1:79:24:E0:58:86:06:5E:B2:3B:0C:D6:6F:34:63:F3:56:28:1D Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 0127 Signing time: Thu 23 Oct 2025 06:34:31 +0000 Manifest this update: Thu 23 Oct 2025 06:34:30 +0000 Manifest next update: Thu 30 Oct 2025 06:34:30 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: ZUgUcGHb4DpaGbTtdqYPiGSYlkphpZeQTBborfpnUaQ=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Oct 23 06:34:30 2025 GMT Not After : Oct 30 06:34:30 2025 GMT Subject: CN=68f9cc77-e145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bb:a8:da:2c:12:90:c1:8a:04:59:90:41:30: 5d:3f:37:9c:47:76:1e:45:d7:26:05:74:b3:de:62: 6c:00:45:4f:b6:f2:58:10:da:0b:b7:8b:ec:47:6b: 53:46:a6:5d:b6:28:15:0c:cb:84:c0:75:46:c3:a6: 4e:5a:42:e4:81:45:fd:98:48:f8:e6:04:19:37:84: 7c:95:b7:0b:87:75:d4:46:cd:b7:d9:cf:17:ec:50: 28:e4:8c:d9:0a:1d:07:57:3e:d7:c2:07:28:0d:48: 79:42:50:27:7e:df:a4:6b:03:c3:01:ec:02:e1:9a: 94:c7:f1:4f:ca:a6:a4:1f:f9:38:d9:e8:8c:d5:92: a6:c8:a0:86:76:c3:70:79:d4:25:fb:ee:d8:c9:0c: 68:9e:94:95:18:5b:dd:13:9f:ce:08:9e:e7:a4:08: c5:16:aa:0a:54:fa:c9:39:83:6c:a7:30:48:03:4a: 72:8f:7d:20:96:31:42:7c:f7:86:13:e7:d5:80:33: fa:13:21:bb:75:77:51:5e:dd:1d:45:44:3d:35:d4: fd:b4:e8:d3:fb:c9:f1:77:22:55:9a:6c:84:4f:be: 96:21:1b:38:48:af:43:47:40:d4:f1:3c:bc:cf:c1: bd:14:d2:42:65:0a:65:f9:b1:75:c7:8b:9c:d8:84: ae:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B1:79:24:E0:58:86:06:5E:B2:3B:0C:D6:6F:34:63:F3:56:28:1D X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ff:0d:a0:aa:cd:93:93:c0:f9:a0:ff:36:80:dc:32:57:2f: c9:f2:77:24:d0:49:49:ce:f6:57:c6:6c:73:db:0f:02:eb:72: 49:58:ca:d4:37:53:84:6c:32:f2:21:de:f6:a7:20:de:6a:c6: 14:d0:c7:25:e2:13:49:e7:85:c1:af:02:d1:a8:39:0e:95:7f: 2f:40:94:ae:94:39:13:50:ae:2d:eb:d7:e4:ae:be:f1:f5:f8: b6:3c:61:a2:86:e5:5b:ab:c3:88:6c:c0:bd:70:e7:eb:32:b0: 6c:c9:95:a8:05:5f:08:e8:a8:11:29:22:ba:c4:ff:6e:6f:ed: 1b:40:8b:df:ef:1f:4b:09:3a:d8:0f:d8:4e:a9:aa:4a:20:26: a7:ea:48:48:9b:31:2e:75:4e:b4:0e:4d:6e:2f:df:7b:8a:ad: 89:36:ae:33:c9:1e:82:a7:f2:6a:d9:9f:f8:e0:07:2b:b0:03: c2:68:e9:d6:4e:74:06:e8:34:75:63:1a:af:f5:cc:b7:1a:86: 48:78:af:31:f9:cf:04:9c:48:47:e7:76:9c:d1:b9:9a:77:ab: 28:30:af:ca:39:7d:a9:42:cc:27:d8:af:20:f5:19:85:97:43: a1:2e:09:90:c6:59:6a:ed:3d:6a:b8:7c:ab:3d:f7:e7:a3:c9: 5a:07:c9:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUxMDIzMDYzNDMwWhcNMjUxMDMwMDYzNDMwWjAYMRYwFAYD VQQDEw02OGY5Y2M3Ny1lMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmruo2iwSkMGKBFmQQTBdPzecR3YeRdcmBXSz3mJsAEVPtvJYENoLt4vsR2tT RqZdtigVDMuEwHVGw6ZOWkLkgUX9mEj45gQZN4R8lbcLh3XURs232c8X7FAo5IzZ Ch0HVz7XwgcoDUh5QlAnft+kawPDAewC4ZqUx/FPyqakH/k42eiM1ZKmyKCGdsNw edQl++7YyQxonpSVGFvdE5/OCJ7npAjFFqoKVPrJOYNspzBIA0pyj30gljFCfPeG E+fVgDP6EyG7dXdRXt0dRUQ9NdT9tOjT+8nxdyJVmmyET76WIRs4SK9DR0DU8Ty8 z8G9FNJCZQpl+bF1x4uc2ISuWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaxeSTg WIYGXrI7DNZvNGPzVigdMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL/w2gqs2Tk8D5oP82gNwyVy/J8nck0ElJzvZXxmxz2w8C63JJWMrU N1OEbDLyId72pyDeasYU0Mcl4hNJ54XBrwLRqDkOlX8vQJSulDkTUK4t69fkrr7x 9fi2PGGihuVbq8OIbMC9cOfrMrBsyZWoBV8I6KgRKSK6xP9ub+0bQIvf7x9LCTrY D9hOqapKICan6khImzEudU60Dk1uL997iq2JNq4zyR6Cp/Jq2Z/44AcrsAPCaOnW TnQG6DR1Yxqv9cy3GoZIeK8x+c8EnEhH53ac0bmad6soMK/KOX2pQswn2K8g9RmF l0OhLgmQxllq7T1quHyrPffno8laB8mQ -----END CERTIFICATE-----Generated at Sat Oct 25 06:42:08 2025 by rpki-client