$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: 9I2ObtcRXsJVndybgnWm59iWn6oo9Dysdf2yFi5e6Jc= Subject key identifier: 94:B0:26:54:22:28:A0:D7:90:1C:9B:31:7A:15:12:06:DA:EB:FC:5F Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 0112 Signing time: Tue 09 Sep 2025 05:01:19 +0000 Manifest this update: Tue 09 Sep 2025 05:01:19 +0000 Manifest next update: Tue 16 Sep 2025 05:01:19 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: LaTMyI6KP90ODp4tkbqtTJ3lO4C2ntnf+tZB592g/to=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Sep 9 05:01:19 2025 GMT Not After : Sep 16 05:01:19 2025 GMT Subject: CN=68bfb49f-a85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f4:6c:9f:21:cd:ba:ca:97:1a:ec:17:19:fe: 53:7f:3c:98:38:b0:4a:ee:df:93:5e:8c:cf:55:b9: 0c:01:0b:43:47:5e:39:12:08:3e:74:39:fb:53:7b: bf:b1:5d:19:fe:6a:9e:09:e7:a3:1d:fc:a7:07:3c: 75:5b:0f:9e:3d:18:13:d5:b3:47:c6:05:6c:9a:3e: 33:53:01:ab:5b:b0:c3:ad:d6:21:7c:24:01:f3:40: d8:95:e5:64:92:c6:e9:c8:39:54:a1:57:95:df:a9: 6c:ea:55:c1:9f:a0:a7:fc:03:08:b8:60:66:bd:0d: a4:20:22:0d:43:cc:98:82:80:39:f4:91:41:3e:48: ec:81:42:aa:9c:99:48:43:78:95:24:29:77:05:fa: e9:ee:70:c3:05:59:ac:d7:13:65:36:82:16:18:ea: 12:b8:be:98:49:fd:14:ab:ce:8a:66:2b:c1:41:12: e0:e3:48:b9:a5:19:0c:c2:aa:8c:e1:8c:5e:46:8d: da:f8:6f:66:01:1d:be:37:eb:29:fb:48:9d:23:2c: 06:ae:3c:73:b3:54:d4:5d:08:c4:0e:40:87:51:b9: 4f:57:9e:63:a3:63:c8:91:07:22:ee:76:c9:a9:92: a0:8b:34:94:44:e1:80:9e:7a:21:01:91:a9:5c:1e: 80:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B0:26:54:22:28:A0:D7:90:1C:9B:31:7A:15:12:06:DA:EB:FC:5F X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:63:f8:24:a6:d0:55:27:75:4b:97:e0:ff:13:5e:92:ef:3f: 2e:dc:5b:cb:63:0c:6f:5b:a5:dc:68:a6:7f:c4:c7:c6:8a:29: b4:72:49:b6:23:8d:52:a1:ba:11:bf:90:fb:67:e2:19:a5:c4: d5:82:ca:d5:47:7f:f1:2a:c2:0b:f4:a3:0b:2a:6f:d9:f0:79: b2:eb:de:70:67:b2:e8:22:d8:18:8e:19:43:6e:76:d9:69:9e: c4:cd:9b:04:c0:20:64:2b:40:cb:72:15:ba:c2:71:c1:79:0e: 3e:21:6d:d8:52:77:bd:99:90:d3:05:e0:50:57:71:d9:1e:15: d2:c1:d9:6d:64:ac:8b:28:48:af:be:e2:b5:3c:d5:eb:68:4f: be:ef:b9:5d:0b:8e:ff:d3:c7:ba:58:00:72:ce:56:8e:b5:f6: 79:38:e7:a7:e5:c3:9f:68:ec:12:1f:15:b3:6d:0d:24:13:1c: 81:92:00:a0:83:0a:88:74:c1:9b:c0:76:56:5a:3f:a1:0b:d2: 1a:12:f0:d5:14:50:4e:cc:2a:8a:ac:ac:10:12:40:ce:64:e6: be:14:ff:74:a0:d8:fa:8f:01:93:7f:e3:5c:42:ee:2c:59:98: 08:02:16:f9:6b:95:71:c2:cb:c3:66:6b:9c:2c:fa:61:76:a8: a3:5d:2c:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUwOTA5MDUwMTE5WhcNMjUwOTE2MDUwMTE5WjAYMRYwFAYD VQQDEw02OGJmYjQ5Zi1hODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvRsnyHNusqXGuwXGf5TfzyYOLBK7t+TXozPVbkMAQtDR145Egg+dDn7U3u/ sV0Z/mqeCeejHfynBzx1Ww+ePRgT1bNHxgVsmj4zUwGrW7DDrdYhfCQB80DYleVk ksbpyDlUoVeV36ls6lXBn6Cn/AMIuGBmvQ2kICINQ8yYgoA59JFBPkjsgUKqnJlI Q3iVJCl3Bfrp7nDDBVms1xNlNoIWGOoSuL6YSf0Uq86KZivBQRLg40i5pRkMwqqM 4YxeRo3a+G9mAR2+N+sp+0idIywGrjxzs1TUXQjEDkCHUblPV55jo2PIkQci7nbJ qZKgizSUROGAnnohAZGpXB6AEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSwJlQi KKDXkBybMXoVEgba6/xfMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9Y/gkptBVJ3VLl+D/E16S7z8u3FvLYwxvW6XcaKZ/xMfGiim0ckm2 I41SoboRv5D7Z+IZpcTVgsrVR3/xKsIL9KMLKm/Z8Hmy695wZ7LoItgYjhlDbnbZ aZ7EzZsEwCBkK0DLchW6wnHBeQ4+IW3YUne9mZDTBeBQV3HZHhXSwdltZKyLKEiv vuK1PNXraE++77ldC47/08e6WAByzlaOtfZ5OOen5cOfaOwSHxWzbQ0kExyBkgCg gwqIdMGbwHZWWj+hC9IaEvDVFFBOzCqKrKwQEkDOZOa+FP90oNj6jwGTf+NcQu4s WZgIAhb5a5VxwsvDZmucLPphdqijXSxZ -----END CERTIFICATE-----Generated at Tue Sep 9 07:50:26 2025 by rpki-client