$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: Z9nAdPbTPf5T5C4G2CuOgjEF8eQvdiAU66Fpw2ofGpU= Subject key identifier: A8:C2:E5:1F:9B:94:0A:FA:59:1E:1C:95:CA:0C:72:FA:9A:51:16:E6 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: E0 Signing time: Tue 03 Jun 2025 05:14:14 +0000 Manifest this update: Tue 03 Jun 2025 05:14:14 +0000 Manifest next update: Tue 10 Jun 2025 05:14:14 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: H1FykxpXdhQD/8zRPuyXwU6NxD6rievJZX5vie6YgVU=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Jun 3 05:14:14 2025 GMT Not After : Jun 10 05:14:14 2025 GMT Subject: CN=683e84a6-8888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:a1:57:14:ae:fe:7e:42:9f:ba:9f:5f:83: 62:95:3d:1e:48:3f:11:2a:aa:b9:50:ea:b6:47:a9: 76:83:1c:84:1b:10:d9:5f:37:8a:46:5f:5e:f7:02: 85:f5:c6:6b:95:04:4e:06:ff:bf:d0:91:2e:3a:43: e2:d1:2a:1a:92:09:ad:4a:15:86:28:35:88:93:82: bd:87:db:8d:dd:f2:ab:d2:5b:37:1b:ec:f3:8f:ef: 7f:37:2e:ab:f0:22:bf:34:51:87:01:6f:6c:11:54: d9:f3:be:c7:9a:6c:6c:e6:d9:57:c5:40:09:0c:a3: 08:ae:d3:fa:a5:30:67:a6:97:61:85:50:a4:11:c7: f5:bd:b6:aa:43:41:cd:1f:5b:29:a7:b7:1f:b8:93: d6:57:02:c9:a8:55:1b:47:6e:4a:60:08:0d:47:8d: ed:75:64:b8:9f:8a:05:46:94:bf:eb:2d:45:93:d0: b7:39:0d:3f:5b:34:f5:98:ab:d8:ab:a9:f8:3d:60: c9:08:06:da:45:94:53:09:8d:b2:c9:54:c5:7b:21: be:b6:b6:71:2e:90:51:1a:af:db:23:a6:62:ee:79: 5d:f7:26:48:dc:e0:75:42:03:fc:51:56:20:79:65: 8b:4b:9a:6d:40:63:53:7e:e4:d1:14:25:61:49:81: 83:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C2:E5:1F:9B:94:0A:FA:59:1E:1C:95:CA:0C:72:FA:9A:51:16:E6 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:f6:af:51:cd:fb:51:78:8e:f2:f6:c3:91:03:b8:f0:e3:73: 18:23:a2:48:ce:4f:35:26:f3:03:8b:15:61:12:e6:0a:48:60: dd:ee:e5:03:12:df:39:f5:9a:2c:c8:30:a2:4e:1b:4f:97:e1: ac:59:06:eb:aa:dd:a4:3e:83:77:32:60:49:e1:3c:b2:5a:94: 5e:1a:38:7f:f3:07:40:0c:e4:46:a9:74:9c:53:10:82:37:ed: f3:3b:1d:a0:6c:c6:d4:63:ed:01:6a:fd:9c:68:ae:02:f3:83: 79:ba:c2:1f:0f:a7:b4:ba:81:0a:70:e6:cb:9a:e9:4f:6f:68: 8d:db:90:ad:d5:c7:41:e8:0c:0d:e6:7b:85:c6:bd:40:15:d8: 40:fe:66:aa:c2:4a:ba:ae:28:e9:93:23:f3:bc:64:6f:cf:51: 0c:15:a8:20:bd:3a:7b:93:c3:5a:2a:a2:cd:67:ca:b6:ba:92: 15:17:b2:45:e3:cf:b4:7f:52:d5:cc:59:4d:4a:f2:20:ff:dd: 1c:30:b8:d8:e5:57:dc:ad:83:69:39:4e:0f:7b:9b:b5:18:a9: c5:60:3b:a9:8b:1d:9a:72:6e:5a:1a:40:00:32:9c:7d:e9:38: 04:5b:95:3f:54:7d:06:78:09:65:40:43:aa:12:2f:92:5c:84: 32:65:fa:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUwNjAzMDUxNDE0WhcNMjUwNjEwMDUxNDE0WjAYMRYwFAYD VQQDEw02ODNlODRhNi04ODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtihVxSu/n5Cn7qfX4NilT0eSD8RKqq5UOq2R6l2gxyEGxDZXzeKRl9e9wKF 9cZrlQROBv+/0JEuOkPi0SoakgmtShWGKDWIk4K9h9uN3fKr0ls3G+zzj+9/Ny6r 8CK/NFGHAW9sEVTZ877Hmmxs5tlXxUAJDKMIrtP6pTBnppdhhVCkEcf1vbaqQ0HN H1spp7cfuJPWVwLJqFUbR25KYAgNR43tdWS4n4oFRpS/6y1Fk9C3OQ0/WzT1mKvY q6n4PWDJCAbaRZRTCY2yyVTFeyG+trZxLpBRGq/bI6Zi7nld9yZI3OB1QgP8UVYg eWWLS5ptQGNTfuTRFCVhSYGD8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjC5R+b lAr6WR4clcoMcvqaURbmMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl9q9RzftReI7y9sORA7jw43MYI6JIzk81JvMDixVhEuYKSGDd7uUD Et859ZosyDCiThtPl+GsWQbrqt2kPoN3MmBJ4TyyWpReGjh/8wdADORGqXScUxCC N+3zOx2gbMbUY+0Bav2caK4C84N5usIfD6e0uoEKcObLmulPb2iN25Ct1cdB6AwN 5nuFxr1AFdhA/maqwkq6rijpkyPzvGRvz1EMFaggvTp7k8NaKqLNZ8q2upIVF7JF 48+0f1LVzFlNSvIg/90cMLjY5VfcrYNpOU4Pe5u1GKnFYDupix2acm5aGkAAMpx9 6TgEW5U/VH0GeAllQEOqEi+SXIQyZfpb -----END CERTIFICATE-----Generated at Tue Jun 3 23:54:13 2025 by rpki-client