$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: KoJoyA0eSm12yOPc82o7n3VqsASXF5NEf3qYK4ZtwRA= Subject key identifier: 7B:53:D8:27:6A:59:9B:54:32:97:4B:CE:5A:DF:DC:5F:B8:23:25:22 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 0101 Signing time: Thu 07 Aug 2025 05:37:42 +0000 Manifest this update: Thu 07 Aug 2025 05:37:42 +0000 Manifest next update: Thu 14 Aug 2025 05:37:42 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: gQtZKJp170zJ2OpDP6Rmh6t0i7tbWzZLk9SpA3EQvvU=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Aug 7 05:37:42 2025 GMT Not After : Aug 14 05:37:42 2025 GMT Subject: CN=68943ba6-cb73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:aa:48:2a:5d:bb:08:b3:89:7b:33:51:38:e1: 80:f3:2f:36:0c:52:3a:7e:b9:50:c7:30:b5:c2:b9: f8:9c:a2:03:03:81:75:61:d7:18:b3:21:69:9a:22: a4:30:ba:36:30:36:4f:da:c1:2e:96:4f:ff:f0:31: a8:85:2e:7c:22:a9:25:ff:7b:d2:5d:69:31:63:a7: 5d:84:6f:ae:f0:14:0a:83:63:89:fd:19:eb:fe:c9: cb:44:0d:62:dd:14:cc:38:d5:01:ac:89:30:22:a8: 75:ed:5a:55:54:27:07:4d:2a:f3:9e:a0:7d:3d:21: 01:84:55:8e:9f:6d:94:f4:3b:7d:1c:58:ce:15:c4: 6e:c1:43:a6:b4:8f:33:7b:b6:f0:c3:ec:07:ee:81: a4:e0:23:82:a8:e1:05:35:ae:07:16:fc:73:12:49: 58:ac:53:d2:71:d8:8e:5c:96:a1:fa:e7:de:e0:41: 66:8e:f8:a2:37:c1:d2:80:47:66:d0:d3:95:d8:79: 90:56:4b:bd:d7:88:b4:d7:5d:8e:cc:5c:a8:cb:b3: b9:ab:f9:7a:ad:34:cd:50:63:48:54:49:01:b2:d5: 7b:c8:21:52:42:cd:2e:bb:4a:55:dd:12:93:75:bb: 57:33:06:bd:51:8b:ce:86:7b:31:bc:17:8e:f9:61: 24:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:53:D8:27:6A:59:9B:54:32:97:4B:CE:5A:DF:DC:5F:B8:23:25:22 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:b9:0e:46:a4:6f:94:38:4b:97:b8:43:3d:8b:1d:8d:5a:56: 8f:78:48:56:f8:32:49:b8:90:68:04:96:99:97:57:85:a7:e3: 49:d0:01:e5:0b:57:0b:e9:19:b4:d0:78:60:84:9e:5e:0b:43: 1e:2f:00:54:d4:52:f9:48:55:b7:8c:f7:05:ba:bf:e9:16:e2: 09:d1:b1:c5:d6:b7:d2:d1:00:1b:73:cf:1f:5e:9a:26:3f:58: fe:72:b1:77:d3:86:28:ef:00:0d:7c:41:ff:39:59:b9:b2:fe: da:38:44:bc:3d:cf:5e:61:03:93:d2:1a:25:ff:4b:3b:fd:ec: 4d:2b:58:be:dc:06:34:d7:a0:1b:e2:bf:92:2b:62:67:be:f8: 31:9a:65:83:87:cd:b2:d9:95:f4:d1:49:58:17:3b:d8:2d:79: cc:d4:e8:05:8f:c7:ee:11:58:a8:b3:2f:4b:3e:30:af:4c:7a: 98:2b:17:94:f6:0f:a5:3a:21:b2:8d:c1:ad:fa:b6:b9:81:42: 31:dd:77:13:b4:8c:68:16:e2:dc:c9:77:0c:12:6e:8b:29:99: a9:bb:03:07:55:77:42:47:03:82:2e:f4:b0:86:d7:a7:ec:06: 15:7c:17:5c:89:93:ae:61:28:a0:97:67:f8:e0:f8:b8:d3:7b: f5:eb:66:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUwODA3MDUzNzQyWhcNMjUwODE0MDUzNzQyWjAYMRYwFAYD VQQDEw02ODk0M2JhNi1jYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqpIKl27CLOJezNROOGA8y82DFI6frlQxzC1wrn4nKIDA4F1YdcYsyFpmiKk MLo2MDZP2sEulk//8DGohS58Iqkl/3vSXWkxY6ddhG+u8BQKg2OJ/Rnr/snLRA1i 3RTMONUBrIkwIqh17VpVVCcHTSrznqB9PSEBhFWOn22U9Dt9HFjOFcRuwUOmtI8z e7bww+wH7oGk4COCqOEFNa4HFvxzEklYrFPScdiOXJah+ufe4EFmjviiN8HSgEdm 0NOV2HmQVku914i0112OzFyoy7O5q/l6rTTNUGNIVEkBstV7yCFSQs0uu0pV3RKT dbtXMwa9UYvOhnsxvBeO+WEk9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtT2Cdq WZtUMpdLzlrf3F+4IyUiMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9uQ5GpG+UOEuXuEM9ix2NWlaPeEhW+DJJuJBoBJaZl1eFp+NJ0AHl C1cL6Rm00HhghJ5eC0MeLwBU1FL5SFW3jPcFur/pFuIJ0bHF1rfS0QAbc88fXpom P1j+crF304Yo7wANfEH/OVm5sv7aOES8Pc9eYQOT0hol/0s7/exNK1i+3AY016Ab 4r+SK2JnvvgxmmWDh82y2ZX00UlYFzvYLXnM1OgFj8fuEViosy9LPjCvTHqYKxeU 9g+lOiGyjcGt+ra5gUIx3XcTtIxoFuLcyXcMEm6LKZmpuwMHVXdCRwOCLvSwhten 7AYVfBdciZOuYSigl2f44Pi403v162ZR -----END CERTIFICATE-----Generated at Sat Aug 9 05:46:16 2025 by rpki-client