$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: PkDBEyHtQkeme/hi72hHjNvXtSFLT6EvT9qnp78Y0HE= Subject key identifier: 29:F8:5C:8E:B8:8F:8A:C4:B5:2C:26:0B:B7:8F:12:F4:83:0B:B2:66 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 0185 Signing time: Wed 15 Apr 2026 04:11:24 +0000 Manifest this update: Wed 15 Apr 2026 04:11:23 +0000 Manifest next update: Wed 22 Apr 2026 04:11:23 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: nXUXdk427q80RlH2lG264wd/2zOhEmGYs33dwbCOmGw=) 2: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: tehmXdSXWDxQ3HwVAZbpjn22MNGQBxQcNE9cFpMit6U=) 3: 56C9937C28C911F086331776C4F9AE02.roa (hash: JxwdiP8Pc7CiVQDzrJXTJybxsA7vxegE08o3FUjWbHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 04:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Apr 15 04:11:23 2026 GMT Not After : Apr 22 04:11:23 2026 GMT Subject: CN=69df0fec-6b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:69:26:b0:a9:1e:d4:ee:59:1a:52:58:cd:dc: 63:e5:59:d1:b5:35:41:e0:ce:ce:81:19:b0:13:f4: 92:da:47:70:1f:a0:66:9f:18:3c:08:97:51:04:0a: 13:91:2f:1c:76:cf:f8:3d:85:82:fb:91:50:2a:2d: c7:e0:80:82:9e:8c:bf:cb:73:cf:6e:84:4a:56:f4: 1d:2e:65:40:b2:8a:6b:66:0b:b5:f5:7d:55:52:8c: 0b:66:40:e8:aa:01:66:3e:d5:4a:76:2c:49:db:e3: 6c:34:b6:fc:89:ba:9f:b6:da:a6:fc:21:68:43:a2: b4:ef:76:69:c8:ab:b5:78:f3:40:c5:79:ac:84:68: af:0a:03:a6:9c:59:0f:3f:88:18:9a:ad:9d:b6:46: e9:94:f8:49:e3:65:f2:00:9f:e0:e5:d8:a0:3d:8a: 32:0c:27:40:45:50:3b:4b:4e:a2:d2:3c:1d:73:45: c7:71:6c:f2:c2:e7:65:91:d3:61:e0:06:82:8e:53: 9e:32:6c:e0:cf:d9:d2:6e:9a:f5:6a:cf:fb:b6:52: dd:5e:fb:5c:9b:51:36:55:4d:a6:ac:f6:a6:fd:91: ee:fc:03:b7:14:6e:b6:8a:bb:78:bb:79:eb:3f:39: 1a:c3:77:ad:b2:d6:72:14:b8:da:9d:14:34:2f:33: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F8:5C:8E:B8:8F:8A:C4:B5:2C:26:0B:B7:8F:12:F4:83:0B:B2:66 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:6d:73:78:4d:84:41:74:70:06:32:d5:d6:66:47:25:e1:83: 6c:bc:65:23:7e:6f:f1:9f:13:95:8a:5d:46:8d:19:97:7f:b8: 22:9b:79:ee:62:3d:56:16:26:76:09:d5:85:56:07:8e:11:dc: f4:8e:cb:4b:9e:c2:ab:a6:80:15:0b:e6:7f:07:a4:9f:4e:b8: 94:43:80:a7:bc:c6:2f:3d:2c:be:7d:d2:b2:ef:93:62:f1:c7: a6:16:37:f6:2c:ab:23:7f:6a:a6:e0:b6:2f:8b:be:c3:81:f0: e0:0a:7f:87:14:db:69:5f:09:f2:ed:4b:95:37:b9:c9:98:3f: 17:f3:e5:5c:2d:b9:c3:ea:8a:b1:89:59:69:42:fa:2c:36:e2: ae:98:6e:e8:7e:01:8e:1c:fb:ce:3a:da:8e:29:50:ec:28:99: 0c:cf:a1:39:19:f4:0d:b8:ed:c6:5d:f6:92:e1:aa:85:f8:5f: a9:90:d1:86:d9:60:49:d4:71:bb:72:fa:df:d9:bc:df:54:cc: 35:4c:9a:20:f0:eb:94:fc:ee:48:42:3b:aa:c8:ad:15:57:ef: 54:8f:d7:1d:3f:5d:ad:6d:ed:00:ba:0f:2d:f5:48:41:b4:e2: ea:5b:a9:4c:e6:cf:ed:ea:42:51:d6:bd:7e:17:cf:4f:d3:f6: 38:aa:b7:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjYwNDE1MDQxMTIzWhcNMjYwNDIyMDQxMTIzWjAYMRYwFAYD VQQDEw02OWRmMGZlYy02YjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmkmsKke1O5ZGlJYzdxj5VnRtTVB4M7OgRmwE/SS2kdwH6Bmnxg8CJdRBAoT kS8cds/4PYWC+5FQKi3H4ICCnoy/y3PPboRKVvQdLmVAsoprZgu19X1VUowLZkDo qgFmPtVKdixJ2+NsNLb8ibqfttqm/CFoQ6K073ZpyKu1ePNAxXmshGivCgOmnFkP P4gYmq2dtkbplPhJ42XyAJ/g5digPYoyDCdARVA7S06i0jwdc0XHcWzywudlkdNh 4AaCjlOeMmzgz9nSbpr1as/7tlLdXvtcm1E2VU2mrPam/ZHu/AO3FG62irt4u3nr Pzkaw3etstZyFLjanRQ0LzOKQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCn4XI64 j4rEtSwmC7ePEvSDC7JmMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmW1zeE2EQXRwBjLV1mZHJeGDbLxlI35v8Z8TlYpdRo0Zl3+4Ipt57mI9VhYm dgnVhVYHjhHc9I7LS57Cq6aAFQvmfwekn064lEOAp7zGLz0svn3Ssu+TYvHHphY3 9iyrI39qpuC2L4u+w4Hw4Ap/hxTbaV8J8u1LlTe5yZg/F/PlXC25w+qKsYlZaUL6 LDbirphu6H4Bjhz7zjrajilQ7CiZDM+hORn0Dbjtxl32kuGqhfhfqZDRhtlgSdRx u3L639m831TMNUyaIPDrlPzuSEI7qsitFVfvVI/XHT9drW3tALoPLfVIQbTi6lup TObP7epCUda9fhfPT9P2OKq3Ew== -----END CERTIFICATE-----Generated at Fri Apr 17 05:30:26 2026 by rpki-client