$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: lyWK0sUD+RoEMAVcnspH8OfXNhh+4wsNEs1vcZnL1Iw= Subject key identifier: C4:1E:44:D1:6B:87:3E:66:B7:1D:85:EF:5B:DF:9A:0B:4B:40:6B:E8 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 012D Signing time: Mon 03 Nov 2025 04:37:03 +0000 Manifest this update: Mon 03 Nov 2025 04:37:02 +0000 Manifest next update: Mon 10 Nov 2025 04:37:02 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: Zbe+fLyiRnIRwHA5AjRQ0vBwoyLrzAUdrjJPaa0r1eM=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Nov 3 04:37:02 2025 GMT Not After : Nov 10 04:37:02 2025 GMT Subject: CN=6908316f-59aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f4:d0:e7:f1:d1:51:75:f5:d8:44:36:4d:56: 0e:82:23:4f:2f:f4:65:25:93:da:17:04:5e:0d:49: 12:61:6a:a5:88:dc:09:2c:02:ec:dc:36:fd:94:85: 2b:b7:de:3d:b3:dd:af:33:25:7a:fb:71:fc:b2:8e: fb:02:56:c4:77:62:dd:16:fb:e1:ab:2a:7c:d4:6f: 73:48:e4:6e:10:3f:32:0c:2d:bf:56:da:9d:57:46: d1:e4:3e:72:fe:fe:59:c0:46:f1:ae:8b:06:77:d8: cb:b1:6b:20:e2:b6:f4:28:ec:27:24:70:0a:84:37: 72:b8:11:06:4e:ed:28:34:40:4d:85:72:98:33:3b: 6e:63:25:23:b7:88:81:f1:3f:91:3a:70:da:06:23: e4:38:f1:79:a8:39:4a:22:58:23:6a:4a:f6:2e:02: e6:0b:fa:ff:6b:6f:00:d8:ce:3c:b8:bc:6f:64:57: 37:70:14:af:67:75:ea:38:5e:9b:b4:ba:73:bc:c9: 09:5c:98:b8:57:35:2d:4c:6b:0f:3b:b2:37:2e:be: 03:86:5d:bb:a5:98:a6:45:ef:08:99:37:f7:dd:76: d5:2a:88:9a:fb:57:30:a7:19:ef:61:d9:d5:05:61: dc:1b:d8:a2:eb:a1:4f:4b:1d:d6:56:79:d4:31:93: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:1E:44:D1:6B:87:3E:66:B7:1D:85:EF:5B:DF:9A:0B:4B:40:6B:E8 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:77:f3:e5:2c:40:30:8d:84:2e:62:81:8c:30:d1:74:ae:3f: 7b:f6:19:8e:4a:4b:f7:f6:62:7e:cf:84:b4:3d:ad:e3:b3:9e: 92:8c:0b:6e:cd:5d:f3:ce:6f:f7:7e:25:51:bb:71:f0:8c:f4: 67:5d:2d:6c:cb:a9:79:a9:7b:50:59:76:80:4c:29:be:e5:ae: 30:04:cd:d4:e4:62:22:c6:e0:16:ed:d0:cb:95:88:74:2b:5c: 05:f1:24:26:da:13:bf:ee:69:1f:35:74:5f:d2:69:44:ce:58: 45:0b:a3:94:26:ee:05:47:00:5d:23:97:0a:fc:7e:02:04:5d: 6d:71:17:77:32:44:e6:c6:38:99:e6:2a:8f:19:a8:17:64:da: f9:ac:f6:bf:dd:3b:42:65:cc:a0:75:be:4a:8a:b7:d2:78:01: d5:09:a2:3e:4d:8a:97:d8:51:e5:26:9e:03:d4:dd:49:cd:fa: 18:25:17:64:e5:a0:d9:90:70:85:62:92:45:ae:89:1d:ce:bd: 37:56:08:2e:d3:3a:31:ed:54:28:12:0e:a7:ca:3d:b1:50:fe: da:93:ca:94:9c:ff:37:48:21:6c:70:06:3a:b1:b3:2d:6a:11: 31:f2:1d:51:4f:3d:af:26:d5:e2:d6:51:de:33:a5:70:3d:6e: 75:e9:ce:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUxMTAzMDQzNzAyWhcNMjUxMTEwMDQzNzAyWjAYMRYwFAYD VQQDEw02OTA4MzE2Zi01OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfTQ5/HRUXX12EQ2TVYOgiNPL/RlJZPaFwReDUkSYWqliNwJLALs3Db9lIUr t949s92vMyV6+3H8so77AlbEd2LdFvvhqyp81G9zSORuED8yDC2/VtqdV0bR5D5y /v5ZwEbxrosGd9jLsWsg4rb0KOwnJHAKhDdyuBEGTu0oNEBNhXKYMztuYyUjt4iB 8T+ROnDaBiPkOPF5qDlKIlgjakr2LgLmC/r/a28A2M48uLxvZFc3cBSvZ3XqOF6b tLpzvMkJXJi4VzUtTGsPO7I3Lr4Dhl27pZimRe8ImTf33XbVKoia+1cwpxnvYdnV BWHcG9ii66FPSx3WVnnUMZNF/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQeRNFr hz5mtx2F71vfmgtLQGvoMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2d/PlLEAwjYQuYoGMMNF0rj979hmOSkv39mJ+z4S0Pa3js56SjAtu zV3zzm/3fiVRu3HwjPRnXS1sy6l5qXtQWXaATCm+5a4wBM3U5GIixuAW7dDLlYh0 K1wF8SQm2hO/7mkfNXRf0mlEzlhFC6OUJu4FRwBdI5cK/H4CBF1tcRd3MkTmxjiZ 5iqPGagXZNr5rPa/3TtCZcygdb5KirfSeAHVCaI+TYqX2FHlJp4D1N1JzfoYJRdk 5aDZkHCFYpJFrokdzr03Vggu0zox7VQoEg6nyj2xUP7ak8qUnP83SCFscAY6sbMt ahEx8h1RTz2vJtXi1lHeM6VwPW516c4X -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:13 2025 by rpki-client