$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: Plqyg6LUTLGacufUq5HRfXN3YbNHhSJh+GUdx+kr3K8= Subject key identifier: 9C:5F:E4:F1:EA:D9:61:9C:15:06:77:83:37:62:1F:F7:D4:8F:5C:32 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: E7 Signing time: Tue 17 Jun 2025 04:25:27 +0000 Manifest this update: Tue 17 Jun 2025 04:25:27 +0000 Manifest next update: Tue 24 Jun 2025 04:25:27 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: ++578qKkKsmNG5tAm88gk6TYBuQaC5d8TbB9hn1stP0=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Jun 17 04:25:27 2025 GMT Not After : Jun 24 04:25:27 2025 GMT Subject: CN=6850ee37-2cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d0:b1:e3:74:15:59:3f:e2:c9:5a:af:df:38: ed:6d:7a:1b:de:d3:84:39:58:38:89:c6:1e:64:8c: 07:37:55:96:38:f9:34:8c:fb:12:d8:79:a8:ac:eb: 46:bd:91:f3:24:1a:10:86:d6:26:cf:fb:5b:57:d7: d5:7c:a1:f9:68:ec:91:c9:3a:15:b9:29:a7:ef:b6: 01:d6:84:be:b4:13:67:71:3b:26:ef:24:e9:b8:64: 73:a2:ee:37:b6:f7:38:5c:3d:f3:5f:0a:57:06:32: ef:e8:87:45:5c:f6:6e:f8:6e:0d:3f:37:46:32:c5: 0c:f3:78:a4:b8:6d:56:d8:63:38:61:20:e0:e9:47: c9:dd:3e:02:56:b2:8a:bf:8e:f7:9e:bc:07:74:18: 56:f3:3d:bc:b8:95:f3:33:f7:b6:0b:50:ea:69:71: 8a:3b:9c:bc:7b:37:38:db:e6:b2:af:fc:95:45:68: 4b:60:01:f7:21:ba:48:a3:0f:4e:16:99:0b:95:22: 62:67:e9:f3:ae:de:4d:0c:64:6b:70:7b:66:59:62: 34:e9:3d:b3:d0:1b:0e:94:b5:1e:f5:e8:fa:c3:d6: 80:e6:19:35:16:af:55:49:3e:06:fd:52:61:8e:0f: 8a:84:92:93:1a:ae:44:21:41:14:d3:84:9f:3f:15: 04:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5F:E4:F1:EA:D9:61:9C:15:06:77:83:37:62:1F:F7:D4:8F:5C:32 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:10:5a:54:9f:ff:72:44:9b:5b:dc:b9:8f:f5:34:ad:ef:01: a2:99:94:ef:d6:c1:b4:96:3e:6d:c7:43:0c:08:71:45:f7:75: 95:69:75:d0:99:93:e8:53:26:22:c0:88:56:28:57:46:c6:2b: 46:8e:ff:ef:af:12:4f:2b:a9:14:de:cc:ca:84:55:62:64:cf: 51:2f:74:a3:ff:e8:39:38:e1:7c:3e:c6:e5:9d:bc:d5:2d:64: 81:61:a1:15:5b:19:57:d9:f1:a1:f8:d8:ba:c3:ee:3b:10:09: 5e:d9:ce:aa:4b:f7:4b:f3:a8:63:d1:af:fe:e4:16:b1:25:67: 30:5a:c1:d1:01:ce:1f:10:82:78:d2:d3:20:7a:dd:7b:02:97: 5d:66:f6:d1:37:1b:0d:0c:4f:cc:3a:9d:2b:8e:47:f3:dc:13: 51:da:75:4d:ce:9c:38:a9:1e:01:e3:f1:c8:16:ab:81:8f:e4: da:ab:09:07:f3:e9:45:0f:ac:7f:ff:23:b4:8c:69:7a:13:05: e6:fb:49:a0:06:cb:83:10:58:0f:d8:c9:5d:3a:1b:f2:3f:9f: 32:5d:b6:37:04:7e:bc:f7:b4:17:45:c2:b0:56:99:a1:72:e5: 20:10:91:4d:51:70:ec:b6:62:5e:06:36:67:4c:3b:9f:70:61: 2d:4f:67:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUwNjE3MDQyNTI3WhcNMjUwNjI0MDQyNTI3WjAYMRYwFAYD VQQDEw02ODUwZWUzNy0yY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNCx43QVWT/iyVqv3zjtbXob3tOEOVg4icYeZIwHN1WWOPk0jPsS2HmorOtG vZHzJBoQhtYmz/tbV9fVfKH5aOyRyToVuSmn77YB1oS+tBNncTsm7yTpuGRzou43 tvc4XD3zXwpXBjLv6IdFXPZu+G4NPzdGMsUM83ikuG1W2GM4YSDg6UfJ3T4CVrKK v473nrwHdBhW8z28uJXzM/e2C1DqaXGKO5y8ezc42+ayr/yVRWhLYAH3IbpIow9O FpkLlSJiZ+nzrt5NDGRrcHtmWWI06T2z0BsOlLUe9ej6w9aA5hk1Fq9VST4G/VJh jg+KhJKTGq5EIUEU04SfPxUE3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxf5PHq 2WGcFQZ3gzdiH/fUj1wyMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcEFpUn/9yRJtb3LmP9TSt7wGimZTv1sG0lj5tx0MMCHFF93WVaXXQ mZPoUyYiwIhWKFdGxitGjv/vrxJPK6kU3szKhFViZM9RL3Sj/+g5OOF8PsblnbzV LWSBYaEVWxlX2fGh+Ni6w+47EAle2c6qS/dL86hj0a/+5BaxJWcwWsHRAc4fEIJ4 0tMget17ApddZvbRNxsNDE/MOp0rjkfz3BNR2nVNzpw4qR4B4/HIFquBj+TaqwkH 8+lFD6x//yO0jGl6EwXm+0mgBsuDEFgP2MldOhvyP58yXbY3BH6897QXRcKwVpmh cuUgEJFNUXDstmJeBjZnTDufcGEtT2dc -----END CERTIFICATE-----Generated at Wed Jun 18 06:35:48 2025 by rpki-client