$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: yZLiPy6QMaLH4r6izMFtcUEr2AJmR9BzTJkQW5MHmtc= Subject key identifier: 77:29:70:A1:35:9A:E4:44:D6:C0:5D:57:A7:3A:D6:AF:4D:2F:5A:C9 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 016B Signing time: Sun 01 Mar 2026 06:24:20 +0000 Manifest this update: Sun 01 Mar 2026 06:24:19 +0000 Manifest next update: Sun 08 Mar 2026 06:24:19 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: MVeB5KDmXxAxLaZWRIzsWEDdntiC5dEGvy6l90NU0Nc=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: o04Z48sABo0Nh9qldD3mHdyu7HtU9LnulC/6vUUtgW0=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: xNZg4xoMYRIrsNZfmFQdwbgsucyxQU5UWNN0GOblWp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Mar 1 06:24:19 2026 GMT Not After : Mar 8 06:24:19 2026 GMT Subject: CN=69a3db94-e7bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:71:d3:04:1a:3a:0e:39:9f:d0:8e:f3:8b: 79:c1:64:4b:67:38:90:41:ab:cc:81:1c:a0:c8:f4: 7a:5a:64:ee:4a:d2:62:8d:48:90:62:b1:94:c6:05: 78:5a:2a:e5:4b:81:0f:1e:5c:94:1a:77:f5:a0:76: cd:ed:08:c8:99:0a:8d:f6:b7:d4:1a:96:4b:61:b5: 53:36:52:1e:39:9d:c4:8c:3d:44:1b:12:49:55:a3: 98:b5:78:c4:7b:09:9f:2d:ab:1f:1c:c4:ad:48:91: 1c:ad:ee:f5:b0:7d:15:e3:de:c4:a2:54:f2:56:0e: 47:dc:12:85:e6:bc:61:e2:de:81:bb:df:96:a4:9e: 62:83:19:4f:ed:4b:a9:e5:af:40:4e:34:7c:a3:01: c3:2c:75:62:b3:83:c3:c0:1b:3b:40:fc:01:7e:dd: 88:6f:78:3f:1e:3b:aa:70:99:1a:cd:97:5d:02:53: 5a:2b:24:7c:bb:a4:e0:17:df:5a:c0:00:22:03:5f: 1b:92:04:52:99:c8:5b:3c:81:64:35:85:e1:19:3a: 91:26:98:98:f4:e2:64:57:a4:cf:78:87:40:f1:24: e6:84:79:01:8e:95:c3:27:e0:33:b4:67:8a:1a:43: 46:83:c7:a0:ea:1c:97:53:fb:63:19:0e:87:85:f4: be:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:29:70:A1:35:9A:E4:44:D6:C0:5D:57:A7:3A:D6:AF:4D:2F:5A:C9 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:08:d9:ce:98:a6:d4:4f:dd:0a:06:11:fb:8a:fc:35:70:1f: 73:0e:6c:e3:b8:22:0b:3d:80:4b:e3:c0:7e:15:1a:04:97:a2: 7f:b9:ce:99:a1:3a:20:7a:1e:ad:ea:bc:7e:3d:bb:d1:37:9d: 84:ea:44:5f:c9:a8:7c:42:8a:a9:ff:65:a5:bd:1e:a2:58:88: 24:f3:16:3b:a7:1f:bc:10:1d:37:49:3d:2b:e2:62:ff:88:43: 47:5f:16:31:84:82:a4:b3:8f:e2:92:0b:f0:2a:76:53:04:bd: 31:f4:04:b2:ee:26:6c:a8:12:d2:9e:a0:01:58:ec:05:0c:df: d4:12:74:14:e9:9c:dc:48:a8:63:32:a9:77:d7:c7:4b:7c:b1: 2f:25:c2:c9:d6:c0:0e:03:23:f1:d9:3d:95:fb:d2:7f:2c:33: 7b:37:29:15:54:38:06:ef:ad:96:e1:8c:19:b2:2d:0d:18:7f: 5b:98:85:73:8b:aa:35:56:03:f6:1b:0e:a5:38:b1:dd:24:0b: e9:53:40:30:31:cf:88:b8:b0:9f:65:f0:76:26:01:d3:4b:62: 28:d9:8d:7a:7e:50:ba:ad:44:d2:19:68:52:1a:16:8a:6f:72: 1b:73:f5:1c:0b:f6:fa:a3:4e:a9:46:d3:36:c2:c8:8f:d2:21: ec:fa:c4:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjYwMzAxMDYyNDE5WhcNMjYwMzA4MDYyNDE5WjAYMRYwFAYD VQQDEw02OWEzZGI5NC1lN2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNdx0wQaOg45n9CO84t5wWRLZziQQavMgRygyPR6WmTuStJijUiQYrGUxgV4 WirlS4EPHlyUGnf1oHbN7QjImQqN9rfUGpZLYbVTNlIeOZ3EjD1EGxJJVaOYtXjE ewmfLasfHMStSJEcre71sH0V497EolTyVg5H3BKF5rxh4t6Bu9+WpJ5igxlP7Uup 5a9ATjR8owHDLHVis4PDwBs7QPwBft2Ib3g/HjuqcJkazZddAlNaKyR8u6TgF99a wAAiA18bkgRSmchbPIFkNYXhGTqRJpiY9OJkV6TPeIdA8STmhHkBjpXDJ+AztGeK GkNGg8eg6hyXU/tjGQ6HhfS+4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHcpcKE1 muRE1sBdV6c61q9NL1rJMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZwjZzpim1E/dCgYR+4r8NXAfcw5s47giCz2AS+PAfhUaBJeif7nOmaE6IHoe req8fj270TedhOpEX8mofEKKqf9lpb0eoliIJPMWO6cfvBAdN0k9K+Ji/4hDR18W MYSCpLOP4pIL8Cp2UwS9MfQEsu4mbKgS0p6gAVjsBQzf1BJ0FOmc3EioYzKpd9fH S3yxLyXCydbADgMj8dk9lfvSfywzezcpFVQ4Bu+tluGMGbItDRh/W5iFc4uqNVYD 9hsOpTix3SQL6VNAMDHPiLiwn2XwdiYB00tiKNmNen5Quq1E0hloUhoWim9yG3P1 HAv2+qNOqUbTNsLIj9Ih7PrEBA== -----END CERTIFICATE-----Generated at Mon Mar 2 02:04:32 2026 by rpki-client