$ rpki-client -vvf rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft File: kkogF1ZK2vsiNqIPv3Otoblr_zM.mft (raw, json) Hash identifier: s2pgZysw8nGK/T3IU5jDKvkQ8UhQsnZDy2TwGcl7EjY= Subject key identifier: 33:BC:72:53:52:C1:4E:0F:36:67:4C:70:B1:20:17:9F:2C:65:07:5A Authority key identifier: 92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 Certificate issuer: /CN=A914C002/serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft Manifest number: 0134 Signing time: Tue 05 Aug 2025 05:02:25 +0000 Manifest this update: Tue 05 Aug 2025 05:02:25 +0000 Manifest next update: Tue 12 Aug 2025 05:02:25 +0000 Files and hashes: 1: kkogF1ZK2vsiNqIPv3Otoblr_zM.crl (hash: 2FrF8plGwmEHTqOVmKe6JZuHztYkmRmqsxfXj0nLDy0=) 2: 6AA56694CFE311EFBFBFBD4EC4F9AE02.roa (hash: ZYnpWtFc5GmEGP0oZLW3Cph9iucd5VjZwl7K3jSPiKs=) 3: 51CC36BAC91811EF9DBC1A87C4F9AE02.roa (hash: WkTewr/cvgKrRlRAZtUZxcpYcDyS2cvO3ZWEnp3vqOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C002, serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Validity Not Before: Aug 5 05:02:25 2025 GMT Not After : Aug 12 05:02:25 2025 GMT Subject: CN=68919061-eb56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:96:61:d2:03:9a:f9:ec:b3:39:54:d6:e0:3d: 55:c1:d4:0d:52:51:47:87:33:4a:d5:f5:31:08:2e: be:24:5b:3d:eb:f8:72:dc:4a:6f:2d:2d:98:56:56: 79:87:3f:03:53:5d:92:8f:87:bd:f1:29:6c:f0:0b: 70:5b:0b:38:19:73:42:37:b7:40:b0:2b:ed:17:f6: 14:d1:fa:95:e0:e7:90:93:5e:d7:a9:33:59:89:0a: 82:b9:64:61:b9:0c:e2:f5:d9:56:5a:9f:d5:49:9c: 9f:f1:e6:6c:d5:22:04:20:e8:20:58:64:d5:1c:23: f2:75:bc:fa:69:87:af:8f:b6:71:88:07:25:d1:21: c1:98:b0:94:e4:1e:66:60:1b:3a:e6:ed:0b:40:05: d6:2e:02:0a:95:2d:39:dc:b8:d1:3c:ac:32:c7:a6: 35:fd:a4:4b:17:5b:c8:d8:0c:80:91:d7:6a:a9:c2: 2b:6a:c0:9c:ec:46:18:9f:fe:49:5e:ce:3e:19:86: bc:3e:04:3a:be:75:0d:93:f8:c8:fa:4c:1b:c7:d2: d6:e6:23:25:b6:b2:bf:15:e2:82:1a:b1:74:3f:6f: b1:9d:f8:68:53:69:4d:5c:c8:db:b1:b8:a8:fe:97: 49:bf:92:01:2c:8f:b7:2b:69:48:e2:ee:08:33:6d: 60:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BC:72:53:52:C1:4E:0F:36:67:4C:70:B1:20:17:9F:2C:65:07:5A X509v3 Authority Key Identifier: keyid:92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:19:ce:62:ab:ec:c4:68:36:80:a6:90:91:2b:43:7a:88:7a: 99:be:80:c7:80:59:0a:a5:e4:88:03:2c:ce:e6:9e:f0:6d:c0: 51:fc:69:61:e2:df:44:4f:e1:6e:6a:2f:b4:87:24:9e:33:2c: 3d:f1:52:46:68:4e:d3:ac:f3:f3:5a:da:28:5b:a8:6f:42:f6: 34:cc:4a:2c:53:4d:7c:b3:66:d4:49:9d:52:38:7e:44:50:3e: bd:b6:f5:51:d9:54:7e:46:65:5a:53:ed:2a:09:73:c0:47:90: 48:2f:66:af:10:7f:fa:1e:3c:cf:38:e0:5d:7a:08:48:58:60: 73:f6:c1:62:49:8a:76:cc:39:c3:31:5c:32:ac:c0:76:3c:bd: 98:a6:5c:1c:23:f8:70:5b:75:06:19:3d:3c:4d:ed:db:aa:0a: 93:aa:69:47:ed:31:e4:aa:c3:a8:2b:49:9d:34:b7:18:72:48: 7b:dc:f2:9a:7f:71:d2:f3:8d:c3:14:69:21:d8:41:4a:2a:f2: e5:41:c1:a9:a1:94:5e:fa:94:28:0a:69:c5:a9:53:06:bf:9e: ce:13:2d:f8:cb:08:ab:14:c7:2b:55:ac:d1:27:00:6e:52:fb: 9e:f3:0d:6f:71:0f:f2:82:ee:52:4f:07:16:15:ce:98:88:05: 3c:f4:5d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwMDIxMTAvBgNVBAUTKDkyNEEyMDE3NTY0QURBRkIyMjM2QTIwRkJGNzNBREEx Qjk2QkZGMzMwHhcNMjUwODA1MDUwMjI1WhcNMjUwODEyMDUwMjI1WjAYMRYwFAYD VQQDEw02ODkxOTA2MS1lYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJZh0gOa+eyzOVTW4D1VwdQNUlFHhzNK1fUxCC6+JFs96/hy3EpvLS2YVlZ5 hz8DU12Sj4e98Sls8AtwWws4GXNCN7dAsCvtF/YU0fqV4OeQk17XqTNZiQqCuWRh uQzi9dlWWp/VSZyf8eZs1SIEIOggWGTVHCPydbz6aYevj7ZxiAcl0SHBmLCU5B5m YBs65u0LQAXWLgIKlS053LjRPKwyx6Y1/aRLF1vI2AyAkddqqcIrasCc7EYYn/5J Xs4+GYa8PgQ6vnUNk/jI+kwbx9LW5iMltrK/FeKCGrF0P2+xnfhoU2lNXMjbsbio /pdJv5IBLI+3K2lI4u4IM21gewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDO8clNS wU4PNmdMcLEgF58sZQdaMB8GA1UdIwQYMBaAFJJKIBdWStr7IjaiD79zraG5a/8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzAwMi9DMDFEMEMwQ0E5 MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2c2lOcUlQdjNPdG9ibHJf ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2trb2dGMVpLMnZzaU5xSVB2M090b2Jscl96TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzAwMi9DMDFEMEMwQ0E5MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2 c2lOcUlQdjNPdG9ibHJfek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmGc5iq+zEaDaAppCRK0N6iHqZvoDHgFkKpeSIAyzO5p7wbcBR/Glh 4t9ET+Fuai+0hySeMyw98VJGaE7TrPPzWtooW6hvQvY0zEosU018s2bUSZ1SOH5E UD69tvVR2VR+RmVaU+0qCXPAR5BIL2avEH/6HjzPOOBdeghIWGBz9sFiSYp2zDnD MVwyrMB2PL2YplwcI/hwW3UGGT08Te3bqgqTqmlH7THkqsOoK0mdNLcYckh73PKa f3HS843DFGkh2EFKKvLlQcGpoZRe+pQoCmnFqVMGv57OEy34ywirFMcrVazRJwBu Uvue8w1vcQ/ygu5STwcWFc6YiAU89F2e -----END CERTIFICATE-----Generated at Wed Aug 6 11:10:19 2025 by rpki-client