$ rpki-client -vvf rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft File: kkogF1ZK2vsiNqIPv3Otoblr_zM.mft (raw, json) Hash identifier: eNXjwiadCye/dCCKNGMmHIIrQzfBE424z6YObbvKInI= Subject key identifier: 27:4E:52:E6:D4:D3:11:07:94:B1:21:5F:F2:C4:D7:2A:63:9E:74:D3 Authority key identifier: 92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 Certificate issuer: /CN=A914C002/serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft Manifest number: 0161 Signing time: Mon 03 Nov 2025 04:05:44 +0000 Manifest this update: Mon 03 Nov 2025 04:05:43 +0000 Manifest next update: Mon 10 Nov 2025 04:05:43 +0000 Files and hashes: 1: kkogF1ZK2vsiNqIPv3Otoblr_zM.crl (hash: i7P1yTDG7/VOv8gbIxx99SjW115iRDIJmgIVbfEVIA0=) 2: 6AA56694CFE311EFBFBFBD4EC4F9AE02.roa (hash: ZYnpWtFc5GmEGP0oZLW3Cph9iucd5VjZwl7K3jSPiKs=) 3: 51CC36BAC91811EF9DBC1A87C4F9AE02.roa (hash: WkTewr/cvgKrRlRAZtUZxcpYcDyS2cvO3ZWEnp3vqOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C002, serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Validity Not Before: Nov 3 04:05:43 2025 GMT Not After : Nov 10 04:05:43 2025 GMT Subject: CN=69082a18-6378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c3:74:c2:ab:84:02:d1:8e:ec:e5:11:0b:09: 4e:64:80:09:fa:87:b3:44:82:9f:62:7b:24:db:09: 66:eb:a8:b7:dc:a5:d1:11:ad:b8:14:53:37:22:93: b8:6e:d1:de:04:b1:87:39:21:5a:09:f4:06:21:19: b0:ad:cb:21:87:82:18:d1:01:fa:39:42:f8:9c:32: 31:5b:73:80:35:af:f5:cd:32:04:ae:13:82:75:21: f2:69:b6:08:48:78:fc:7e:e8:3c:d1:ee:28:00:e8: 62:5a:05:d3:d3:bd:ea:27:e3:64:c4:25:c2:34:28: 3b:86:c8:ee:04:b4:67:b1:4e:ed:52:7b:e9:20:22: d8:9c:5a:11:97:80:3d:c6:e0:96:7a:c7:bf:c6:64: e5:bb:0c:87:ad:e9:61:44:37:3f:70:9e:9f:f1:80: 0f:2d:11:73:88:35:ea:62:d4:2b:16:36:d5:ca:04: dc:47:96:bb:e4:80:42:3b:01:fe:72:9d:b7:17:c9: db:9c:74:e6:4e:0e:31:2f:cd:9a:7b:14:44:49:57: ec:3d:98:5a:39:2c:11:74:74:ea:94:b1:78:71:4f: 6b:61:d5:91:55:bd:e6:dc:1e:cf:72:99:83:32:f1: 34:77:0f:04:92:7a:ec:34:64:0b:29:bb:4e:d0:b5: 61:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4E:52:E6:D4:D3:11:07:94:B1:21:5F:F2:C4:D7:2A:63:9E:74:D3 X509v3 Authority Key Identifier: keyid:92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:36:ea:ae:84:ee:45:45:50:07:d6:b8:3a:41:a2:cd:cd:c5: 4c:90:db:18:30:e4:21:ca:69:59:58:f0:3e:a5:bb:d5:e7:4b: 4b:2f:d2:69:4d:df:4e:84:7f:c6:1f:3c:8b:3b:89:7d:b7:b2: 14:86:b3:54:77:5d:89:a5:83:7c:c1:08:6f:32:55:b9:95:75: 97:79:5f:a7:f0:e7:85:96:68:18:96:d9:14:ca:c9:b5:e5:1c: dc:b1:69:b4:73:36:d3:d5:a0:34:48:65:2c:14:00:62:39:71: 8d:57:0b:fb:2e:7e:4b:75:b8:a4:3b:83:e9:5f:51:d5:21:5c: dd:c5:3f:bb:d8:c7:69:d3:39:67:19:ea:25:db:b5:91:bc:d7: 66:29:2e:ce:e8:bc:1d:21:20:1c:5f:7b:5c:a0:61:27:a3:6c: 85:77:07:8d:af:d9:af:81:8f:dd:07:b0:f7:db:74:0f:c6:9a: 86:0a:80:3b:68:a7:a9:0f:eb:4a:90:b5:fc:62:19:31:39:01: cd:62:66:f1:44:e1:e0:53:68:1e:38:f5:6b:d5:69:6a:ca:ee: d5:2c:00:6c:3f:b9:ac:54:f9:e0:f4:1b:17:1b:5e:6b:02:4f: 96:83:3a:d8:8d:3d:c8:f8:dc:ac:0a:61:18:f4:6e:cc:d1:14: 0c:a1:7c:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwMDIxMTAvBgNVBAUTKDkyNEEyMDE3NTY0QURBRkIyMjM2QTIwRkJGNzNBREEx Qjk2QkZGMzMwHhcNMjUxMTAzMDQwNTQzWhcNMjUxMTEwMDQwNTQzWjAYMRYwFAYD VQQDEw02OTA4MmExOC02Mzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38N0wquEAtGO7OURCwlOZIAJ+oezRIKfYnsk2wlm66i33KXREa24FFM3IpO4 btHeBLGHOSFaCfQGIRmwrcshh4IY0QH6OUL4nDIxW3OANa/1zTIErhOCdSHyabYI SHj8fug80e4oAOhiWgXT073qJ+NkxCXCNCg7hsjuBLRnsU7tUnvpICLYnFoRl4A9 xuCWese/xmTluwyHrelhRDc/cJ6f8YAPLRFziDXqYtQrFjbVygTcR5a75IBCOwH+ cp23F8nbnHTmTg4xL82aexRESVfsPZhaOSwRdHTqlLF4cU9rYdWRVb3m3B7PcpmD MvE0dw8EknrsNGQLKbtO0LVhvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdOUubU 0xEHlLEhX/LE1ypjnnTTMB8GA1UdIwQYMBaAFJJKIBdWStr7IjaiD79zraG5a/8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzAwMi9DMDFEMEMwQ0E5 MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2c2lOcUlQdjNPdG9ibHJf ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2trb2dGMVpLMnZzaU5xSVB2M090b2Jscl96TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzAwMi9DMDFEMEMwQ0E5MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2 c2lOcUlQdjNPdG9ibHJfek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3NuquhO5FRVAH1rg6QaLNzcVMkNsYMOQhymlZWPA+pbvV50tLL9Jp Td9OhH/GHzyLO4l9t7IUhrNUd12JpYN8wQhvMlW5lXWXeV+n8OeFlmgYltkUysm1 5RzcsWm0czbT1aA0SGUsFABiOXGNVwv7Ln5LdbikO4PpX1HVIVzdxT+72Mdp0zln Geol27WRvNdmKS7O6LwdISAcX3tcoGEno2yFdweNr9mvgY/dB7D323QPxpqGCoA7 aKepD+tKkLX8YhkxOQHNYmbxROHgU2geOPVr1Wlqyu7VLABsP7msVPng9BsXG15r Ak+WgzrYjT3I+NysCmEY9G7M0RQMoXy6 -----END CERTIFICATE-----Generated at Tue Nov 4 23:51:33 2025 by rpki-client