$ rpki-client -vvf rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft File: kkogF1ZK2vsiNqIPv3Otoblr_zM.mft (raw, json) Hash identifier: f2pWxZJPIca1QzSiv6b0h+ie83nABaOynx/8eykAB/I= Subject key identifier: E8:00:29:BE:37:EA:B2:DF:46:46:A9:D6:CE:CE:D1:1B:A9:6C:B1:9C Authority key identifier: 92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 Certificate issuer: /CN=A914C002/serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft Manifest number: 01A3 Signing time: Mon 02 Mar 2026 02:05:01 +0000 Manifest this update: Mon 02 Mar 2026 02:04:59 +0000 Manifest next update: Mon 09 Mar 2026 02:04:59 +0000 Files and hashes: 1: kkogF1ZK2vsiNqIPv3Otoblr_zM.crl (hash: GnXxtWa9GHlmdX82Fd029pnJKkgj25islwx4rdp1jE8=) 2: 51CC36BAC91811EF9DBC1A87C4F9AE02.roa (hash: rSVG57dS9icctqN3//vfn2ezLCSeHMuQO9kLf2c0Ess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C002, serialNumber=924A2017564ADAFB2236A20FBF73ADA1B96BFF33 Validity Not Before: Mar 2 02:04:59 2026 GMT Not After : Mar 9 02:04:59 2026 GMT Subject: CN=69a4f04d-5f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:40:91:ba:0d:be:2a:e6:2f:96:13:cb:b9:21: 7f:96:2a:f4:5d:4f:1d:53:d8:9d:44:2a:4c:b1:db: 59:41:8f:81:0d:08:ac:e4:38:f7:69:48:2b:3a:89: d1:0f:1b:f3:47:15:16:1b:f6:25:14:00:29:9f:a4: cc:1e:9d:0a:40:b1:21:d6:f4:36:b9:b8:62:32:9d: e9:bc:a8:e7:ad:d2:c6:e7:9e:12:9d:bf:0a:34:e7: d8:82:53:7e:f8:7a:ba:09:69:d4:5a:94:65:52:3d: 44:5b:73:7a:29:2e:03:46:9e:59:6d:0a:c6:04:30: 70:ce:ef:1d:cb:a8:81:1c:1d:e2:07:3c:6f:69:a9: 71:94:73:a9:f7:7a:06:18:d3:2c:ef:6f:5e:d4:03: 46:97:3f:a6:45:c9:0b:9c:61:93:9c:7f:71:fc:48: 76:5b:4f:e3:e0:79:0b:e7:29:5e:e8:d2:2c:4b:ad: 78:34:4e:2f:82:b1:25:9a:f7:df:ef:2c:e0:d0:46: 84:dd:67:21:68:a9:98:16:ae:67:01:b6:5c:d4:a3: de:db:e4:79:f1:22:b6:d4:47:45:b4:52:6c:ac:c3: cd:5e:e1:f2:61:43:21:aa:fc:8c:51:39:8d:29:a0: 46:9b:a1:f2:8d:c9:cd:ee:72:c7:21:48:2f:d8:c7: 7b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:00:29:BE:37:EA:B2:DF:46:46:A9:D6:CE:CE:D1:1B:A9:6C:B1:9C X509v3 Authority Key Identifier: keyid:92:4A:20:17:56:4A:DA:FB:22:36:A2:0F:BF:73:AD:A1:B9:6B:FF:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkogF1ZK2vsiNqIPv3Otoblr_zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C002/C01D0C0CA92511EEAC4BDB57C4F9AE02/kkogF1ZK2vsiNqIPv3Otoblr_zM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9e:a1:57:d0:24:5a:23:46:59:bb:af:b6:11:30:00:9f:72: dc:e2:65:0f:03:cb:fa:a9:fb:b8:a8:2f:88:79:0d:d1:2c:44: c2:52:46:ee:ca:06:f9:a0:c1:ed:9a:b9:b0:7b:43:06:71:d2: ac:3f:9c:3b:7a:75:2c:05:00:80:e4:84:69:d2:9d:ef:78:e1: d3:ef:7d:ea:4f:c8:48:07:47:9d:26:44:42:62:2f:2f:41:5e: 09:65:62:97:7d:61:2e:c0:b5:dd:1c:30:e0:f8:01:8b:35:83: fe:cf:e1:fc:8c:b6:6e:b2:14:b7:d0:29:e3:56:02:8c:78:aa: a1:8e:e9:10:f8:3e:2b:1c:cf:12:c1:97:c2:90:59:05:81:ea: c4:bc:6b:3e:ab:be:b9:08:3b:f7:35:be:03:9f:8f:03:05:3f: 1e:2f:e5:97:d8:ad:74:d7:7a:a5:ef:83:c6:c3:4f:9a:05:51: 2a:2b:19:b5:38:0e:94:1b:a8:d8:b4:11:49:b8:24:65:cf:4e: 78:12:df:83:2a:33:92:6f:6c:d5:6b:b9:fb:6e:bd:03:52:92: 08:df:ed:2f:7c:9b:06:6f:bd:7d:30:c5:e5:d1:2c:1e:60:00: 57:3b:77:5c:93:db:40:e4:6b:d6:e1:86:80:8a:32:5a:3e:20: 2d:bc:d7:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwMDIxMTAvBgNVBAUTKDkyNEEyMDE3NTY0QURBRkIyMjM2QTIwRkJGNzNBREEx Qjk2QkZGMzMwHhcNMjYwMzAyMDIwNDU5WhcNMjYwMzA5MDIwNDU5WjAYMRYwFAYD VQQDEw02OWE0ZjA0ZC01ZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukCRug2+KuYvlhPLuSF/lir0XU8dU9idRCpMsdtZQY+BDQis5Dj3aUgrOonR DxvzRxUWG/YlFAApn6TMHp0KQLEh1vQ2ubhiMp3pvKjnrdLG554Snb8KNOfYglN+ +Hq6CWnUWpRlUj1EW3N6KS4DRp5ZbQrGBDBwzu8dy6iBHB3iBzxvaalxlHOp93oG GNMs729e1ANGlz+mRckLnGGTnH9x/Eh2W0/j4HkL5yle6NIsS614NE4vgrElmvff 7yzg0EaE3WchaKmYFq5nAbZc1KPe2+R58SK21EdFtFJsrMPNXuHyYUMhqvyMUTmN KaBGm6HyjcnN7nLHIUgv2Md7GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOgAKb43 6rLfRkap1s7O0RupbLGcMB8GA1UdIwQYMBaAFJJKIBdWStr7IjaiD79zraG5a/8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzAwMi9DMDFEMEMwQ0E5 MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2c2lOcUlQdjNPdG9ibHJf ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2trb2dGMVpLMnZzaU5xSVB2M090b2Jscl96TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzAwMi9DMDFEMEMwQ0E5MjUxMUVFQUM0QkRCNTdDNEY5QUUwMi9ra29nRjFaSzJ2 c2lOcUlQdjNPdG9ibHJfek0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXJ6hV9AkWiNGWbuvthEwAJ9y3OJlDwPL+qn7uKgviHkN0SxEwlJG7soG+aDB 7Zq5sHtDBnHSrD+cO3p1LAUAgOSEadKd73jh0+996k/ISAdHnSZEQmIvL0FeCWVi l31hLsC13Rww4PgBizWD/s/h/Iy2brIUt9Ap41YCjHiqoY7pEPg+KxzPEsGXwpBZ BYHqxLxrPqu+uQg79zW+A5+PAwU/Hi/ll9itdNd6pe+DxsNPmgVRKisZtTgOlBuo 2LQRSbgkZc9OeBLfgyozkm9s1Wu5+269A1KSCN/tL3ybBm+9fTDF5dEsHmAAVzt3 XJPbQORr1uGGgIoyWj4gLbzXnA== -----END CERTIFICATE-----Generated at Tue Mar 3 00:41:46 2026 by rpki-client