$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft File: kof26C-PO6JOCdnGMXilwLLaAd4.mft (raw, json) Hash identifier: X62q8T6e0xGndCSy+nW5Xo9PIJ20OslagU9yM92o2gI= Subject key identifier: 3E:4D:A4:91:F3:AE:DE:91:97:6B:4A:E2:54:F3:91:71:8E:74:ED:A5 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0B8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft Manifest number: 0B1D Signing time: Sat 02 Aug 2025 19:47:29 +0000 Manifest this update: Sat 02 Aug 2025 19:47:28 +0000 Manifest next update: Sat 09 Aug 2025 19:47:28 +0000 Files and hashes: 1: kof26C-PO6JOCdnGMXilwLLaAd4.crl (hash: rwk5Zm+p4B2hJ/1nB9M1Mtf2t5+d/vvDbLPWBDTzTaw=) 2: 449FE2BE594411EA962D7646C4F9AE02.roa (hash: 3y9BDXWhIindn9fV5yRhLvjaXOZjwz7wE89JCwHuZfU=) 3: 71AD02DC194F11ED818A3C66C4F9AE02.roa (hash: DOBTNH4GGNPUe/CVItieZfmqwMcwBWdfPDr7AZPstYA=) 4: 7978E3F6602811EFB5954527C4F9AE02.roa (hash: I/yFDnonwjcIdEyDMRzyxAMhULYfijDfUDeIkoqzyfk=) 5: 72E17FF2194F11ED818A3C66C4F9AE02.roa (hash: uU9R+G2quDutiuaDSqaRQis0/8oF8eouaABisexnp3Y=) 6: AB988312177211EBAC79CC7EC4F9AE02.roa (hash: 2efUF6FV6lzagFO6ixmFLw5grpZeZdNkHznhn486HIY=) 7: B1986BCE2E2411EB8AF6BB67C4F9AE02.roa (hash: 1Oowb0Op5/Cu+8FSjA8UF2OrKzh23X2j+ax5PBrX1iA=) 8: 4B82FA441A8611ECB908E939C4F9AE02.roa (hash: ioPHlw0sW6GeE8i+5W/iQUIzBchZcQHPRQo5hhiTaFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 19:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Aug 2 19:47:28 2025 GMT Not After : Aug 9 19:47:28 2025 GMT Subject: CN=688e6b50-4782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:18:4f:e2:d4:7c:19:11:0c:54:aa:a0:45:25: 17:05:15:91:0c:d7:fa:c1:34:b8:c5:cd:c5:1a:88: 43:c2:9b:db:3e:51:1c:e2:5b:5c:ca:16:90:77:75: 95:72:5c:58:64:7e:fa:d5:f6:70:10:64:d0:5d:d8: 53:a9:e8:b7:0e:00:fc:47:e2:6e:ff:90:68:76:1f: f1:cd:8d:16:b8:c0:e7:5e:75:2e:13:d1:84:a2:ef: d3:15:1a:0f:52:5c:b4:f5:86:e6:54:7f:62:b2:d0: 0b:9c:f3:b6:0a:a3:59:83:c6:b1:b8:0a:0e:37:47: 75:fc:8f:4e:8b:7f:50:24:50:f8:1d:23:a8:d4:8c: 1b:41:b7:9c:91:74:17:20:69:7c:00:0b:2f:45:ca: 80:f3:f7:08:58:75:ac:be:fe:9f:23:ca:0e:bb:24: 7e:74:e7:cf:f5:b4:09:68:bf:a2:33:51:fc:d6:66: be:c8:df:09:5c:e2:aa:97:0c:b4:69:2a:99:29:44: 7c:ba:81:91:3a:8d:d6:a4:0d:09:c6:6a:92:84:8d: 1c:6a:3e:6c:ee:d1:90:7b:83:e1:5a:f7:19:7a:3b: 94:b6:86:5c:bc:2e:51:b4:5e:64:f1:3f:33:b9:12: 99:84:00:63:40:c7:0a:1e:f2:0f:27:52:73:fe:e9: 32:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:4D:A4:91:F3:AE:DE:91:97:6B:4A:E2:54:F3:91:71:8E:74:ED:A5 X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:91:66:6d:8b:e6:93:9d:25:8f:30:65:25:ea:c9:cf:4e:96: ef:77:ff:d9:c7:bc:a9:32:de:45:d0:ea:57:c3:d4:b0:2f:6a: 36:93:09:39:fc:e9:56:55:cf:e4:32:fd:5b:18:b0:0d:58:c0: dd:23:07:2b:fe:52:b5:c2:ab:b5:7a:8f:6a:51:97:2a:3f:e2: 0a:04:db:3a:42:b3:51:e6:4a:d0:88:62:5a:ed:00:62:44:12: 1f:12:95:07:7f:38:75:e7:69:8c:ef:c9:25:8a:50:22:55:09: 09:8f:a8:6e:75:fa:b6:a0:0b:1f:69:22:77:1f:56:8f:79:2c: 48:4a:6d:58:7c:a1:69:d0:74:0f:80:9b:cf:b4:e8:70:fe:29: b8:4b:9c:4d:e7:25:13:36:ac:47:66:71:e4:2f:f8:18:61:f4: 48:46:f3:48:13:47:72:be:38:56:12:b7:4e:65:9e:67:54:07: 5c:4d:54:b4:4a:d8:f2:41:b4:1e:d0:a5:8b:2b:98:2f:f9:a4: 6d:a9:74:9c:b9:fc:58:72:4d:0c:cd:2e:70:05:a3:c7:67:16: 97:f0:20:0b:e3:bb:40:6a:9d:d3:22:a8:30:37:6b:ab:b4:fd: dd:dc:a4:49:f9:7e:aa:3a:c8:28:c0:f0:47:ca:51:bc:8a:8b: 1a:06:72:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjUwODAyMTk0NzI4WhcNMjUwODA5MTk0NzI4WjAYMRYwFAYD VQQDEw02ODhlNmI1MC00NzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BhP4tR8GREMVKqgRSUXBRWRDNf6wTS4xc3FGohDwpvbPlEc4ltcyhaQd3WV clxYZH761fZwEGTQXdhTqei3DgD8R+Ju/5Bodh/xzY0WuMDnXnUuE9GEou/TFRoP Uly09YbmVH9istALnPO2CqNZg8axuAoON0d1/I9Oi39QJFD4HSOo1IwbQbeckXQX IGl8AAsvRcqA8/cIWHWsvv6fI8oOuyR+dOfP9bQJaL+iM1H81ma+yN8JXOKqlwy0 aSqZKUR8uoGROo3WpA0JxmqShI0caj5s7tGQe4PhWvcZejuUtoZcvC5RtF5k8T8z uRKZhABjQMcKHvIPJ1Jz/ukyDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5NpJHz rt6Rl2tK4lTzkXGOdO2lMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9CNTc3M0FBQzU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82 Sk9DZG5HTVhpbHdMTGFBZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5kWZti+aTnSWPMGUl6snPTpbvd//Zx7ypMt5F0OpXw9SwL2o2kwk5 /OlWVc/kMv1bGLANWMDdIwcr/lK1wqu1eo9qUZcqP+IKBNs6QrNR5krQiGJa7QBi RBIfEpUHfzh152mM78klilAiVQkJj6hudfq2oAsfaSJ3H1aPeSxISm1YfKFp0HQP gJvPtOhw/im4S5xN5yUTNqxHZnHkL/gYYfRIRvNIE0dyvjhWErdOZZ5nVAdcTVS0 StjyQbQe0KWLK5gv+aRtqXScufxYck0MzS5wBaPHZxaX8CAL47tAap3TIqgwN2ur tP3d3KRJ+X6qOsgowPBHylG8iosaBnL6 -----END CERTIFICATE-----Generated at Mon Aug 4 16:05:24 2025 by rpki-client