$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft File: kof26C-PO6JOCdnGMXilwLLaAd4.mft (raw, json) Hash identifier: TptOaK5A5UGPSYSoBeQdahw4xf2zE9vXdHHBoCd72p8= Subject key identifier: 98:71:C8:76:3F:54:73:82:32:B9:45:C8:97:3A:CF:47:98:34:F2:0E Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0BBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft Manifest number: 0B4D Signing time: Tue 04 Nov 2025 19:31:42 +0000 Manifest this update: Tue 04 Nov 2025 19:31:42 +0000 Manifest next update: Tue 11 Nov 2025 19:31:42 +0000 Files and hashes: 1: kof26C-PO6JOCdnGMXilwLLaAd4.crl (hash: Y51gpgX1KJYYFsUlfGGkNMH9lhXh40YVixawItyHZ+U=) 2: 449FE2BE594411EA962D7646C4F9AE02.roa (hash: 3y9BDXWhIindn9fV5yRhLvjaXOZjwz7wE89JCwHuZfU=) 3: 71AD02DC194F11ED818A3C66C4F9AE02.roa (hash: DOBTNH4GGNPUe/CVItieZfmqwMcwBWdfPDr7AZPstYA=) 4: 7978E3F6602811EFB5954527C4F9AE02.roa (hash: I/yFDnonwjcIdEyDMRzyxAMhULYfijDfUDeIkoqzyfk=) 5: 72E17FF2194F11ED818A3C66C4F9AE02.roa (hash: uU9R+G2quDutiuaDSqaRQis0/8oF8eouaABisexnp3Y=) 6: AB988312177211EBAC79CC7EC4F9AE02.roa (hash: 2efUF6FV6lzagFO6ixmFLw5grpZeZdNkHznhn486HIY=) 7: B1986BCE2E2411EB8AF6BB67C4F9AE02.roa (hash: 1Oowb0Op5/Cu+8FSjA8UF2OrKzh23X2j+ax5PBrX1iA=) 8: 4B82FA441A8611ECB908E939C4F9AE02.roa (hash: ioPHlw0sW6GeE8i+5W/iQUIzBchZcQHPRQo5hhiTaFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3002 (0xbba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Nov 4 19:31:42 2025 GMT Not After : Nov 11 19:31:42 2025 GMT Subject: CN=690a549e-5bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:88:4c:c8:45:89:b4:a6:b8:87:07:51:81: e4:61:49:a2:50:c2:9e:72:60:4a:37:86:ab:81:86: 6e:69:f7:32:57:e8:f3:60:bd:d6:6a:d7:19:8c:d5: 0c:f5:6b:c4:b9:8e:ce:1e:83:da:d2:d7:f4:8f:37: 27:52:fd:a3:72:12:65:cd:66:b3:19:d0:d1:ca:93: 17:b5:76:81:e8:d1:5c:ac:ef:75:c9:62:6b:94:94: ee:ea:06:cb:68:f2:ee:81:ef:a8:aa:54:22:0b:e3: 8e:c8:0c:51:0b:88:78:1f:16:df:9f:e6:a2:27:41: c3:2e:b7:a7:58:eb:1d:d7:bc:8e:cf:ed:d0:f1:e5: f6:22:b4:f6:af:20:fc:07:1b:d8:0d:05:ad:4e:2b: 78:a2:89:4f:39:05:02:07:52:d0:e7:9f:3f:fe:49: 51:31:13:76:45:0c:1c:e7:cc:1c:76:34:c2:6e:a5: af:71:15:fc:df:35:92:eb:12:b7:c7:de:4c:cb:1c: 25:65:a5:00:50:37:80:95:39:60:cc:ee:62:5c:f9: 77:f5:c6:f4:31:4e:b0:a3:8d:5b:15:ff:86:d6:71: b9:7e:58:8c:c5:eb:97:53:aa:16:b4:df:6b:d7:e9: bf:59:71:ed:51:57:f3:0b:ad:fd:84:07:28:54:8d: 8d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:71:C8:76:3F:54:73:82:32:B9:45:C8:97:3A:CF:47:98:34:F2:0E X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c8:43:db:3a:c9:26:2f:90:1f:c8:3a:a2:ab:47:50:d8:b4: 63:19:f3:d0:13:4b:fd:bf:f2:36:39:4c:21:a9:ee:b4:62:3b: b5:ff:f7:71:53:50:c7:71:de:7e:84:69:7d:ef:75:e4:66:01: e9:63:50:86:83:e8:68:f0:4b:8a:29:40:b9:6d:4e:d1:58:36: a6:b9:71:ca:2a:96:d3:d9:87:86:bf:f7:29:fe:8c:25:eb:00: 2c:f8:c6:7a:dd:7a:98:33:67:48:ef:3d:fb:61:c1:ed:c1:31: eb:86:17:be:40:45:41:8d:ab:63:3c:de:1a:2c:77:86:ac:b3: fa:f0:9c:a8:80:c8:3a:4a:67:e5:52:28:d6:ed:e5:9e:e4:4a: cf:12:39:5d:2f:d1:c2:83:13:d1:20:ae:27:76:ca:4b:90:22: 5a:e4:6e:b9:2e:fc:09:26:64:3b:56:c9:e9:bf:e2:64:a5:fd: c2:85:97:b5:08:3e:66:b6:5e:45:2c:a8:cd:5d:e0:a2:99:55: 39:fa:ae:28:c9:94:a3:53:b4:a9:f3:fb:53:0a:53:a7:a9:de: 40:d9:d2:1f:bf:4d:1f:ab:da:e5:22:e3:ca:ac:8e:ef:a4:9f: f8:89:a4:db:3d:e2:0b:db:7a:72:8a:c2:c7:d5:c1:04:c5:dd: d2:a7:a7:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjUxMTA0MTkzMTQyWhcNMjUxMTExMTkzMTQyWjAYMRYwFAYD VQQDEw02OTBhNTQ5ZS01YmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtyITMhFibSmuIcHUYHkYUmiUMKecmBKN4argYZuafcyV+jzYL3WatcZjNUM 9WvEuY7OHoPa0tf0jzcnUv2jchJlzWazGdDRypMXtXaB6NFcrO91yWJrlJTu6gbL aPLuge+oqlQiC+OOyAxRC4h4Hxbfn+aiJ0HDLrenWOsd17yOz+3Q8eX2IrT2ryD8 BxvYDQWtTit4oolPOQUCB1LQ558//klRMRN2RQwc58wcdjTCbqWvcRX83zWS6xK3 x95MyxwlZaUAUDeAlTlgzO5iXPl39cb0MU6wo41bFf+G1nG5fliMxeuXU6oWtN9r 1+m/WXHtUVfzC639hAcoVI2NtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhxyHY/ VHOCMrlFyJc6z0eYNPIOMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9CNTc3M0FBQzU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82 Sk9DZG5HTVhpbHdMTGFBZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkyEPbOskmL5AfyDqiq0dQ2LRjGfPQE0v9v/I2OUwhqe60Yju1//dx U1DHcd5+hGl973XkZgHpY1CGg+ho8EuKKUC5bU7RWDamuXHKKpbT2YeGv/cp/owl 6wAs+MZ63XqYM2dI7z37YcHtwTHrhhe+QEVBjatjPN4aLHeGrLP68JyogMg6Smfl UijW7eWe5ErPEjldL9HCgxPRIK4ndspLkCJa5G65LvwJJmQ7Vsnpv+Jkpf3ChZe1 CD5mtl5FLKjNXeCimVU5+q4oyZSjU7Sp8/tTClOnqd5A2dIfv00fq9rlIuPKrI7v pJ/4iaTbPeIL23pyisLH1cEExd3Sp6c8 -----END CERTIFICATE-----Generated at Wed Nov 5 09:50:29 2025 by rpki-client