$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: nc1RxHX5FPDbNoKPrIuWufAS30ny71fFPMaSmeokTKk= Subject key identifier: AF:20:9D:FA:D6:DF:54:3F:E3:84:FE:99:2D:78:26:33:48:10:CA:C1 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 045F Signing time: Sat 13 Jun 2026 00:28:27 +0000 Manifest this update: Sat 13 Jun 2026 00:28:27 +0000 Manifest next update: Sat 20 Jun 2026 00:28:27 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: ghy4NCuVDjKMpM0r/IrWeF/b2nF6hEAtfrnXaiYnnRU=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 3: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) 4: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 5: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) 6: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 7: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 8: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) 9: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) 10: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 11: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 12: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 13: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) 14: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 15: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 16: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 17: F83786F4030011F0984B974FC4F9AE02.roa (hash: gihosof38728B4SPmV9PgL0Vu4gCAdVLJnu1WOeWjlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1278 (0x4fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jun 13 00:28:27 2026 GMT Not After : Jun 20 00:28:27 2026 GMT Subject: CN=6a2ca42b-6eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:86:e6:e4:8a:33:2d:f4:a3:f4:be:8a:b1: 0d:a9:6a:b2:eb:f3:34:0e:0d:ed:15:e9:ba:e2:50: 99:09:46:c3:30:6b:be:f5:aa:2f:28:57:f9:a1:aa: f0:89:f0:f4:6d:83:75:53:00:26:2f:b6:09:cf:db: 84:c2:b9:ac:f4:04:5d:b9:f0:fb:88:83:09:1f:6a: ee:59:8e:6a:53:f5:32:de:c9:6a:28:0a:ff:f6:83: 9a:dc:2f:bf:60:b8:8d:27:fa:9f:dd:66:0e:4d:0f: 27:d8:d3:2a:81:aa:fd:2f:39:47:8e:5b:ea:89:39: eb:c7:6f:d1:e4:24:3c:f5:c6:bb:44:45:f1:38:74: 8d:36:f7:fb:fd:8c:68:51:42:de:04:64:39:67:3e: 38:41:b9:39:fa:aa:cc:7c:c3:e2:11:f2:02:ab:77: 5e:d8:c1:37:e0:5d:8f:ba:b3:7d:6b:66:f3:22:d3: 90:6a:b8:55:a5:fc:4e:53:b9:af:02:86:06:03:ff: d4:e5:dc:34:79:21:6c:ca:3f:6d:d0:3c:75:49:92: f0:bf:c1:16:45:78:86:58:ca:28:de:94:80:d9:4e: fc:7f:0e:75:8b:1f:53:41:19:ae:91:f2:ed:78:11: 22:29:57:82:50:52:cb:09:dd:c5:73:cd:8e:a6:1e: ff:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:20:9D:FA:D6:DF:54:3F:E3:84:FE:99:2D:78:26:33:48:10:CA:C1 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:89:8a:be:5e:9b:68:ef:5e:c8:21:8d:a7:d9:51:63:2c:1d: 30:b4:bf:cc:38:0e:8e:5b:19:fa:b9:7f:3f:fe:11:ec:20:44: 16:22:77:6b:e3:04:66:f5:2a:6b:0c:3b:d0:7f:a7:c9:ce:86: c6:31:19:67:de:18:af:0d:f0:c1:f2:5f:a3:8c:13:43:00:f7: 22:d8:6d:5b:4d:3a:91:63:f5:39:9f:a7:03:2c:b2:45:cf:1e: 6e:a2:eb:b8:a2:b7:93:96:26:39:a5:d7:5e:d6:4d:cc:3e:e3: 91:db:08:92:24:3d:68:e7:bf:f8:30:bc:e1:ce:be:a6:f7:c0: 45:b3:81:d4:1d:c4:d2:7e:d2:6b:e8:07:8c:e2:e8:5a:1e:eb: 8b:dc:81:8a:98:5a:61:e5:11:45:91:ce:5a:de:46:69:73:25: 04:1d:5c:52:c8:d2:ba:c1:2c:0c:ed:09:55:c8:26:1e:45:42: 35:17:62:a8:17:6c:bd:2b:93:b8:b8:11:e1:46:61:19:11:8b: 3c:eb:d3:93:93:47:2c:62:c1:6d:51:1c:32:7b:64:21:db:6e: f3:16:26:ce:89:fa:68:3e:6e:5d:02:32:4b:6d:8c:df:99:a0: 84:94:53:98:4f:b2:bc:53:ee:25:72:af:1c:81:97:d5:a9:c4: 9e:37:94:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwNjEzMDAyODI3WhcNMjYwNjIwMDAyODI3WjAYMRYwFAYD VQQDEw02YTJjYTQyYi02ZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaiG5uSKMy30o/S+irENqWqy6/M0Dg3tFem64lCZCUbDMGu+9aovKFf5oarw ifD0bYN1UwAmL7YJz9uEwrms9ARdufD7iIMJH2ruWY5qU/Uy3slqKAr/9oOa3C+/ YLiNJ/qf3WYOTQ8n2NMqgar9LzlHjlvqiTnrx2/R5CQ89ca7REXxOHSNNvf7/Yxo UULeBGQ5Zz44Qbk5+qrMfMPiEfICq3de2ME34F2PurN9a2bzItOQarhVpfxOU7mv AoYGA//U5dw0eSFsyj9t0Dx1SZLwv8EWRXiGWMoo3pSA2U78fw51ix9TQRmukfLt eBEiKVeCUFLLCd3Fc82Oph7//QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8gnfrW 31Q/44T+mS14JjNIEMrBMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANImKvl6baO9eyCGNp9lRYywdMLS/zDgOjlsZ+rl/P/4R7CBEFiJ3a+MEZvUq aww70H+nyc6GxjEZZ94Yrw3wwfJfo4wTQwD3IthtW006kWP1OZ+nAyyyRc8ebqLr uKK3k5YmOaXXXtZNzD7jkdsIkiQ9aOe/+DC84c6+pvfARbOB1B3E0n7Sa+gHjOLo Wh7ri9yBiphaYeURRZHOWt5GaXMlBB1cUsjSusEsDO0JVcgmHkVCNRdiqBdsvSuT uLgR4UZhGRGLPOvTk5NHLGLBbVEcMntkIdtu8xYmzon6aD5uXQIyS22M35mghJRT mE+yvFPuJXKvHIGX1anEnjeUlQ== -----END CERTIFICATE-----Generated at Sat Jun 13 18:26:20 2026 by rpki-client