$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: T1trM+W4tjuYvKM6Cqn2Trs/hokyADArTANhhIelwxw= Subject key identifier: 2F:CE:99:F5:E1:BF:CF:FA:46:0E:79:39:6A:FA:20:D3:CC:BF:E6:C1 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0426 Signing time: Sun 01 Mar 2026 01:27:21 +0000 Manifest this update: Sun 01 Mar 2026 01:27:21 +0000 Manifest next update: Sun 08 Mar 2026 01:27:21 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: SLB1n+J1u/IuDnzaa4ePqlHV9hmERLyzAbor90PSjtg=) 2: 69738B14E8AD11F09A679225586F56BC.roa (hash: PcMWgbTomfVmzOPfyw5PbMrfv3lqV9Tx72HMdZAnfm0=) 3: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: TriCCnFo4mOMKJL+HVNMjRDt9bPh+YF5+Eq+SLW5G8k=) 4: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: cmDbt6+hgVAuc68D0QOLjv6gRVfjKRHOGDZYET5JrIM=) 5: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: xFISd+ttEAQblHfttx8rPYImOsDbFXxuc1pYVxxc5iM=) 6: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: otwHNOckyf1ytn1Apq/1BeR1CNk021GVJMzJD9T7ctY=) 7: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: x/fURVgHMxeoAlarve9A+lF6P60f2bclShA/wwrURkM=) 8: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: /x1NixuQhNxLXo/3apZddriClLaw/KTmbAeb4wF5saI=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: UWjsDTna3xN8UXBvUtn5RQ4vzV2naXa6iAAtPOuRpNA=) 10: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: 0aUzLo+tj0STYntnMy41IKYzEm935Bzt+cazcmTnPgc=) 11: 69E7D456E8AD11F09A679225586F56BC.roa (hash: QLNDsByG1QX2WiXvNzlSdD44sYckrLeaORLSQtsZWZ8=) 12: A336FE62609111EFB751B771C4F9AE02.roa (hash: MFUO2Vwggul03zb8VthB8JTwYiWWzEcIazSxBfoGylk=) 13: 458AC21A684111EEA6632877C4F9AE02.roa (hash: 0etHP0vNjZ0wS7deZi50YLUT1cDycXszc/epOvXick4=) 14: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: 7jeiGelpitVZJ2SDM97NQyDQ054WKrwcVFs2fiL9rR4=) 15: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: V/oKRNRfbJinqpBjkqvJ5o6sCG+SkzmNR18bmVNkN0o=) 16: 2F24736869C111EF92B54060C4F9AE02.roa (hash: Miqja/vpKVAaF/vnRgSmVQ18Av7Df4WDRSV+aGQxo+c=) 17: F83786F4030011F0984B974FC4F9AE02.roa (hash: NnqzdhTneChMcHeCwKuKEbMTRZZZ4OZecUCnjJ6o38A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Mar 1 01:27:21 2026 GMT Not After : Mar 8 01:27:21 2026 GMT Subject: CN=69a395f9-c29c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:db:e4:5b:08:09:ec:d9:3a:2f:b4:c8:ef:21: 00:66:ce:ef:c3:d3:59:58:5e:54:1b:df:e8:4b:19: 46:44:ff:e3:38:a9:b7:3e:43:22:66:30:c6:dc:c5: 10:31:1f:00:89:ea:e3:35:d3:2d:51:4e:ca:c9:8c: 37:a2:50:7e:22:b6:96:db:aa:e2:08:fb:b1:e6:93: d0:0d:a6:41:63:6e:a8:01:01:ed:13:4c:65:b8:41: af:eb:7b:44:42:30:48:e0:92:f7:b9:c7:13:5a:73: d4:44:00:ab:fb:6a:71:ca:66:ba:74:90:03:f9:9b: 14:11:64:c0:43:ba:b9:2f:51:e9:b3:37:b2:20:40: 6e:03:20:00:16:4f:a7:1d:13:a6:49:b0:67:73:a8: c1:2a:b7:cb:1f:77:9f:7b:94:db:af:8b:12:1b:cd: bd:74:f1:44:cd:71:aa:53:de:1d:a7:60:01:07:8a: 0b:a1:5d:60:3a:ec:bd:be:0b:9b:9c:e2:00:0b:44: e5:d1:da:65:bf:82:53:69:cd:bf:a8:3c:85:41:cb: 61:f6:fc:14:6e:38:2a:b2:23:02:5a:c8:c5:77:d9: 14:73:ac:aa:65:27:a1:49:e4:35:42:74:d2:0e:7c: be:8e:e3:67:a6:72:30:4d:87:7c:17:c5:ae:db:ac: fe:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CE:99:F5:E1:BF:CF:FA:46:0E:79:39:6A:FA:20:D3:CC:BF:E6:C1 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:a2:18:26:ab:b3:40:70:e3:a0:49:2d:31:2c:48:dc:66:3f: 87:31:c1:49:7c:4a:f2:de:1f:57:51:15:31:26:cb:22:ef:ff: 4d:09:7b:c3:87:85:06:3d:4f:21:b8:89:32:ba:a2:92:86:a3: 01:17:34:55:1e:f2:a5:72:f9:47:0e:9d:df:0f:d9:6e:b7:eb: dc:6b:ac:77:1f:58:04:d2:3e:de:25:f2:64:db:34:85:c0:78: 93:1d:64:80:a3:95:69:c4:f3:45:7f:c5:b0:6a:2d:1c:43:60: 0c:63:c5:e1:fa:63:8c:e1:6c:89:01:ea:80:27:60:2a:f3:d6: 16:ea:00:ed:a8:c9:bc:2a:a0:d1:71:55:a4:1c:15:f7:96:94: 08:78:49:d5:5b:b5:95:48:61:6a:b7:86:14:4f:fc:9b:bd:97: e6:a0:fc:42:b9:73:e8:a4:05:cf:25:93:2f:05:ee:36:49:e2: 4c:03:05:7a:86:f0:1a:28:cc:77:c9:38:a3:57:cb:26:ea:53: 12:e2:36:4a:87:60:2d:b2:cc:96:35:91:16:aa:dd:46:a1:1d: 10:c0:50:6a:d2:07:ab:cc:bb:90:47:4e:d7:ef:51:45:03:a8: a2:ad:bf:a6:e7:6f:a5:f8:eb:34:1f:88:3f:b7:d1:39:78:3f: 43:98:ad:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwMzAxMDEyNzIxWhcNMjYwMzA4MDEyNzIxWjAYMRYwFAYD VQQDDA02OWEzOTVmOS1jMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntvkWwgJ7Nk6L7TI7yEAZs7vw9NZWF5UG9/oSxlGRP/jOKm3PkMiZjDG3MUQ MR8AierjNdMtUU7KyYw3olB+IraW26riCPux5pPQDaZBY26oAQHtE0xluEGv63tE QjBI4JL3uccTWnPURACr+2pxyma6dJAD+ZsUEWTAQ7q5L1HpszeyIEBuAyAAFk+n HROmSbBnc6jBKrfLH3efe5Tbr4sSG829dPFEzXGqU94dp2ABB4oLoV1gOuy9vgub nOIAC0Tl0dplv4JTac2/qDyFQcth9vwUbjgqsiMCWsjFd9kUc6yqZSehSeQ1QnTS Dny+juNnpnIwTYd8F8Wu26z+uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC/OmfXh v8/6Rg55OWr6INPMv+bBMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQKIYJquzQHDjoEktMSxI3GY/hzHBSXxK8t4fV1EVMSbLIu//TQl7w4eFBj1P IbiJMrqikoajARc0VR7ypXL5Rw6d3w/Zbrfr3Gusdx9YBNI+3iXyZNs0hcB4kx1k gKOVacTzRX/FsGotHENgDGPF4fpjjOFsiQHqgCdgKvPWFuoA7ajJvCqg0XFVpBwV 95aUCHhJ1Vu1lUhhareGFE/8m72X5qD8Qrlz6KQFzyWTLwXuNkniTAMFeobwGijM d8k4o1fLJupTEuI2SodgLbLMljWRFqrdRqEdEMBQatIHq8y7kEdO1+9RRQOooq2/ pudvpfjrNB+IP7fROXg/Q5itEg== -----END CERTIFICATE-----Generated at Mon Mar 2 03:13:52 2026 by rpki-client