$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: rCtPlhy2ba2kNGf3zTiOHugjjaOs0QAxQM39k2zoDYQ= Subject key identifier: 0A:38:5C:63:89:22:4C:D3:FF:C5:C3:BD:2B:1C:A9:D2:3A:75:C0:1A Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0428 Signing time: Mon 02 Mar 2026 00:41:07 +0000 Manifest this update: Mon 02 Mar 2026 00:41:05 +0000 Manifest next update: Mon 09 Mar 2026 00:41:05 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: 3iS6g45+Hmyz3uD0nyuuualKKmQVordCWPvby9+2/H0=) 2: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 3: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 4: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 5: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) 6: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 7: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 8: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 9: F83786F4030011F0984B974FC4F9AE02.roa (hash: kNXMnWEX+sWevVcM5orrR1rktTyN5nt3ePYFbJMZxPI=) 10: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 11: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 13: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) 14: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) 15: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 16: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) 17: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Mar 2 00:41:05 2026 GMT Not After : Mar 9 00:41:05 2026 GMT Subject: CN=69a4dca3-105b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5b:52:ab:2f:1b:e4:66:2c:05:70:96:a0:2d: dd:cf:74:9e:31:a5:40:60:39:6f:7c:68:48:c4:f8: 25:89:7c:59:6a:45:c1:7e:c5:49:2d:61:bd:d6:f8: d9:87:57:15:a0:c2:1f:9f:74:dd:e5:5e:5b:9d:5c: 8e:2f:27:2e:1d:df:3c:ca:7e:bd:60:a2:6c:e6:b8: 83:87:1c:19:2d:14:6b:ad:a6:4f:ab:c3:4d:27:92: 1b:f5:23:3b:2e:9c:60:a3:3f:cf:12:91:06:05:df: b7:ee:66:66:e6:a5:c5:87:ec:6a:8c:a0:6d:fc:4d: e9:89:3a:b9:43:a2:54:97:26:30:76:94:45:41:58: 64:f1:20:07:43:46:81:ff:07:d2:5c:77:b4:c1:bd: 4b:dd:6d:3a:ae:66:86:06:38:d3:67:2d:00:46:2b: fc:79:76:7f:89:6b:c7:ca:d1:98:72:3a:2f:55:aa: e6:5f:e1:16:10:d4:cd:72:86:1b:e3:04:9b:40:e4: f9:5e:de:2f:a0:70:ce:d5:95:1b:37:bd:5e:d8:a0: 19:d5:d8:9e:ad:89:9a:b2:2f:a9:f2:48:14:b7:c8: 96:17:6f:cd:ea:3a:2e:1c:ef:6e:ad:3a:a6:76:b9: 6d:34:54:88:e8:49:da:e9:f5:a1:7c:21:cb:7b:8b: af:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:38:5C:63:89:22:4C:D3:FF:C5:C3:BD:2B:1C:A9:D2:3A:75:C0:1A X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:1b:df:ba:71:88:7e:21:74:a5:87:50:3f:51:e6:91:7a:bc: 26:dc:ce:cf:ad:ee:c6:8b:86:3d:46:fc:5e:10:13:4f:45:49: e8:4b:f1:0c:a0:55:46:19:25:60:49:c6:81:d5:a1:83:2d:6b: ff:08:2b:af:e4:6d:7b:71:e1:bc:5f:03:84:ef:7d:44:41:f3: a6:46:80:fa:9b:77:a6:ec:0b:4e:8d:41:61:45:51:f1:50:85: f2:04:35:cb:2e:cb:05:9a:a2:e6:d2:d5:25:98:52:02:1e:ef: 69:56:6a:24:eb:59:1e:df:87:dd:56:37:c7:9c:03:94:76:9e: e1:5d:02:b6:07:7f:d2:26:b0:e4:f6:e3:38:fe:70:f8:42:a0: d2:93:c3:9f:5d:ad:f7:91:40:8d:9a:20:ab:bd:c8:4d:f8:36: d6:ef:2e:ed:9d:9e:c5:40:86:ff:5d:a5:90:3c:08:5a:4f:6f: 09:45:0d:e3:38:bd:d5:be:b8:6f:95:73:39:20:44:15:9e:cb: a3:c7:78:2f:51:f0:21:b3:eb:2b:13:41:57:15:b0:17:19:8e: fa:5c:00:86:d6:bf:ff:f5:fd:62:49:5f:2b:d8:45:78:6a:62: 05:f3:42:4a:a3:53:c2:c6:50:4b:08:55:44:b7:0e:de:54:df: 98:67:dc:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwMzAyMDA0MTA1WhcNMjYwMzA5MDA0MTA1WjAYMRYwFAYD VQQDEw02OWE0ZGNhMy0xMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1tSqy8b5GYsBXCWoC3dz3SeMaVAYDlvfGhIxPgliXxZakXBfsVJLWG91vjZ h1cVoMIfn3Td5V5bnVyOLycuHd88yn69YKJs5riDhxwZLRRrraZPq8NNJ5Ib9SM7 Lpxgoz/PEpEGBd+37mZm5qXFh+xqjKBt/E3piTq5Q6JUlyYwdpRFQVhk8SAHQ0aB /wfSXHe0wb1L3W06rmaGBjjTZy0ARiv8eXZ/iWvHytGYcjovVarmX+EWENTNcoYb 4wSbQOT5Xt4voHDO1ZUbN71e2KAZ1dierYmasi+p8kgUt8iWF2/N6jouHO9urTqm drltNFSI6Ena6fWhfCHLe4uvEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAo4XGOJ IkzT/8XDvSscqdI6dcAaMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQRvfunGIfiF0pYdQP1HmkXq8JtzOz63uxouGPUb8XhATT0VJ6EvxDKBVRhkl YEnGgdWhgy1r/wgrr+Rte3HhvF8DhO99REHzpkaA+pt3puwLTo1BYUVR8VCF8gQ1 yy7LBZqi5tLVJZhSAh7vaVZqJOtZHt+H3VY3x5wDlHae4V0Ctgd/0iaw5PbjOP5w +EKg0pPDn12t95FAjZogq73ITfg21u8u7Z2exUCG/12lkDwIWk9vCUUN4zi91b64 b5VzOSBEFZ7Lo8d4L1HwIbPrKxNBVxWwFxmO+lwAhta///X9YklfK9hFeGpiBfNC SqNTwsZQSwhVRLcO3lTfmGfcWw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:01:25 2026 by rpki-client