$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: RS4L9TkE3PNfeKF0wLfi2v6tRfRHjCWqe6e13JgarEI= Subject key identifier: 4C:3E:D8:00:01:B5:42:9D:AD:94:84:17:82:B3:EE:A5:E0:91:4D:B0 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03E4 Signing time: Mon 03 Nov 2025 00:45:53 +0000 Manifest this update: Mon 03 Nov 2025 00:45:53 +0000 Manifest next update: Mon 10 Nov 2025 00:45:53 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: Wo2kvF02biDNjiUJ3I3eg+riB58fzVi6RhXe5fyaKfs=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Nov 3 00:45:53 2025 GMT Not After : Nov 10 00:45:53 2025 GMT Subject: CN=6907fb41-297f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d4:58:96:3a:8f:5e:e0:8f:6d:24:a8:28:b3: b3:ba:a0:5c:7b:60:13:df:b7:5b:29:74:43:53:dd: af:f9:4f:c4:bb:db:03:e0:79:78:f6:de:9b:2f:77: 5d:02:b6:fd:1d:b5:0e:01:32:70:51:6c:d1:16:7c: 13:65:6b:20:ba:7f:a5:50:64:15:75:d4:e8:b0:9e: e9:49:53:42:3e:59:83:a0:47:e5:d5:c8:6a:25:28: 0a:a1:bc:dc:45:0c:58:c1:16:da:bb:38:23:dc:64: 37:1e:6d:b9:e4:9d:2b:49:18:38:0d:0a:a8:a9:d8: 67:59:88:a3:9a:2e:7e:42:c5:19:f0:c9:45:6a:5f: 90:29:a1:e8:50:d8:de:ab:2f:69:18:ec:35:2c:fb: bd:d4:e0:c4:85:f5:bf:1c:57:f4:e1:93:62:1b:13: 0d:f9:2c:57:01:42:de:0e:ce:05:ed:1a:1f:97:f6: f2:66:f9:a5:cb:90:f7:f6:76:1b:35:99:0d:f3:4c: 39:9b:0d:21:dd:29:e7:a3:9b:79:49:b4:91:36:62: c2:9a:a0:89:31:e1:f4:dd:50:15:4e:49:75:af:a5: 63:85:06:d6:a0:ce:62:03:55:25:e0:26:97:a2:0f: 30:e6:9c:7d:d8:21:89:1f:c7:39:31:cb:6b:26:46: 36:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3E:D8:00:01:B5:42:9D:AD:94:84:17:82:B3:EE:A5:E0:91:4D:B0 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:aa:23:54:87:e2:5c:b8:36:da:0e:ec:2f:80:ba:6a:ab:fd: eb:8e:06:b1:a8:ac:88:2f:a4:d9:6e:a4:7f:b3:1c:ef:af:e6: 25:10:a9:94:b9:db:b2:1f:c4:3e:3d:00:e8:19:d7:f6:f0:3b: a9:5e:a4:5c:c9:3e:26:a2:58:b0:12:6f:7d:fe:8d:dc:f4:39: 40:41:c3:40:6d:c0:cd:5d:95:70:ee:86:53:ca:a8:80:5c:e5: f4:57:1e:03:be:7d:b2:d0:27:f6:e5:bb:12:83:04:92:91:80: ea:6d:e3:9b:c3:3b:a0:42:dc:42:b6:48:db:91:19:7b:c8:a5: 2b:87:5f:22:a3:b5:b1:d4:7c:fa:4e:7c:1d:a6:7d:59:20:d0: b8:8a:9a:5d:6f:f6:a0:aa:96:c0:64:10:07:7a:8a:cc:b8:87: d9:fe:54:eb:79:99:0d:0f:2e:c1:5a:4c:ed:e1:50:6e:1a:a7: e4:0c:37:38:5f:18:2c:62:32:3b:6e:41:f4:21:34:32:cb:3c: 78:ea:7f:78:47:af:8d:62:ec:0e:7e:4a:71:d5:cf:de:17:d5: b7:26:1d:e9:cf:38:92:e0:6f:95:5f:32:d9:ca:e3:5f:53:22: bd:be:e4:f6:0a:eb:5d:17:20:c7:e9:f4:0c:bf:16:ca:db:2f: ac:7d:38:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUxMTAzMDA0NTUzWhcNMjUxMTEwMDA0NTUzWjAYMRYwFAYD VQQDEw02OTA3ZmI0MS0yOTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NRYljqPXuCPbSSoKLOzuqBce2AT37dbKXRDU92v+U/Eu9sD4Hl49t6bL3dd Arb9HbUOATJwUWzRFnwTZWsgun+lUGQVddTosJ7pSVNCPlmDoEfl1chqJSgKobzc RQxYwRbauzgj3GQ3Hm255J0rSRg4DQqoqdhnWYijmi5+QsUZ8MlFal+QKaHoUNje qy9pGOw1LPu91ODEhfW/HFf04ZNiGxMN+SxXAULeDs4F7Rofl/byZvmly5D39nYb NZkN80w5mw0h3Snno5t5SbSRNmLCmqCJMeH03VAVTkl1r6VjhQbWoM5iA1Ul4CaX og8w5px92CGJH8c5MctrJkY2xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEw+2AAB tUKdrZSEF4Kz7qXgkU2wMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWqiNUh+JcuDbaDuwvgLpqq/3rjgaxqKyIL6TZbqR/sxzvr+YlEKmU uduyH8Q+PQDoGdf28DupXqRcyT4moliwEm99/o3c9DlAQcNAbcDNXZVw7oZTyqiA XOX0Vx4Dvn2y0Cf25bsSgwSSkYDqbeObwzugQtxCtkjbkRl7yKUrh18io7Wx1Hz6 Tnwdpn1ZINC4ippdb/agqpbAZBAHeorMuIfZ/lTreZkNDy7BWkzt4VBuGqfkDDc4 XxgsYjI7bkH0ITQyyzx46n94R6+NYuwOfkpx1c/eF9W3Jh3pzziS4G+VXzLZyuNf UyK9vuT2CutdFyDH6fQMvxbK2y+sfTi1 -----END CERTIFICATE-----Generated at Tue Nov 4 20:19:29 2025 by rpki-client