$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: O2oOWtcfBkqvwOA3jg7HAYdSgO43EGUWNtS/dZMEDGI= Subject key identifier: 04:7E:F2:AE:98:0A:18:6C:00:BE:BB:32:87:CF:DE:55:49:2A:AA:0A Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0440 Signing time: Fri 17 Apr 2026 00:26:34 +0000 Manifest this update: Fri 17 Apr 2026 00:26:33 +0000 Manifest next update: Fri 24 Apr 2026 00:26:33 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: i42shQ/XGg6YY2ZmqAay9BThdNBfB+vq4Bz6AtxRgho=) 2: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) 3: F83786F4030011F0984B974FC4F9AE02.roa (hash: kNXMnWEX+sWevVcM5orrR1rktTyN5nt3ePYFbJMZxPI=) 4: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 5: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 6: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) 7: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 8: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 9: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 10: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) 11: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 12: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 13: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 14: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 15: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) 16: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 17: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1246 (0x4de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Apr 17 00:26:33 2026 GMT Not After : Apr 24 00:26:33 2026 GMT Subject: CN=69e17e3a-0363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:19:16:f8:a2:80:44:27:f7:6e:d7:c4:a8:99: 4e:54:39:d6:86:36:0f:b2:61:7e:f1:f6:65:c3:33: d1:d8:68:fa:0c:c1:51:0f:e7:a6:48:35:15:d4:6b: de:3a:80:ad:28:80:82:dc:21:da:4d:d2:75:b1:e0: 19:da:d0:69:dd:76:a2:f7:75:92:7b:43:4e:9d:ae: 85:15:80:ef:d1:8a:a2:74:95:aa:9b:23:88:49:3f: 0d:a5:21:f5:82:dc:e6:f5:06:95:51:db:d8:16:4e: f6:f9:d0:f8:95:43:33:65:90:d9:48:e2:c0:2f:75: 5f:00:e5:14:e6:52:ed:69:df:22:63:d2:f2:bd:a7: 6c:21:7c:3c:87:62:26:3e:7f:40:ed:f2:cf:ee:a5: 06:52:e7:58:3d:2e:41:09:fb:18:a4:27:b6:c2:26: de:6f:8d:d0:f3:d6:18:04:a8:aa:06:56:c4:c2:8f: b9:fa:cd:5f:ca:27:e4:57:48:4f:66:1d:57:d4:f8: a1:51:ab:3b:57:e3:c7:57:9e:a8:d6:43:b3:1f:96: 82:f4:31:5a:f7:f9:2c:ae:54:ec:7e:d4:bd:e1:30: b7:5c:71:23:fc:72:93:d6:3b:a0:56:2f:5e:2a:c0: 04:62:8e:47:2f:e8:70:84:56:d9:0f:ae:1e:16:25: aa:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7E:F2:AE:98:0A:18:6C:00:BE:BB:32:87:CF:DE:55:49:2A:AA:0A X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:0a:25:91:57:e8:cb:d3:96:54:2d:db:97:72:ba:ca:12:a5: 46:f4:36:6f:cc:c4:45:08:59:34:f3:d7:49:15:11:9e:fb:99: 15:2a:97:d7:b0:da:d3:6d:e7:47:d5:65:b4:09:70:16:d0:97: 03:a1:f0:bb:97:63:49:8e:e2:e8:d3:b9:a0:0f:b8:00:b1:02: b5:b8:96:fc:3f:ef:c4:37:b1:94:ec:c7:1c:a9:f6:12:9d:62: 2f:42:7b:c4:c5:1b:b3:cf:85:38:6f:f7:fa:36:db:92:6a:ae: 09:d8:78:fe:cb:56:01:b9:17:04:47:d6:e3:8d:86:d3:72:0b: c1:74:a5:f7:ff:6c:cf:4f:3e:31:2d:67:7e:45:6e:b7:22:5e: 99:ed:58:af:88:f0:e2:1b:91:ff:a5:b6:fc:41:fd:cb:7a:fd: 10:47:c5:1d:f2:3e:78:25:60:a5:7f:f3:f4:11:72:72:58:36: ef:25:d2:17:93:f0:63:49:1d:79:9f:c1:5c:7e:13:e8:d4:b7: d2:95:94:d9:b9:d5:e0:57:09:51:ec:0c:16:05:c7:41:55:1e: f0:9a:e9:1b:8f:1f:d5:74:f0:c6:bf:ff:5f:97:b5:49:db:5e: 2b:94:61:09:9f:80:f3:52:67:f0:62:69:53:2b:3b:a6:db:45: 3e:0c:6b:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwNDE3MDAyNjMzWhcNMjYwNDI0MDAyNjMzWjAYMRYwFAYD VQQDEw02OWUxN2UzYS0wMzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRkW+KKARCf3btfEqJlOVDnWhjYPsmF+8fZlwzPR2Gj6DMFRD+emSDUV1Gve OoCtKICC3CHaTdJ1seAZ2tBp3Xai93WSe0NOna6FFYDv0YqidJWqmyOIST8NpSH1 gtzm9QaVUdvYFk72+dD4lUMzZZDZSOLAL3VfAOUU5lLtad8iY9LyvadsIXw8h2Im Pn9A7fLP7qUGUudYPS5BCfsYpCe2wibeb43Q89YYBKiqBlbEwo+5+s1fyifkV0hP Zh1X1PihUas7V+PHV56o1kOzH5aC9DFa9/ksrlTsftS94TC3XHEj/HKT1jugVi9e KsAEYo5HL+hwhFbZD64eFiWqgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAR+8q6Y ChhsAL67MofP3lVJKqoKMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqgolkVfoy9OWVC3bl3K6yhKlRvQ2b8zERQhZNPPXSRURnvuZFSqX17Da023n R9VltAlwFtCXA6Hwu5djSY7i6NO5oA+4ALECtbiW/D/vxDexlOzHHKn2Ep1iL0J7 xMUbs8+FOG/3+jbbkmquCdh4/stWAbkXBEfW442G03ILwXSl9/9sz08+MS1nfkVu tyJeme1Yr4jw4huR/6W2/EH9y3r9EEfFHfI+eCVgpX/z9BFyclg27yXSF5PwY0kd eZ/BXH4T6NS30pWU2bnV4FcJUewMFgXHQVUe8JrpG48f1XTwxr//X5e1SdteK5Rh CZ+A81Jn8GJpUys7pttFPgxrdQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:07:05 2026 by rpki-client