$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft File: kof26C-PO6JOCdnGMXilwLLaAd4.mft (raw, json) Hash identifier: pFNbBkSp6HiTTNXo7LNSjT8OjsKOXLzGPlInq2Ef5GY= Subject key identifier: 0D:AA:C3:DA:C8:36:F5:86:A8:E8:35:5C:C2:81:3F:F7:3F:02:57:11 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0BFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft Manifest number: 0B8B Signing time: Sun 01 Mar 2026 23:49:14 +0000 Manifest this update: Sun 01 Mar 2026 23:49:12 +0000 Manifest next update: Sun 08 Mar 2026 23:49:12 +0000 Files and hashes: 1: kof26C-PO6JOCdnGMXilwLLaAd4.crl (hash: dP+nheKNue6ZoHEgSt7aL/OCklObotC/MQUJrBI2HYI=) 2: B1986BCE2E2411EB8AF6BB67C4F9AE02.roa (hash: iDD/cykx6wIoU1qmgTIgB853kbpj3nssniFazk/0qr0=) 3: 72E17FF2194F11ED818A3C66C4F9AE02.roa (hash: wngzQ+ln3P5OFbjm57Z5FfRQUQn3YQjJskflR3KxsE4=) 4: 7978E3F6602811EFB5954527C4F9AE02.roa (hash: e1Z9G29giVfx/TlMnNPTJ5NHuDRFDqUi7DBFlVhYvVc=) 5: 71AD02DC194F11ED818A3C66C4F9AE02.roa (hash: iDi9kb8b28KqeEkRb6+jnpdjdCoQ0UA/2dxXpejWRto=) 6: AB988312177211EBAC79CC7EC4F9AE02.roa (hash: n5U2VFCOEQTSOh6nc6suUj77+8ZXZZeQOgQNXBchDAk=) 7: 4B82FA441A8611ECB908E939C4F9AE02.roa (hash: uV1mWEm9Bs1DW7VnjBjbNklIBwl6dVIf/TDxxXlFI88=) 8: 449FE2BE594411EA962D7646C4F9AE02.roa (hash: LXCZa4eT6auT5fb/1SRaqdOV231cd9TBAb1bo44Vaoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Mar 1 23:49:12 2026 GMT Not After : Mar 8 23:49:12 2026 GMT Subject: CN=69a4d07a-52c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a2:43:89:03:76:4c:d4:8a:58:57:76:f6:73: 3c:94:e2:ae:b8:2c:7b:a6:60:54:5e:4f:32:80:57: 95:4f:ec:ce:4c:a8:03:9c:42:25:df:12:3c:5f:72: 96:ba:ee:7f:a5:7c:90:d7:fa:43:83:73:22:54:d2: e6:b8:6a:1b:00:36:43:48:89:5a:a6:06:2e:97:eb: 35:0f:95:e3:94:b9:63:27:bc:f4:00:05:28:8b:bb: 2d:a1:71:af:fa:ef:e3:f3:87:6c:1c:6f:34:80:1b: fb:76:3f:77:fe:08:b4:d4:ed:88:25:18:52:7a:62: ff:29:0a:55:39:7d:ff:6c:20:fc:bc:37:2f:e5:e1: 47:1c:34:42:a1:2a:00:a0:20:5c:47:a5:83:1b:dd: 6a:43:cf:23:7e:e8:21:e7:08:b4:2b:ed:49:d8:54: 99:c4:e9:27:3f:88:20:8d:02:54:d7:94:64:9c:af: 3f:a8:e6:59:2d:8a:35:1d:29:f5:7e:62:c2:6b:e9: 51:9b:fd:6a:cd:de:07:49:ef:0f:53:92:2f:bd:be: d9:20:9c:55:1d:4d:1c:25:cb:63:42:10:b1:e7:3c: f9:e8:9a:a7:b0:62:40:3a:5b:30:b2:49:5c:48:fd: 01:f3:2a:86:0f:00:e0:39:e1:32:df:8d:b7:5a:58: 53:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AA:C3:DA:C8:36:F5:86:A8:E8:35:5C:C2:81:3F:F7:3F:02:57:11 X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:62:ec:30:64:dd:7c:ba:37:a8:d1:b6:da:8b:ff:a1:4c:20: 61:21:1f:15:c9:54:f2:7b:08:a9:66:13:06:40:15:34:b3:b4: 5f:8d:73:ba:6d:d4:22:42:5a:1f:54:50:6d:1d:c8:6a:21:9c: c6:7d:2b:14:c0:94:15:48:45:35:e7:3d:b6:d7:81:53:a4:8b: 2f:48:94:78:fa:0f:43:d5:25:67:ce:05:54:ab:f8:db:21:f9: ad:31:5f:f8:13:e0:a5:df:f1:82:75:5d:d3:71:37:98:d1:b1: cb:7c:ac:f1:cc:b7:01:7e:2e:e8:5c:c3:48:c5:a0:99:e0:c0: 87:74:b2:98:55:1a:71:00:ff:81:f9:65:da:56:64:35:b1:45: 07:cd:71:42:da:94:9a:22:75:07:b0:61:b8:f5:ac:ac:65:56: 64:ac:98:e1:2c:80:24:38:28:6c:1f:3e:2a:fd:fe:07:11:0d: 1d:44:52:63:da:a6:f1:2f:da:06:17:23:a1:b9:1a:e9:c8:c0: 00:ca:40:2e:2d:d2:37:4c:1f:64:d0:c0:b9:6a:f9:40:43:a9: 37:82:e5:0d:a2:a2:04:d9:04:0f:f9:5b:65:f0:d5:4f:1f:66: 00:8a:e3:4c:e8:f0:76:3a:19:f0:15:3e:58:aa:56:d6:e8:08: 3b:d9:e8:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjYwMzAxMjM0OTEyWhcNMjYwMzA4MjM0OTEyWjAYMRYwFAYD VQQDEw02OWE0ZDA3YS01MmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KJDiQN2TNSKWFd29nM8lOKuuCx7pmBUXk8ygFeVT+zOTKgDnEIl3xI8X3KW uu5/pXyQ1/pDg3MiVNLmuGobADZDSIlapgYul+s1D5XjlLljJ7z0AAUoi7stoXGv +u/j84dsHG80gBv7dj93/gi01O2IJRhSemL/KQpVOX3/bCD8vDcv5eFHHDRCoSoA oCBcR6WDG91qQ88jfugh5wi0K+1J2FSZxOknP4ggjQJU15RknK8/qOZZLYo1HSn1 fmLCa+lRm/1qzd4HSe8PU5Ivvb7ZIJxVHU0cJctjQhCx5zz56JqnsGJAOlswsklc SP0B8yqGDwDgOeEy3423WlhTrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA2qw9rI NvWGqOg1XMKBP/c/AlcRMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9CNTc3M0FBQzU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82 Sk9DZG5HTVhpbHdMTGFBZDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnGLsMGTdfLo3qNG22ov/oUwgYSEfFclU8nsIqWYTBkAVNLO0X41zum3UIkJa H1RQbR3IaiGcxn0rFMCUFUhFNec9tteBU6SLL0iUePoPQ9UlZ84FVKv42yH5rTFf +BPgpd/xgnVd03E3mNGxy3ys8cy3AX4u6FzDSMWgmeDAh3SymFUacQD/gfll2lZk NbFFB81xQtqUmiJ1B7BhuPWsrGVWZKyY4SyAJDgobB8+Kv3+BxENHURSY9qm8S/a Bhcjobka6cjAAMpALi3SN0wfZNDAuWr5QEOpN4LlDaKiBNkED/lbZfDVTx9mAIrj TOjwdjoZ8BU+WKpW1ugIO9nolg== -----END CERTIFICATE-----Generated at Mon Mar 2 08:07:49 2026 by rpki-client