$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft File: kof26C-PO6JOCdnGMXilwLLaAd4.mft (raw, json) Hash identifier: mrzxb+eL3w0xJKBgp4ldSutIYh8BiyKkVOt7fOD5C/k= Subject key identifier: 80:D3:8D:C7:B5:F3:2D:72:23:B1:BD:04:F5:3E:17:D6:0B:A5:A0:DA Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft Manifest number: 0BB6 Signing time: Thu 16 Apr 2026 19:11:24 +0000 Manifest this update: Thu 16 Apr 2026 19:11:24 +0000 Manifest next update: Thu 23 Apr 2026 19:11:24 +0000 Files and hashes: 1: kof26C-PO6JOCdnGMXilwLLaAd4.crl (hash: 88RwNsXyRYl4eJkGFnHLRCbIoR93Xo/stZHOKj7AOKg=) 2: B1986BCE2E2411EB8AF6BB67C4F9AE02.roa (hash: l19IcHrq3/s7bkVZYJxzqFC2aowTPUonke4uOMcPczc=) 3: 71AD02DC194F11ED818A3C66C4F9AE02.roa (hash: ROZc9LLExxAKSmBJDb4gQXjvPcIeYOybm5faBsQ7IsY=) 4: 4B82FA441A8611ECB908E939C4F9AE02.roa (hash: +GV9xhTlFORtjXxee7C6hBiagIilBpwJ2zPhAY4Q/SY=) 5: 5180A6FE1CD811F196994CA9363D8C67.roa (hash: SWKDhCz2E/CT6y8saxZMqLsBGiJ4AZkgU/gomKXe6eo=) 6: 7978E3F6602811EFB5954527C4F9AE02.roa (hash: Ty4ZYwQyvMEEFSGfaZFvWi2WTAO0bLvXbSZDNMOJw/s=) 7: AB988312177211EBAC79CC7EC4F9AE02.roa (hash: Ajj1+XIv2lN+bJkfK3jiIAMbBKfMDrx1rrpjChWFrTw=) 8: 449FE2BE594411EA962D7646C4F9AE02.roa (hash: 6nAz8JDLRXZpp0YQMDx9IUtnZhPPPPFT4QGkXVk5rN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Apr 16 19:11:24 2026 GMT Not After : Apr 23 19:11:24 2026 GMT Subject: CN=69e1345c-b7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e9:e1:29:3a:bd:b3:91:80:8d:ed:9a:57:98: 32:df:ac:f7:73:03:cc:b6:8e:73:43:05:5e:d2:6b: 0e:6a:bd:7a:e6:23:88:7e:a6:8f:08:ca:ea:b0:71: fd:a0:46:b2:29:12:c7:46:59:34:4e:9b:74:12:1d: c4:e6:4f:dc:68:77:be:9b:9c:fe:db:1a:08:1a:3d: 0f:32:60:00:0c:5a:e8:9c:03:b8:8b:b0:54:11:b1: 5d:dd:df:2b:33:5d:38:28:27:78:41:77:b9:62:cd: 0d:3d:6c:51:08:76:71:5b:bf:48:71:ce:e7:c1:67: d9:1c:0d:0f:33:5e:be:ca:23:b6:7f:81:e8:92:f4: 58:4d:f3:d3:c1:ab:cc:05:0e:12:4d:a5:d1:7f:75: b6:c8:b0:8e:9d:fa:a6:27:d8:5d:8d:1a:3b:a7:9c: c0:65:f3:67:98:25:3c:ba:e4:74:c3:a4:9e:bf:71: 03:60:48:fc:8f:c2:dc:62:c6:8f:15:d5:bc:be:05: f6:1e:de:6c:3f:61:71:ef:96:ac:bb:b6:36:8c:e5: 3d:2b:0d:18:83:56:80:c2:da:df:ce:bf:8e:cd:a0: cd:a5:95:2b:f4:f7:e6:33:37:7c:fc:a6:40:b8:1e: a7:f4:b3:56:9e:c1:0a:24:fc:bd:bf:73:63:8d:b5: c7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D3:8D:C7:B5:F3:2D:72:23:B1:BD:04:F5:3E:17:D6:0B:A5:A0:DA X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ea:40:cd:29:fe:24:70:87:5c:c4:e7:be:94:7e:e7:44:c3: 7a:c6:43:91:ad:3b:1d:6f:87:65:8d:64:1f:0a:34:dd:b8:c9: 6b:e7:72:5a:d1:c4:04:66:60:59:f3:82:53:d2:86:7c:7f:80: 12:40:97:91:a1:e5:85:9f:80:ae:f8:91:e4:e0:de:e2:64:3e: 4b:33:7f:82:66:82:7f:02:d7:46:a4:ad:6c:36:10:5e:ea:7c: 5c:00:1a:39:8c:18:d3:2e:b3:2d:77:46:3d:d3:60:d3:19:44: 8c:6c:2a:13:a3:0d:99:8e:1e:16:80:40:97:13:59:9e:5a:5d: bd:88:5b:32:0d:81:df:e5:a1:8e:7e:ca:f5:a9:33:d1:87:5a: 22:e7:74:06:b4:36:14:5c:5f:01:43:23:39:77:34:0c:b6:39: ef:2c:00:a3:59:a3:04:5a:d9:44:d2:35:34:39:9b:99:e7:6b: 62:8e:75:a2:38:a3:2d:07:88:d3:9f:ee:12:b8:fd:99:2f:39: 87:62:65:de:7a:af:12:80:68:ce:55:33:10:89:6d:4c:90:22: ef:1b:2f:af:11:72:b4:ad:0c:71:37:43:76:b6:0e:4f:c4:c3: 62:1d:86:24:71:65:09:64:38:69:31:41:f3:88:9d:b7:0d:fc: 11:60:38:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjYwNDE2MTkxMTI0WhcNMjYwNDIzMTkxMTI0WjAYMRYwFAYD VQQDEw02OWUxMzQ1Yy1iN2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnenhKTq9s5GAje2aV5gy36z3cwPMto5zQwVe0msOar165iOIfqaPCMrqsHH9 oEayKRLHRlk0Tpt0Eh3E5k/caHe+m5z+2xoIGj0PMmAADFronAO4i7BUEbFd3d8r M104KCd4QXe5Ys0NPWxRCHZxW79Icc7nwWfZHA0PM16+yiO2f4HokvRYTfPTwavM BQ4STaXRf3W2yLCOnfqmJ9hdjRo7p5zAZfNnmCU8uuR0w6Sev3EDYEj8j8LcYsaP FdW8vgX2Ht5sP2Fx75asu7Y2jOU9Kw0Yg1aAwtrfzr+OzaDNpZUr9PfmMzd8/KZA uB6n9LNWnsEKJPy9v3NjjbXHiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIDTjce1 8y1yI7G9BPU+F9YLpaDaMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9CNTc3M0FBQzU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82 Sk9DZG5HTVhpbHdMTGFBZDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABOpAzSn+JHCHXMTnvpR+50TDesZDka07HW+HZY1kHwo03bjJa+dyWtHEBGZg WfOCU9KGfH+AEkCXkaHlhZ+ArviR5ODe4mQ+SzN/gmaCfwLXRqStbDYQXup8XAAa OYwY0y6zLXdGPdNg0xlEjGwqE6MNmY4eFoBAlxNZnlpdvYhbMg2B3+Whjn7K9akz 0YdaIud0BrQ2FFxfAUMjOXc0DLY57ywAo1mjBFrZRNI1NDmbmedrYo51ojijLQeI 05/uErj9mS85h2Jl3nqvEoBozlUzEIltTJAi7xsvrxFytK0McTdDdrYOT8TDYh2G JHFlCWQ4aTFB84idtw38EWA4LQ== -----END CERTIFICATE-----Generated at Fri Apr 17 14:50:55 2026 by rpki-client