$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: FAUJrll3O31lS5E6BngSuhFJLkc50N9+7I/JvOgYp3I= Subject key identifier: F9:F8:37:42:44:92:74:6E:54:B9:4C:5C:D4:E6:E8:E9:7A:1D:26:AE Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 042D Signing time: Wed 11 Mar 2026 00:04:31 +0000 Manifest this update: Wed 11 Mar 2026 00:04:30 +0000 Manifest next update: Wed 18 Mar 2026 00:04:30 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: xCB7fQds3T4cDO3XYL5bdmdi+92G0HZ5nPiAyzfWq/o=) 2: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 3: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) 4: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 5: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 6: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 7: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 8: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 9: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 11: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 12: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) 13: F83786F4030011F0984B974FC4F9AE02.roa (hash: kNXMnWEX+sWevVcM5orrR1rktTyN5nt3ePYFbJMZxPI=) 14: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) 15: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) 16: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 17: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 00:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Mar 11 00:04:30 2026 GMT Not After : Mar 18 00:04:30 2026 GMT Subject: CN=69b0b18f-4a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4d:88:98:98:7a:f8:64:d5:43:c3:ce:64:fe: a7:cf:2d:95:c1:da:88:e6:d4:91:5c:3f:cc:dc:a6: 9e:f0:12:b7:96:2d:25:a2:0b:9f:20:8a:c1:5a:3d: 7a:15:3d:2c:76:89:54:6a:ba:99:09:62:a4:2f:98: 0b:b0:73:f2:05:37:3d:80:da:22:93:54:17:63:4c: ee:a2:f3:17:1d:60:b4:f6:0b:b4:84:f9:dd:5c:75: ed:6e:c4:27:bd:b4:fe:00:e4:c6:6c:58:96:dd:e4: 05:91:a3:97:39:4f:d2:d2:b1:e9:0b:4a:46:40:de: 84:65:61:77:fa:1e:b1:9d:fc:c2:73:89:12:98:a7: da:ce:5d:c4:d1:d1:1d:fa:3d:9b:ef:1c:3f:2a:66: 17:29:a0:4d:4f:64:a3:ab:f6:93:4d:d6:ca:a3:7e: d4:9c:91:2b:b3:04:46:68:bc:8e:da:6b:fa:4a:70: 45:c6:b6:96:17:e1:96:61:24:ab:f7:5e:07:46:34: 1c:4a:69:42:14:96:e6:ca:33:81:bc:29:e0:f1:d6: ef:a4:12:2d:3c:66:aa:ec:30:bf:36:77:47:b5:33: ac:8a:ad:41:92:a8:4c:c6:5f:08:32:2d:ba:86:71: 09:bf:3a:88:29:3f:ef:64:97:97:2c:47:e5:d7:30: 1f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F8:37:42:44:92:74:6E:54:B9:4C:5C:D4:E6:E8:E9:7A:1D:26:AE X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:cb:c4:43:e8:dc:a5:c0:94:c2:b5:a4:0b:17:a7:eb:f3:5e: 26:5b:21:32:fe:10:09:49:96:4a:38:04:f4:c1:74:2b:69:63: cf:85:bb:fe:95:ff:3a:9a:48:4f:b0:95:3a:65:54:72:92:2f: 23:e0:b7:cd:7a:56:28:8e:38:dc:9a:3e:6f:bc:e2:ed:07:ec: ab:d3:8f:74:35:20:0c:3e:ae:b0:03:62:8d:03:16:e4:49:32: be:92:99:c5:d7:f7:08:9b:3a:a1:f7:f2:92:c4:d2:06:7a:3d: 64:0a:da:31:f6:56:51:7f:af:39:43:28:6c:a2:60:04:92:e4: 35:c9:5b:88:6a:9b:cd:fc:d1:57:81:da:c8:67:7b:de:8e:24: e9:b5:65:37:2c:ba:93:dd:cd:9d:2f:94:cc:a3:8d:81:83:59: 6c:81:01:c9:e8:c9:16:25:63:68:7d:b1:f2:f3:e1:ff:ff:71: ba:ec:bd:9b:0c:9b:21:0e:30:57:4a:a3:d8:ad:57:70:75:dd: 23:db:fc:50:97:16:a4:ae:06:08:44:b0:94:6f:52:b1:74:34: 91:e2:ca:96:6f:ab:bc:b1:33:39:91:80:be:db:53:2e:47:e6: df:1e:64:6d:4f:dd:99:4e:72:35:7e:d7:71:40:c5:c4:5a:e3: 72:ef:56:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwMzExMDAwNDMwWhcNMjYwMzE4MDAwNDMwWjAYMRYwFAYD VQQDEw02OWIwYjE4Zi00YTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAok2ImJh6+GTVQ8POZP6nzy2VwdqI5tSRXD/M3Kae8BK3li0logufIIrBWj16 FT0sdolUarqZCWKkL5gLsHPyBTc9gNoik1QXY0zuovMXHWC09gu0hPndXHXtbsQn vbT+AOTGbFiW3eQFkaOXOU/S0rHpC0pGQN6EZWF3+h6xnfzCc4kSmKfazl3E0dEd +j2b7xw/KmYXKaBNT2Sjq/aTTdbKo37UnJErswRGaLyO2mv6SnBFxraWF+GWYSSr 914HRjQcSmlCFJbmyjOBvCng8dbvpBItPGaq7DC/NndHtTOsiq1BkqhMxl8IMi26 hnEJvzqIKT/vZJeXLEfl1zAftQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPn4N0JE knRuVLlMXNTm6Ol6HSauMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPsvEQ+jcpcCUwrWkCxen6/NeJlshMv4QCUmWSjgE9MF0K2ljz4W7/pX/OppI T7CVOmVUcpIvI+C3zXpWKI443Jo+b7zi7Qfsq9OPdDUgDD6usANijQMW5EkyvpKZ xdf3CJs6offyksTSBno9ZAraMfZWUX+vOUMobKJgBJLkNclbiGqbzfzRV4HayGd7 3o4k6bVlNyy6k93NnS+UzKONgYNZbIEByejJFiVjaH2x8vPh//9xuuy9mwybIQ4w V0qj2K1XcHXdI9v8UJcWpK4GCESwlG9SsXQ0keLKlm+rvLEzOZGAvttTLkfm3x5k bU/dmU5yNX7XcUDFxFrjcu9WeA== -----END CERTIFICATE-----Generated at Wed Mar 11 11:12:03 2026 by rpki-client