$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: S8kghYN322HOXmvrRBbO7toKm3l8yGa1xPFknyTFIco= Subject key identifier: E3:3B:25:5D:1C:CE:A4:DA:47:F8:C2:2E:D9:FE:92:A2:1C:22:94:FB Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0445 Signing time: Mon 27 Apr 2026 00:28:42 +0000 Manifest this update: Mon 27 Apr 2026 00:28:42 +0000 Manifest next update: Mon 04 May 2026 00:28:42 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: QJIMuBHRoS+YFwunRREqhXbZa1LLYE7GFaBkAg3MazQ=) 2: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 3: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) 4: F83786F4030011F0984B974FC4F9AE02.roa (hash: kNXMnWEX+sWevVcM5orrR1rktTyN5nt3ePYFbJMZxPI=) 5: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 6: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 7: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 8: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 9: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) 10: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 11: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 12: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) 13: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) 14: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 15: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 16: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 17: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 00:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Apr 27 00:28:42 2026 GMT Not After : May 4 00:28:42 2026 GMT Subject: CN=69eeadba-90ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bf:40:80:0c:ef:ca:54:70:83:f8:a6:39:6a: 67:28:f8:cf:84:15:63:8f:de:5f:6a:81:15:62:29: 48:1b:07:9b:c3:92:22:71:d4:fe:d0:e5:16:82:8d: e4:d2:10:1b:1d:7f:b0:6e:77:a2:eb:cc:2d:a6:74: e8:73:e7:c9:30:53:35:9e:b2:79:62:8e:86:68:5e: 5d:02:cf:87:43:f3:e0:01:0b:7e:09:d5:92:7b:6c: 6b:7c:86:70:56:07:a2:96:d2:83:30:ec:ba:07:23: 39:4b:dd:3e:6e:8a:ee:d0:73:c0:d7:ec:dd:c6:28: a1:06:07:7e:70:b9:5d:3b:71:e9:d3:6a:91:5a:0b: d1:10:40:c2:1d:23:34:0a:ef:89:58:04:3c:26:ee: 29:e2:a0:72:e9:ac:cc:c4:1e:f4:15:69:b3:4c:e5: 60:f0:ca:19:3f:b2:27:c6:73:20:69:3a:18:5b:af: f8:c2:54:ee:c9:70:10:5e:9e:65:4d:91:f1:0b:62: bf:84:70:ef:01:35:7b:17:7d:f5:5b:1b:54:7f:70: b6:fe:a6:1b:41:02:0c:c3:32:ca:52:ea:ab:81:04: fb:c7:8f:70:6c:93:1b:b3:21:73:b4:b8:b5:b6:c7: 04:f6:e3:d2:01:bf:4d:48:b5:7c:44:81:36:fb:95: cd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3B:25:5D:1C:CE:A4:DA:47:F8:C2:2E:D9:FE:92:A2:1C:22:94:FB X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:7d:05:62:07:b3:02:d8:15:ab:0c:1e:88:5a:21:1f:47:2b: cb:23:ba:46:d6:c0:1c:30:6e:6e:87:01:c9:2c:82:10:60:b0: 6f:21:55:6d:ce:f3:69:d5:85:70:da:9b:6e:67:af:d4:0e:dc: 21:bb:0d:b2:62:14:c4:15:cf:6c:4b:73:6c:9b:30:a8:26:ed: 39:3f:81:e5:6c:d6:0e:61:cc:b0:f1:f7:50:9f:88:bd:70:e4: aa:70:9a:f2:4a:64:f7:46:a6:7c:f1:0e:63:97:3c:26:05:af: 1c:5e:01:58:d7:84:94:06:7d:97:63:9b:0f:9d:df:7c:3c:59: 07:6d:70:03:bb:71:d5:53:43:9e:94:5e:6e:08:78:d9:a4:da: 1c:31:84:a3:bd:9b:20:c9:19:de:8c:f9:e5:37:f9:9f:f7:4a: aa:c1:b1:c8:33:c0:a0:76:31:a0:19:ed:06:46:29:c8:d9:a2: 14:2f:47:db:4e:90:5e:76:14:97:84:b2:d7:3f:b8:0a:f8:50: b2:f0:16:7b:8e:75:7a:33:f7:d2:90:47:80:d8:fb:d9:99:95: 53:72:76:98:c6:3a:d4:89:8f:50:44:05:d4:a5:30:17:7f:6d: 70:bd:5f:44:c1:9f:2b:3f:5c:bd:fd:be:18:10:33:21:51:8d: 5e:87:ec:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwNDI3MDAyODQyWhcNMjYwNTA0MDAyODQyWjAYMRYwFAYD VQQDEw02OWVlYWRiYS05MGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxb9AgAzvylRwg/imOWpnKPjPhBVjj95faoEVYilIGwebw5IicdT+0OUWgo3k 0hAbHX+wbnei68wtpnToc+fJMFM1nrJ5Yo6GaF5dAs+HQ/PgAQt+CdWSe2xrfIZw VgeiltKDMOy6ByM5S90+boru0HPA1+zdxiihBgd+cLldO3Hp02qRWgvREEDCHSM0 Cu+JWAQ8Ju4p4qBy6azMxB70FWmzTOVg8MoZP7InxnMgaToYW6/4wlTuyXAQXp5l TZHxC2K/hHDvATV7F331WxtUf3C2/qYbQQIMwzLKUuqrgQT7x49wbJMbsyFztLi1 tscE9uPSAb9NSLV8RIE2+5XNGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOM7JV0c zqTaR/jCLtn+kqIcIpT7MB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt30FYgezAtgVqwweiFohH0cryyO6RtbAHDBubocBySyCEGCwbyFVbc7zadWF cNqbbmev1A7cIbsNsmIUxBXPbEtzbJswqCbtOT+B5WzWDmHMsPH3UJ+IvXDkqnCa 8kpk90amfPEOY5c8JgWvHF4BWNeElAZ9l2ObD53ffDxZB21wA7tx1VNDnpRebgh4 2aTaHDGEo72bIMkZ3oz55Tf5n/dKqsGxyDPAoHYxoBntBkYpyNmiFC9H206QXnYU l4Sy1z+4CvhQsvAWe451ejP30pBHgNj72ZmVU3J2mMY61ImPUEQF1KUwF39tcL1f RMGfKz9cvf2+GBAzIVGNXofs2w== -----END CERTIFICATE-----Generated at Mon Apr 27 12:39:39 2026 by rpki-client