$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: tab7hbyUhph2XSKtKdvf2jI/0H90iT/Mn39rXb6e/rE= Subject key identifier: EB:E7:6F:FB:BE:C3:BA:14:7F:AB:4D:22:F2:59:A6:19:C1:B0:EB:59 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 045E Signing time: Thu 11 Jun 2026 02:34:56 +0000 Manifest this update: Thu 11 Jun 2026 02:34:56 +0000 Manifest next update: Thu 18 Jun 2026 02:34:56 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: NQBkUeQJi1JZyRHns8JMfvVs78WfxJ9UWy32foyjez0=) 2: F83786F4030011F0984B974FC4F9AE02.roa (hash: gihosof38728B4SPmV9PgL0Vu4gCAdVLJnu1WOeWjlg=) 3: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) 4: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 5: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) 7: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 8: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 9: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) 10: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 11: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 12: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) 13: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 14: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 15: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 16: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 17: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 02:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1277 (0x4fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jun 11 02:34:56 2026 GMT Not After : Jun 18 02:34:56 2026 GMT Subject: CN=6a2a1ed0-9e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:26:90:bf:c5:c1:b8:39:45:ef:2b:9e:ea: 32:f1:14:49:75:42:71:a7:78:5d:f1:c0:15:83:a7: 41:2c:dd:5a:a6:3c:a7:5f:b4:ce:68:77:0d:c1:52: 34:65:39:84:29:10:8d:35:ce:e2:24:00:87:aa:c4: e4:10:d1:3e:76:8a:3d:9f:27:71:ee:15:06:2d:47: de:97:cc:7c:3c:1e:39:ba:3a:ea:15:d5:5d:14:f1: 81:ed:f5:c9:1d:2e:44:f0:7c:a2:fd:70:87:ab:88: 2d:b1:30:10:28:5c:7f:07:15:9b:0c:a7:c4:8b:a5: 8b:20:3b:a8:73:da:9e:18:1e:19:6d:01:23:5a:10: 7f:7e:f3:e9:1d:81:33:a6:86:e2:0d:20:4c:9d:a0: 90:86:7f:98:c3:fe:f1:af:5c:33:57:1a:b1:ff:e0: c4:a6:40:a0:53:b2:3d:e0:7e:dd:01:01:b5:38:5e: 7a:c4:a3:bd:93:93:ef:b3:44:01:1b:ec:63:8e:73: 20:80:ea:f2:48:cb:b0:88:40:e5:42:8e:84:bb:29: 9b:41:c3:1c:40:5e:30:86:09:1c:6e:f3:ab:4a:9b: c7:8d:1a:37:5f:13:07:18:30:91:1b:8d:c1:4f:19: 08:82:e3:c3:7d:e9:62:0f:5f:2d:43:ac:07:6a:38: 6c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E7:6F:FB:BE:C3:BA:14:7F:AB:4D:22:F2:59:A6:19:C1:B0:EB:59 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:fd:5a:e8:9f:8a:f0:b5:43:ec:a1:38:f9:21:3f:37:39:a8: e6:6a:a9:c9:2e:d2:6d:dd:36:00:e5:2e:57:79:18:a5:f1:c0: 0f:9a:42:ef:39:6d:64:70:9d:01:9c:a3:6a:26:ed:e7:db:1f: e9:57:35:cc:77:dc:22:ba:2a:c0:7d:40:0b:1b:da:ae:81:a9: ef:eb:d7:bd:1a:81:82:b6:b9:79:e8:52:67:a7:d7:ba:27:b4: cc:15:00:1d:53:8e:01:ae:ee:a9:e2:6f:ec:36:6e:e0:86:99: 5c:e9:c4:91:1c:8f:86:48:50:fe:c9:a5:86:f2:41:c9:23:a8: 6b:ba:60:78:c7:ec:6b:f6:fa:d3:c7:72:81:42:d7:df:95:2b: cb:71:7d:da:40:f9:c8:f4:c3:6f:3f:22:ab:7c:9c:4d:fd:80: db:59:b8:2d:8b:3d:18:d5:6e:fe:10:f8:0e:70:c2:ca:a5:20: a4:5a:a7:96:ad:0c:ea:08:f9:99:41:0b:64:c0:21:e0:91:b3: 3d:b3:ff:26:ec:e0:80:51:5f:ef:c1:a8:db:be:e4:c8:ce:26: 66:38:ce:38:87:7f:a8:a7:c5:cb:6d:cb:fd:a6:34:f8:88:c0: 11:bc:65:f4:b5:12:83:78:03:64:4e:7a:d6:47:5f:6d:78:42: 27:5c:a2:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwNjExMDIzNDU2WhcNMjYwNjE4MDIzNDU2WjAYMRYwFAYD VQQDEw02YTJhMWVkMC05ZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArr8mkL/Fwbg5Re8rnuoy8RRJdUJxp3hd8cAVg6dBLN1apjynX7TOaHcNwVI0 ZTmEKRCNNc7iJACHqsTkENE+doo9nydx7hUGLUfel8x8PB45ujrqFdVdFPGB7fXJ HS5E8Hyi/XCHq4gtsTAQKFx/BxWbDKfEi6WLIDuoc9qeGB4ZbQEjWhB/fvPpHYEz pobiDSBMnaCQhn+Yw/7xr1wzVxqx/+DEpkCgU7I94H7dAQG1OF56xKO9k5Pvs0QB G+xjjnMggOrySMuwiEDlQo6EuymbQcMcQF4whgkcbvOrSpvHjRo3XxMHGDCRG43B TxkIguPDfeliD18tQ6wHajhsSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvnb/u+ w7oUf6tNIvJZphnBsOtZMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFP1a6J+K8LVD7KE4+SE/Nzmo5mqpyS7Sbd02AOUuV3kYpfHAD5pC7zltZHCd AZyjaibt59sf6Vc1zHfcIroqwH1ACxvaroGp7+vXvRqBgra5eehSZ6fXuie0zBUA HVOOAa7uqeJv7DZu4IaZXOnEkRyPhkhQ/smlhvJBySOoa7pgeMfsa/b608dygULX 35Ury3F92kD5yPTDbz8iq3ycTf2A21m4LYs9GNVu/hD4DnDCyqUgpFqnlq0M6gj5 mUELZMAh4JGzPbP/JuzggFFf78Go277kyM4mZjjOOId/qKfFy23L/aY0+IjAEbxl 9LUSg3gDZE561kdfbXhCJ1yiuA== -----END CERTIFICATE-----Generated at Thu Jun 11 17:53:49 2026 by rpki-client