$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: h5Y5UhAXz/Hu6r5graYKY1ioiwRozFDUzuZcj7WvhQA= Subject key identifier: D1:50:7B:83:2E:22:20:15:62:22:69:37:8A:C8:A0:5D:FB:F3:24:42 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03C7 Signing time: Fri 05 Sep 2025 01:14:26 +0000 Manifest this update: Fri 05 Sep 2025 01:14:26 +0000 Manifest next update: Fri 12 Sep 2025 01:14:26 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: gMINCJfAe1Bkj1wcEghvo3Fbejhn9zUBEEikR0tesl4=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Sep 5 01:14:26 2025 GMT Not After : Sep 12 01:14:26 2025 GMT Subject: CN=68ba3972-8166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:49:ea:15:69:39:f1:d6:27:2c:89:82:40:9e: 0c:fd:c1:36:4f:3a:25:0c:dd:91:a5:c9:b6:49:d2: 8d:ee:d2:14:1b:39:1d:5a:dc:18:bb:8e:8b:97:52: db:d3:b7:2e:cf:b9:00:f4:4f:57:16:25:aa:31:ed: e9:5e:ec:5e:78:60:54:4a:ef:f3:b7:19:b3:31:e1: 5b:24:99:c2:8a:d3:a3:35:11:79:40:b2:37:df:63: 07:08:cb:c5:84:e1:69:ec:52:15:65:ce:ed:0c:7e: f6:62:6b:e6:bd:aa:7b:dd:e9:89:d8:fb:89:c1:bd: 4f:bc:ee:b1:04:33:e3:12:38:ae:f8:ad:42:78:77: 20:1c:00:4e:ff:e2:69:4f:64:79:0d:12:a7:d4:58: 0b:af:95:78:96:e2:d8:ff:f6:c4:65:a3:be:ae:d5: 90:e2:f5:7d:df:f6:f8:37:99:5a:a8:b1:8e:9b:53: 0e:73:b6:13:fa:2d:6f:89:f5:9b:4b:9f:66:c4:52: e8:59:fb:c6:3a:c4:95:87:2b:b4:d6:a1:b2:39:3d: 8b:ab:bf:38:ad:be:fe:db:99:b1:9c:68:39:fa:8d: c7:b2:8a:ef:ab:3c:9c:49:d9:06:2a:f4:d7:2f:91: 95:52:cc:2f:37:da:d0:f7:3a:14:69:e0:50:13:db: 96:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:50:7B:83:2E:22:20:15:62:22:69:37:8A:C8:A0:5D:FB:F3:24:42 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:13:d2:d1:3a:8d:55:00:ab:7f:25:5e:8d:b4:23:69:ae:57: 50:5c:25:76:24:dc:e2:e7:24:e2:0f:2c:d7:e5:3a:a3:19:17: 98:52:43:23:22:c9:df:b8:33:2b:3a:af:ab:88:8c:d8:42:8b: 03:54:05:fa:83:36:f4:6a:55:4c:ae:48:ea:36:a0:60:f0:4a: 2b:78:79:fa:1f:bb:5f:3b:4a:1c:18:6e:6a:46:ab:ba:5e:bf: 25:38:84:cb:22:58:9a:7e:42:83:58:7e:c7:69:bd:62:4e:2e: 7b:19:39:a5:a6:df:2c:d2:63:f7:00:9f:96:a4:e7:9c:48:d3: b6:f3:69:b3:da:f7:7e:10:a4:69:82:a2:05:b0:67:6c:62:77: 07:db:d2:7d:4a:8c:f9:37:32:b5:57:0c:b8:39:3b:70:93:c1: eb:b5:17:a5:ae:76:75:fe:af:66:1c:83:bb:c9:83:2e:47:43: a5:b9:d3:9c:8e:7c:14:f8:07:cd:39:9c:83:46:73:87:04:b4: 3b:7e:ab:bb:7a:ff:49:cf:89:b8:65:04:e7:ca:00:40:42:a1: 72:10:ea:c3:5a:5f:8d:74:ba:e7:3f:43:cf:cb:53:1a:06:37: 97:98:52:17:de:36:0e:c3:02:ec:b2:cc:b9:eb:3c:a8:78:92: 0b:4e:b4:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwOTA1MDExNDI2WhcNMjUwOTEyMDExNDI2WjAYMRYwFAYD VQQDEw02OGJhMzk3Mi04MTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuknqFWk58dYnLImCQJ4M/cE2TzolDN2Rpcm2SdKN7tIUGzkdWtwYu46Ll1Lb 07cuz7kA9E9XFiWqMe3pXuxeeGBUSu/ztxmzMeFbJJnCitOjNRF5QLI332MHCMvF hOFp7FIVZc7tDH72Ymvmvap73emJ2PuJwb1PvO6xBDPjEjiu+K1CeHcgHABO/+Jp T2R5DRKn1FgLr5V4luLY//bEZaO+rtWQ4vV93/b4N5laqLGOm1MOc7YT+i1vifWb S59mxFLoWfvGOsSVhyu01qGyOT2Lq784rb7+25mxnGg5+o3HsorvqzycSdkGKvTX L5GVUswvN9rQ9zoUaeBQE9uWwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFQe4Mu IiAVYiJpN4rIoF378yRCMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXE9LROo1VAKt/JV6NtCNprldQXCV2JNzi5yTiDyzX5TqjGReYUkMj IsnfuDMrOq+riIzYQosDVAX6gzb0alVMrkjqNqBg8EoreHn6H7tfO0ocGG5qRqu6 Xr8lOITLIliafkKDWH7Hab1iTi57GTmlpt8s0mP3AJ+WpOecSNO282mz2vd+EKRp gqIFsGdsYncH29J9Soz5NzK1Vwy4OTtwk8HrtRelrnZ1/q9mHIO7yYMuR0OludOc jnwU+AfNOZyDRnOHBLQ7fqu7ev9Jz4m4ZQTnygBAQqFyEOrDWl+NdLrnP0PPy1Ma BjeXmFIX3jYOwwLsssy56zyoeJILTrSL -----END CERTIFICATE-----Generated at Sat Sep 6 02:25:09 2025 by rpki-client