$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: CyJ/C1pKkp6jL/88R/aK9397UDDZ73oPPIUWIdOCddI= Subject key identifier: EE:36:49:23:DD:05:6B:98:FA:6F:EF:5F:2B:64:C1:50:2D:16:59:E8 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 044C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03DD Signing time: Sun 19 Oct 2025 02:50:58 +0000 Manifest this update: Sun 19 Oct 2025 02:50:57 +0000 Manifest next update: Sun 26 Oct 2025 02:50:57 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: 5XuUjW+m9Ki5r88zbskcmgOIONOWl+sbjFJUPxNkWTI=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Oct 19 02:50:57 2025 GMT Not After : Oct 26 02:50:57 2025 GMT Subject: CN=68f45212-f00a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:00:17:c5:1a:ae:86:cf:8c:3d:85:ce:dc: ce:98:e7:07:c8:6f:8f:90:88:68:b8:cf:df:04:33: e9:bf:10:5f:08:dd:e0:7e:77:5e:24:7c:8f:61:e9: 6f:d6:66:41:1c:71:4e:a4:70:44:a6:de:f9:cf:14: 49:30:48:26:95:07:68:c3:f9:01:fe:8b:b4:b3:1c: 67:cd:9a:a9:4e:0e:04:03:a3:bc:92:47:6d:a0:19: ff:0c:83:af:dd:72:8b:b3:c6:4c:77:a0:c8:bf:5f: 92:7b:3f:d8:ed:74:f2:45:f3:24:66:0f:21:e2:a4: 54:36:f1:24:ef:cc:a8:ac:a1:be:dd:58:02:8a:57: 07:78:02:06:e9:da:43:4f:71:eb:fe:4f:83:bf:0e: 00:05:ed:56:c0:70:92:aa:6b:08:72:ec:c1:d0:ed: 2b:a6:be:51:11:80:59:a8:f0:f4:b7:5d:d0:34:11: 73:7c:79:12:b8:70:eb:1e:b5:a5:ed:84:70:32:01: cb:15:b8:7c:d5:e7:5a:19:2d:b9:17:86:da:8d:f1: 08:a4:b3:74:7f:b5:ef:ea:32:36:f7:59:88:65:a1: 1a:d7:b3:5b:60:98:01:8d:85:a7:6a:a6:6c:88:b2: 6d:e4:ba:6c:2d:cc:7d:cb:e1:0f:27:fd:f2:78:ff: 7d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:36:49:23:DD:05:6B:98:FA:6F:EF:5F:2B:64:C1:50:2D:16:59:E8 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b6:cc:44:22:17:d0:2e:91:40:fc:57:d8:58:31:8f:b4:71: 5e:77:cf:e3:c3:41:c7:2b:19:fb:59:ff:9f:bc:50:79:39:ac: e7:7b:1a:6b:65:bf:57:82:be:69:73:18:7d:14:c9:d6:99:74: ca:bb:cb:e6:cb:3c:36:05:c3:ba:f8:87:ae:16:27:bf:7f:bc: 2a:17:3b:4f:70:6f:6f:cc:08:f8:18:75:fa:ba:f5:d9:89:b1: 80:3b:13:29:f7:af:66:0f:4c:9d:94:50:9a:46:bb:34:76:ed: fc:dc:ea:ff:2c:4c:c7:de:ce:f3:c8:6e:bb:73:79:cc:a7:a3: 85:de:ba:62:fa:5e:74:ee:b4:73:f8:12:ca:91:05:3c:6b:47: 8d:93:b4:c7:fd:da:c1:db:90:8f:b8:f9:35:7c:98:43:d7:16: 9e:b6:43:06:4c:c0:3b:78:ad:e2:ac:2b:89:ed:a8:84:40:a3: 59:45:75:3e:41:ce:b3:3c:69:76:27:d3:53:d3:50:5d:66:9e: 7d:1c:cf:91:9b:38:db:9a:43:b9:af:02:3e:73:4a:96:c2:00: fd:bb:70:55:23:78:01:7c:9e:08:d5:47:ce:14:7a:6b:9f:fb: 59:3d:34:1a:b2:d7:5e:76:cf:7f:80:80:be:e9:43:00:65:2c: 56:35:de:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUxMDE5MDI1MDU3WhcNMjUxMDI2MDI1MDU3WjAYMRYwFAYD VQQDEw02OGY0NTIxMi1mMDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGEAF8UarobPjD2FztzOmOcHyG+PkIhouM/fBDPpvxBfCN3gfndeJHyPYelv 1mZBHHFOpHBEpt75zxRJMEgmlQdow/kB/ou0sxxnzZqpTg4EA6O8kkdtoBn/DIOv 3XKLs8ZMd6DIv1+Sez/Y7XTyRfMkZg8h4qRUNvEk78yorKG+3VgCilcHeAIG6dpD T3Hr/k+Dvw4ABe1WwHCSqmsIcuzB0O0rpr5REYBZqPD0t13QNBFzfHkSuHDrHrWl 7YRwMgHLFbh81edaGS25F4bajfEIpLN0f7Xv6jI291mIZaEa17NbYJgBjYWnaqZs iLJt5LpsLcx9y+EPJ/3yeP99dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO42SSPd BWuY+m/vXytkwVAtFlnoMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFtsxEIhfQLpFA/FfYWDGPtHFed8/jw0HHKxn7Wf+fvFB5Oaznexpr Zb9Xgr5pcxh9FMnWmXTKu8vmyzw2BcO6+IeuFie/f7wqFztPcG9vzAj4GHX6uvXZ ibGAOxMp969mD0ydlFCaRrs0du383Or/LEzH3s7zyG67c3nMp6OF3rpi+l507rRz +BLKkQU8a0eNk7TH/drB25CPuPk1fJhD1xaetkMGTMA7eK3irCuJ7aiEQKNZRXU+ Qc6zPGl2J9NT01BdZp59HM+RmzjbmkO5rwI+c0qWwgD9u3BVI3gBfJ4I1UfOFHpr n/tZPTQastdeds9/gIC+6UMAZSxWNd5F -----END CERTIFICATE-----Generated at Mon Oct 20 07:56:05 2025 by rpki-client