$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: qHNhKsbnVmAX2Z/CUoQd2QqzNoMUSrCOyEY4BmlrfT0= Subject key identifier: F3:55:5B:6B:47:D3:C9:49:6F:1C:F3:5A:C4:AF:B1:A0:A0:8F:E9:5A Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03C0 Signing time: Sat 23 Aug 2025 01:10:55 +0000 Manifest this update: Sat 23 Aug 2025 01:10:54 +0000 Manifest next update: Sat 30 Aug 2025 01:10:54 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: 4Ebu2NV5VPGv7rYJKgC7BABTI89Nfqm68vrHia+wp7I=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Aug 23 01:10:54 2025 GMT Not After : Aug 30 01:10:54 2025 GMT Subject: CN=68a9151e-7287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:28:1a:29:c2:e0:6e:ad:90:8d:b9:c2:8c:f1: e0:83:6c:5f:48:91:bb:65:62:cb:0e:b8:2d:22:e0: 48:7d:07:c8:37:86:6d:f5:ad:50:ca:53:6e:05:e1: af:ea:0e:ba:86:30:d0:9f:97:e7:43:cf:f2:f4:d1: e5:06:82:f2:ff:c3:64:dc:04:a0:33:1a:eb:ec:bc: d6:7c:9b:27:63:c2:77:fa:45:d0:61:41:ec:5f:88: 70:9e:65:8a:24:76:d6:2d:79:ab:b7:69:5f:0d:65: 87:c2:9e:21:3c:a2:13:5a:1a:e7:c6:cb:51:39:ee: 07:3a:93:3f:cb:b1:5e:6f:09:c4:19:f1:0a:60:4b: 6f:ee:ac:69:39:93:0b:12:70:25:c0:0d:7e:2d:7c: e5:de:a5:40:1c:63:3f:8b:bc:26:6f:ee:df:c6:ca: a7:63:6a:6e:56:c2:42:83:2e:b6:b8:ab:69:58:b4: a3:f8:ea:f6:30:e1:c9:b4:a0:af:82:0d:1b:b1:53: a8:31:34:6e:65:ad:97:69:77:61:58:c1:6a:dd:67: c6:ba:97:39:5e:5a:72:66:ac:63:fc:13:14:aa:ed: b1:85:99:63:ed:a1:5e:c3:cf:2f:3e:af:59:9e:d2: b1:8c:2f:7e:16:5f:d5:c8:76:78:93:9b:23:b0:51: 31:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:55:5B:6B:47:D3:C9:49:6F:1C:F3:5A:C4:AF:B1:A0:A0:8F:E9:5A X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:a4:69:40:e6:cd:cf:19:92:67:8f:22:bc:65:d3:11:22:ce: 52:1b:3b:40:e6:d4:e1:ad:19:bd:75:8a:78:f8:53:08:43:01: 5b:6d:d4:ac:64:d9:96:88:66:96:66:da:03:92:90:2f:fa:b3: f5:9a:5a:db:1d:dd:f7:44:4a:74:38:df:cc:b9:ef:69:18:bc: 39:ec:73:bc:04:0f:48:48:08:04:18:ff:81:5a:57:19:1f:8a: 06:70:a6:ac:4e:63:cc:9e:85:cc:81:40:b8:a9:4d:12:6f:e6: 18:3c:69:1e:16:43:cc:7f:2b:2d:58:10:f9:79:e2:d0:f5:49: 32:72:ce:aa:c1:31:99:fd:07:4b:c9:e6:fa:cd:eb:2d:3d:4c: 27:dc:6a:b3:71:c1:c7:cf:82:4d:b0:06:c5:d2:61:96:56:ed: 7b:57:8b:cf:58:a1:ab:10:a7:2c:4a:e9:6e:23:90:0f:cf:fe: 6c:eb:e2:fe:d7:96:b1:f8:9c:f3:c0:59:92:03:43:97:0e:c3: 3c:a9:92:f4:12:bc:77:32:5b:b3:66:b3:73:e3:c0:6e:78:6e: c0:20:93:0d:fa:4c:51:14:89:a1:c7:e8:f6:11:c9:5c:56:25: ed:24:2d:9e:5b:3c:07:8d:0e:f3:14:35:dd:f4:e3:35:f3:cd: b4:c8:0c:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwODIzMDExMDU0WhcNMjUwODMwMDExMDU0WjAYMRYwFAYD VQQDEw02OGE5MTUxZS03Mjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SgaKcLgbq2QjbnCjPHgg2xfSJG7ZWLLDrgtIuBIfQfIN4Zt9a1QylNuBeGv 6g66hjDQn5fnQ8/y9NHlBoLy/8Nk3ASgMxrr7LzWfJsnY8J3+kXQYUHsX4hwnmWK JHbWLXmrt2lfDWWHwp4hPKITWhrnxstROe4HOpM/y7FebwnEGfEKYEtv7qxpOZML EnAlwA1+LXzl3qVAHGM/i7wmb+7fxsqnY2puVsJCgy62uKtpWLSj+Or2MOHJtKCv gg0bsVOoMTRuZa2XaXdhWMFq3WfGupc5XlpyZqxj/BMUqu2xhZlj7aFew88vPq9Z ntKxjC9+Fl/VyHZ4k5sjsFExjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNVW2tH 08lJbxzzWsSvsaCgj+laMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmpGlA5s3PGZJnjyK8ZdMRIs5SGztA5tThrRm9dYp4+FMIQwFbbdSs ZNmWiGaWZtoDkpAv+rP1mlrbHd33REp0ON/Mue9pGLw57HO8BA9ISAgEGP+BWlcZ H4oGcKasTmPMnoXMgUC4qU0Sb+YYPGkeFkPMfystWBD5eeLQ9Ukycs6qwTGZ/QdL yeb6zestPUwn3GqzccHHz4JNsAbF0mGWVu17V4vPWKGrEKcsSuluI5APz/5s6+L+ 15ax+JzzwFmSA0OXDsM8qZL0Erx3MluzZrNz48BueG7AIJMN+kxRFImhx+j2Eclc ViXtJC2eWzwHjQ7zFDXd9OM18820yAwV -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:32 2025 by rpki-client