$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: j48MWKOr0m6XPVKiqPEPuBnUCh/kBfAtuJvm+meHtCo= Subject key identifier: 4C:04:B3:1B:3E:CE:F6:07:48:64:D8:AC:C0:9E:7A:EE:1E:2E:3E:33 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 044D Signing time: Wed 13 May 2026 00:37:18 +0000 Manifest this update: Wed 13 May 2026 00:37:18 +0000 Manifest next update: Wed 20 May 2026 00:37:18 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: rZReS+fl4dElf/UWrBRChhMnAtMCxFPx+o97zIiytDE=) 2: 69E7D456E8AD11F09A679225586F56BC.roa (hash: lxI4AM7NXgVEvV+kazkW7byb/+NAwQ7P+KwB4Rom6Yc=) 3: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: wfx2WG82kpqp78Jcf0u7LoLr2spZZPLV1CL27vl0TzQ=) 4: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: z09c3pfBnLaBhRaO5NZ8zDgzevr5k6+alsOTlNNxpcY=) 5: F83786F4030011F0984B974FC4F9AE02.roa (hash: kNXMnWEX+sWevVcM5orrR1rktTyN5nt3ePYFbJMZxPI=) 6: 69738B14E8AD11F09A679225586F56BC.roa (hash: RKP5KnGoYS+/g5gzIpIJ+XrbtIbmLkTjn9xAfpNS1TU=) 7: A336FE62609111EFB751B771C4F9AE02.roa (hash: sy2Y2nb+dO6LmdXM8erwH1hDY9jJEvsOUd7p2YkpVI0=) 8: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 30QWvYag8cPnjx7r94UIr3J4yrJ7eaL16fZHXUvAvsY=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: nkGN0BuGNBQJa9SkDsBLxEVJf4EOwgrnQ8ymG8YYjkg=) 10: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: cebQ1cJMGyI64NGDe9bFCbEe55Fb3f/4FQEpVIgdXxY=) 11: 458AC21A684111EEA6632877C4F9AE02.roa (hash: ZcOPoAMlcJysHiwrollWvtIG++qNRpg0y+gKM/5fjXk=) 12: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: KMYU/tkIB1m1DV1X8R4g+uYkSGoa3XSDqGtlJKqm51Y=) 13: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: zfsi67ywK534SiQhgr/zUV/GZnBGCY0qZt7fhx8+eS4=) 14: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo=) 15: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: hNQsBmwpefYxmLDh564qD0pdNeyaVsppq4xHZ9ozBgo=) 16: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: NG9N4OPM2kWG9G97ereKXysGh7dTUhxuuvj7CCQ3CMs=) 17: 2F24736869C111EF92B54060C4F9AE02.roa (hash: VOckG74y7wIyjxUwmLFJHHGLX7LdlrZrniy9l6geOqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: May 13 00:37:18 2026 GMT Not After : May 20 00:37:18 2026 GMT Subject: CN=6a03c7be-a533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fb:0f:91:7a:47:94:26:99:90:c1:e5:ff:30: bb:bf:99:80:6e:bf:c5:72:81:3f:42:ae:11:ab:d1: a3:c7:bb:47:b5:08:c0:3e:3a:1a:db:8d:fe:d4:52: d6:4f:50:1f:61:24:a0:96:16:fd:12:ee:46:0e:24: d3:d6:6e:ad:8f:a6:14:98:e5:ef:92:6a:5a:69:f2: 18:0c:7d:63:05:0f:27:33:97:5a:c5:9c:b6:b1:5f: 8c:f3:9d:13:ab:b6:39:c6:8d:90:3d:36:0b:a8:8f: 66:63:b0:f8:2d:66:0b:30:2f:49:80:cf:1e:b4:1d: 94:46:74:47:32:ce:db:05:02:bf:47:7b:32:42:08: 5d:22:29:bf:90:77:9d:83:92:57:63:d9:4a:3c:86: 86:22:92:10:e9:4a:82:a8:69:fc:27:d8:e0:50:1b: a9:4d:bc:cd:55:77:1d:0e:b0:35:bf:c1:5b:78:05: a9:95:06:6d:61:e4:55:c0:f1:ec:a6:a2:84:c2:e3: ea:a2:f0:9c:e6:b1:65:f7:d2:6d:61:6e:95:c2:a5: aa:e9:0b:31:ff:e4:ec:00:6d:14:00:84:ee:81:e4: 44:f0:7e:15:7c:11:c5:f4:4f:27:58:c3:50:e8:b9: f5:1a:75:df:b2:d3:89:0b:de:ac:71:c6:ac:1a:d8: 33:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:04:B3:1B:3E:CE:F6:07:48:64:D8:AC:C0:9E:7A:EE:1E:2E:3E:33 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:b6:44:c9:a3:2c:ae:ee:d6:31:1e:fd:44:fd:7f:fc:52:68: 03:c9:b2:27:17:44:f9:e2:c0:21:e3:79:de:57:78:0a:fc:6f: 8a:94:5a:b3:54:97:b3:40:45:a5:d8:28:7d:60:03:05:4f:42: 62:d2:01:dd:1d:82:41:d8:62:96:f2:ec:fa:9b:cc:8f:11:db: ad:8c:50:22:5c:c8:73:9a:86:d3:04:41:f9:4f:34:88:59:3b: e7:31:06:14:d3:64:36:e6:22:6d:9c:4c:ca:dc:de:2d:dd:08: 3c:d8:72:b6:00:64:7d:36:21:b6:af:fc:75:88:a2:a9:9a:fa: 90:3b:a4:d9:19:98:3d:fa:17:26:ad:c5:46:f8:62:07:f0:30: d6:d9:7a:cc:34:e3:11:4c:87:ee:19:dd:cc:bf:76:98:4d:fd: fb:eb:5e:3a:8b:7e:45:1c:b5:62:04:de:93:60:96:d4:58:48: f2:79:ea:d1:de:64:b3:8f:ef:1f:1d:22:77:5d:af:cb:a7:52: d9:16:9d:d3:6b:91:04:f2:13:47:be:e1:3b:a8:a1:b1:18:bc: 00:63:9e:7f:57:6e:13:97:82:94:56:be:62:b8:61:5d:9a:ee: 5b:38:29:03:d6:70:c9:90:0a:0d:ad:59:2e:02:47:e5:bd:e6: 0c:92:ad:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwNTEzMDAzNzE4WhcNMjYwNTIwMDAzNzE4WjAYMRYwFAYD VQQDEw02YTAzYzdiZS1hNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjfsPkXpHlCaZkMHl/zC7v5mAbr/FcoE/Qq4Rq9Gjx7tHtQjAPjoa243+1FLW T1AfYSSglhb9Eu5GDiTT1m6tj6YUmOXvkmpaafIYDH1jBQ8nM5daxZy2sV+M850T q7Y5xo2QPTYLqI9mY7D4LWYLMC9JgM8etB2URnRHMs7bBQK/R3syQghdIim/kHed g5JXY9lKPIaGIpIQ6UqCqGn8J9jgUBupTbzNVXcdDrA1v8FbeAWplQZtYeRVwPHs pqKEwuPqovCc5rFl99JtYW6VwqWq6Qsx/+TsAG0UAITugeRE8H4VfBHF9E8nWMNQ 6Ln1GnXfstOJC96sccasGtgzKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEwEsxs+ zvYHSGTYrMCeeu4eLj4zMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiLZEyaMsru7WMR79RP1//FJoA8myJxdE+eLAIeN53ld4CvxvipRas1SXs0BF pdgofWADBU9CYtIB3R2CQdhilvLs+pvMjxHbrYxQIlzIc5qG0wRB+U80iFk75zEG FNNkNuYibZxMytzeLd0IPNhytgBkfTYhtq/8dYiiqZr6kDuk2RmYPfoXJq3FRvhi B/Aw1tl6zDTjEUyH7hndzL92mE39++teOot+RRy1YgTek2CW1FhI8nnq0d5ks4/v Hx0id12vy6dS2Rad02uRBPITR77hO6ihsRi8AGOef1duE5eClFa+YrhhXZruWzgp A9ZwyZAKDa1ZLgJH5b3mDJKtQQ== -----END CERTIFICATE-----Generated at Wed May 13 07:16:27 2026 by rpki-client