$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: RVYvmGX3s78fsixIOV6ly9Pcg1/yE+nJvzrSwVXrL2I= Subject key identifier: 6F:CC:05:5A:FA:7D:04:47:9E:1E:A6:37:31:FB:AE:39:43:1F:C7:13 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0900 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 08D3 Signing time: Mon 20 Oct 2025 21:23:32 +0000 Manifest this update: Mon 20 Oct 2025 21:23:32 +0000 Manifest next update: Mon 27 Oct 2025 21:23:32 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: v8DV9ouBMdfgndEIXypTOTOg1+rLAa5sVY1qBRfck2k=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: bPeJO2btPaCYUVh0qNcUsTHYhYl9S+AMYJDMiRwcwDE=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: /6RdNjawuKYuhK/injB7VuoeyL7n6oTSV9kNVsfLQfE=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K4ZsrhlRHbGz6KmikspiKMatFVTA+yV67UI0J6tV1jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Oct 20 21:23:32 2025 GMT Not After : Oct 27 21:23:32 2025 GMT Subject: CN=68f6a854-0cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4e:75:e7:a8:d8:3d:cd:4d:21:95:00:c5:c8: 49:45:04:22:0d:57:c5:8a:46:ab:d3:ae:52:d8:c0: 03:4a:e9:7a:cb:99:a2:62:4a:90:1c:db:1a:40:1a: 24:70:f1:8f:02:02:78:04:7b:6c:a2:97:1f:dd:e3: b9:55:89:f3:91:d7:62:22:f1:72:fc:53:fc:66:f0: 37:89:28:7c:b1:63:f3:c3:63:b2:68:d9:97:a6:dd: 59:a8:8d:1f:0b:74:49:04:ab:94:4c:5f:b6:10:b0: 49:93:38:ef:a4:24:5f:4d:d9:62:d9:35:47:20:96: 07:d2:37:6c:27:22:ab:b5:4e:32:dc:9c:36:14:00: 15:b8:0d:1f:32:e8:c6:ce:f1:35:2b:c7:be:08:94: 8b:4f:83:d7:03:4c:ce:66:84:7d:92:65:9a:66:5e: 2b:23:e3:c3:c4:f7:1c:1e:57:db:db:58:05:f8:72: 73:5c:53:fc:91:fe:ac:f5:f0:c9:a8:3c:2b:4d:62: 9b:a1:63:83:4b:b2:3c:cd:ba:0e:e8:63:51:39:c2: 62:c2:0f:b9:cb:84:dd:4a:38:d0:da:ab:5d:d6:a5: a2:60:d2:29:a3:73:e6:9f:61:eb:fe:e4:b2:19:59: 41:85:fe:7f:31:77:c0:a3:69:fe:a8:52:51:37:fc: 4f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CC:05:5A:FA:7D:04:47:9E:1E:A6:37:31:FB:AE:39:43:1F:C7:13 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:22:90:67:63:f0:5b:f5:a8:ad:0f:96:db:97:32:96:35:9c: fe:bc:f1:b4:54:ec:1e:8f:a5:fd:df:59:e3:9e:4d:33:76:11: 04:85:5c:c6:9f:bb:74:58:06:56:68:11:af:f8:3c:1b:b6:1f: 64:2d:f1:f1:c0:a3:17:25:b2:b7:20:c2:f4:9e:bd:bc:68:62: 4b:29:1b:71:52:91:72:1a:b5:24:51:46:2f:17:a7:bd:da:d0: 0b:38:0d:a5:c7:50:72:c5:2e:d8:ab:92:23:a8:87:9f:22:23: 5f:f0:3a:5c:a6:cf:61:f3:98:be:c1:f4:57:8c:2a:ef:30:e2: 2d:a2:42:a2:54:3b:56:c3:e5:19:be:25:e4:96:49:8e:77:6a: 62:c2:1b:42:62:60:02:c6:e0:f1:f2:1c:f5:94:5c:60:0b:a8: 22:af:25:34:b2:27:91:47:54:ed:88:45:8e:c6:d9:18:70:89: a9:85:42:f0:b0:23:50:f6:29:c9:76:42:80:cf:29:52:32:b7: 08:cd:d9:d5:6c:d4:31:da:0a:c2:dc:f2:a2:0c:96:ec:e3:d8: cd:88:4d:26:ac:4f:28:69:05:a7:9e:75:a1:24:6b:c7:44:e8: 9b:99:b1:58:d5:a3:fe:91:ce:89:45:e7:84:6a:2b:92:15:b9: 34:66:a0:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUxMDIwMjEyMzMyWhcNMjUxMDI3MjEyMzMyWjAYMRYwFAYD VQQDEw02OGY2YTg1NC0wY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApE5156jYPc1NIZUAxchJRQQiDVfFikar065S2MADSul6y5miYkqQHNsaQBok cPGPAgJ4BHtsopcf3eO5VYnzkddiIvFy/FP8ZvA3iSh8sWPzw2OyaNmXpt1ZqI0f C3RJBKuUTF+2ELBJkzjvpCRfTdli2TVHIJYH0jdsJyKrtU4y3Jw2FAAVuA0fMujG zvE1K8e+CJSLT4PXA0zOZoR9kmWaZl4rI+PDxPccHlfb21gF+HJzXFP8kf6s9fDJ qDwrTWKboWODS7I8zboO6GNROcJiwg+5y4TdSjjQ2qtd1qWiYNIpo3Pmn2Hr/uSy GVlBhf5/MXfAo2n+qFJRN/xPxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/MBVr6 fQRHnh6mNzH7rjlDH8cTMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIIpBnY/Bb9aitD5bblzKWNZz+vPG0VOwej6X931njnk0zdhEEhVzG n7t0WAZWaBGv+Dwbth9kLfHxwKMXJbK3IML0nr28aGJLKRtxUpFyGrUkUUYvF6e9 2tALOA2lx1ByxS7Yq5IjqIefIiNf8Dpcps9h85i+wfRXjCrvMOItokKiVDtWw+UZ viXklkmOd2piwhtCYmACxuDx8hz1lFxgC6giryU0sieRR1TtiEWOxtkYcImphULw sCNQ9inJdkKAzylSMrcIzdnVbNQx2grC3PKiDJbs49jNiE0mrE8oaQWnnnWhJGvH ROibmbFY1aP+kc6JReeEaiuSFbk0ZqCE -----END CERTIFICATE-----Generated at Tue Oct 21 00:43:33 2025 by rpki-client