$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: zRhB11RZYcAyKFMDVsyn9rS6tTZap+M3GW0tMegTMHk= Subject key identifier: FF:2A:C0:14:81:C4:49:4E:E4:CD:67:40:B6:C2:88:28:60:80:DC:22 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 093E Signing time: Tue 12 May 2026 20:19:05 +0000 Manifest this update: Tue 12 May 2026 20:19:05 +0000 Manifest next update: Tue 19 May 2026 20:19:05 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: OapPqTJ1gTT8+uCG3gDzeKO2/ro62sr1ELcqz1tzV10=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: +PSgrTx8lXFFvvdktY3RXfTL/A83EghlvOOu8ypgZIc=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: lmS+7uFn8RH9fc0jbeBbvg4YMmHae9TzPRYAxD2jSss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2417 (0x971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: May 12 20:19:05 2026 GMT Not After : May 19 20:19:05 2026 GMT Subject: CN=6a038b39-80e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:10:a8:ff:bb:89:79:e6:a9:79:39:f4:e5:1d: 30:24:a3:33:42:14:a1:01:9e:66:ff:39:69:dd:35: c7:b3:5c:e5:ff:63:a3:75:02:c0:8d:b2:6b:e6:58: f1:4f:82:90:62:f9:44:8f:8d:ad:01:b1:3c:79:70: 12:d8:ea:52:08:63:89:92:75:95:58:b2:ef:37:42: 14:b8:7a:04:86:20:bc:6c:0d:be:a5:32:e0:e2:3b: 2c:c6:03:c2:33:a9:26:5e:64:dc:4a:21:6b:0f:93: 39:da:80:ab:ee:3e:29:9c:c9:82:97:4a:a8:a8:2d: 33:59:f3:d3:93:ad:45:f0:f1:93:50:65:5e:93:bf: 0f:b0:23:3c:ab:c9:5b:51:8a:eb:20:33:81:15:28: eb:66:82:7e:e4:1f:76:59:36:a7:d8:3d:84:0d:69: 3d:52:48:e5:bb:47:74:6c:13:4f:1e:c4:71:54:73: 97:c3:d0:2e:ee:e3:fd:d0:67:ee:b2:4f:45:55:b1: b4:e8:ae:8e:f3:5c:d6:79:35:20:d4:06:79:5b:23: e2:b7:0b:2b:29:63:64:98:d2:86:3b:aa:a6:31:1f: b8:ee:77:eb:ba:7e:43:19:de:20:f5:51:b2:e2:f1: 75:42:a8:df:94:f4:d3:af:6b:8e:98:bc:8b:6d:6d: ea:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2A:C0:14:81:C4:49:4E:E4:CD:67:40:B6:C2:88:28:60:80:DC:22 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:21:a0:0f:b4:ea:91:38:a1:d6:7e:89:4b:04:cf:76:1c:e6: 2e:9f:56:bb:ec:bf:4f:e0:50:98:af:07:3b:ad:fa:30:57:9c: b3:11:81:91:dc:28:b0:de:96:63:dc:52:fc:02:f2:84:57:13: 41:83:cd:56:f1:c4:e0:b5:b6:21:b1:9a:f3:00:99:0d:f4:c8: b4:ee:8f:71:6e:bc:5b:2b:47:fe:9c:2b:b4:cf:fc:ea:97:2b: d7:6b:12:05:3c:3f:5b:fd:10:2e:1f:28:55:26:c2:76:4d:6d: a1:fa:1d:2e:bf:b7:7d:48:75:7e:ba:bc:7d:3f:b9:4b:a7:79: 5b:90:c6:9c:f7:24:54:71:76:9c:fa:1d:09:f6:0f:87:e6:16: fc:1f:2d:bd:45:7a:ec:85:6e:21:5b:bc:aa:3b:53:a7:35:a7: 96:95:ec:9c:00:d2:f9:d8:b6:03:8d:ac:e3:57:b4:a4:32:1a: c9:ed:27:e5:30:0c:15:6d:48:98:db:81:26:3b:45:73:f6:a7: 1e:44:f2:27:e9:77:08:aa:df:22:a4:83:ac:c0:3d:13:03:ab: 94:03:89:b6:dc:48:0c:72:f2:68:af:b1:98:14:06:3f:03:9e: a7:a3:c8:e7:ec:8b:8e:e3:03:2e:69:e1:46:8b:b9:7b:2e:58: d3:92:2d:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwNTEyMjAxOTA1WhcNMjYwNTE5MjAxOTA1WjAYMRYwFAYD VQQDEw02YTAzOGIzOS04MGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhCo/7uJeeapeTn05R0wJKMzQhShAZ5m/zlp3TXHs1zl/2OjdQLAjbJr5ljx T4KQYvlEj42tAbE8eXAS2OpSCGOJknWVWLLvN0IUuHoEhiC8bA2+pTLg4jssxgPC M6kmXmTcSiFrD5M52oCr7j4pnMmCl0qoqC0zWfPTk61F8PGTUGVek78PsCM8q8lb UYrrIDOBFSjrZoJ+5B92WTan2D2EDWk9Ukjlu0d0bBNPHsRxVHOXw9Au7uP90Gfu sk9FVbG06K6O81zWeTUg1AZ5WyPitwsrKWNkmNKGO6qmMR+47nfrun5DGd4g9VGy 4vF1QqjflPTTr2uOmLyLbW3qowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP8qwBSB xElO5M1nQLbCiChggNwiMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZSGgD7TqkTih1n6JSwTPdhzmLp9Wu+y/T+BQmK8HO636MFecsxGBkdwosN6W Y9xS/ALyhFcTQYPNVvHE4LW2IbGa8wCZDfTItO6PcW68WytH/pwrtM/86pcr12sS BTw/W/0QLh8oVSbCdk1tofodLr+3fUh1frq8fT+5S6d5W5DGnPckVHF2nPodCfYP h+YW/B8tvUV67IVuIVu8qjtTpzWnlpXsnADS+di2A42s41e0pDIaye0n5TAMFW1I mNuBJjtFc/anHkTyJ+l3CKrfIqSDrMA9EwOrlAOJttxIDHLyaK+xmBQGPwOep6PI 5+yLjuMDLmnhRou5ey5Y05ItjQ== -----END CERTIFICATE-----Generated at Wed May 13 09:09:51 2026 by rpki-client