$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: sQCN4RKot+IwKNAjsQ5Aw4/2INxu4R3Ym0BRFhm3+dU= Subject key identifier: 25:5B:D3:4B:59:20:14:08:C0:AD:05:F8:22:96:72:61:78:CD:5D:6B Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0958 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0925 Signing time: Tue 24 Mar 2026 20:04:45 +0000 Manifest this update: Tue 24 Mar 2026 20:04:44 +0000 Manifest next update: Tue 31 Mar 2026 20:04:44 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: hgUYUbwJlIo7G1hx4i5EAKzyORZZk/FMc29Jn+JqIU4=) 2: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ=) 3: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: +PSgrTx8lXFFvvdktY3RXfTL/A83EghlvOOu8ypgZIc=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: lmS+7uFn8RH9fc0jbeBbvg4YMmHae9TzPRYAxD2jSss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2392 (0x958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Mar 24 20:04:44 2026 GMT Not After : Mar 31 20:04:44 2026 GMT Subject: CN=69c2ee5c-e135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:9f:14:5f:71:ca:a4:d6:90:35:b8:94:4e:98: 60:ef:55:f8:c4:d2:24:8b:6f:f0:28:a7:e4:e4:12: e7:da:2e:fc:1e:05:5b:89:af:47:c4:03:24:69:79: aa:7a:d8:89:3d:cb:21:40:25:f1:07:04:4c:0f:83: f2:e4:72:0b:9b:32:22:b0:ea:59:85:3b:a6:c0:13: d8:85:a7:ad:9f:5f:41:43:dc:44:d2:93:a9:12:37: dd:b1:51:e8:38:42:9a:42:fe:96:af:22:f5:a3:97: 45:3e:4e:19:06:5f:02:06:76:f8:0e:c5:72:5a:7d: 7a:66:93:bf:7f:19:22:52:c1:36:cf:d9:cf:85:08: 94:36:35:9c:90:f3:8d:ce:79:b0:8d:bc:21:dd:6f: 9e:b5:4a:41:98:6f:a4:01:cf:20:c2:13:1c:e9:18: bc:01:50:fc:00:0d:75:24:af:60:4e:b7:d4:f5:50: 5a:27:34:ea:1d:7c:4b:1d:ab:d6:68:10:0a:59:13: 3f:b4:9d:9d:e8:93:00:e6:6d:80:41:b9:b9:82:5e: f3:bd:d9:1e:b3:c5:28:0e:8d:e3:73:59:a1:5b:8c: 2f:28:a3:41:04:75:21:73:c4:e8:e0:d0:c8:d4:4a: c4:d5:74:68:97:55:b9:b8:58:fb:32:96:d2:4d:c3: 76:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:5B:D3:4B:59:20:14:08:C0:AD:05:F8:22:96:72:61:78:CD:5D:6B X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f8:82:b1:85:0f:28:e4:bf:b4:be:d7:a4:85:16:e7:7a:9c: e6:43:1f:ae:4c:a0:f5:7c:81:09:73:ad:c7:96:87:f7:08:40: 10:1a:c0:20:af:44:21:be:35:d8:c7:f3:ca:e2:1f:5e:a0:93: c8:00:11:97:09:ea:02:b3:c6:fe:57:60:d8:04:c7:98:c9:19: 2a:f8:da:cd:6b:96:ca:de:45:c4:d8:e8:74:8c:96:b7:59:a7: c7:59:74:54:4a:e3:6a:68:5a:8c:0e:4b:6a:8a:bb:80:0b:78: 0a:b9:8f:ee:4c:a6:09:41:b2:5f:f3:26:87:b5:4c:1d:d7:7a: 37:b4:bc:5b:88:50:90:42:8c:f0:ca:0f:0d:fb:b5:f9:b7:bf: 94:e7:b5:32:3b:c7:cc:86:c1:72:e9:64:ad:32:7e:8d:4f:a6: 73:75:17:f5:cd:f5:ae:dd:01:18:04:b8:b7:43:d5:3d:c6:dd: 7f:f2:fe:d7:da:27:83:14:ad:f7:63:d4:95:25:98:40:fb:95: 25:39:15:f3:11:06:21:4c:b7:90:76:df:52:cf:d8:35:47:6e: 75:25:59:01:e1:5f:d3:d7:88:77:fe:07:0e:e2:ad:1c:89:9a: c0:ec:0d:b2:26:2c:30:d9:ee:1b:aa:3c:16:d6:3e:4a:7a:8b: 1e:bf:c9:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwMzI0MjAwNDQ0WhcNMjYwMzMxMjAwNDQ0WjAYMRYwFAYD VQQDEw02OWMyZWU1Yy1lMTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/p8UX3HKpNaQNbiUTphg71X4xNIki2/wKKfk5BLn2i78HgVbia9HxAMkaXmq etiJPcshQCXxBwRMD4Py5HILmzIisOpZhTumwBPYhaetn19BQ9xE0pOpEjfdsVHo OEKaQv6WryL1o5dFPk4ZBl8CBnb4DsVyWn16ZpO/fxkiUsE2z9nPhQiUNjWckPON znmwjbwh3W+etUpBmG+kAc8gwhMc6Ri8AVD8AA11JK9gTrfU9VBaJzTqHXxLHavW aBAKWRM/tJ2d6JMA5m2AQbm5gl7zvdkes8UoDo3jc1mhW4wvKKNBBHUhc8To4NDI 1ErE1XRol1W5uFj7MpbSTcN2OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCVb00tZ IBQIwK0F+CKWcmF4zV1rMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMPiCsYUPKOS/tL7XpIUW53qc5kMfrkyg9XyBCXOtx5aH9whAEBrAIK9EIb41 2MfzyuIfXqCTyAARlwnqArPG/ldg2ATHmMkZKvjazWuWyt5FxNjodIyWt1mnx1l0 VErjamhajA5Laoq7gAt4CrmP7kymCUGyX/Mmh7VMHdd6N7S8W4hQkEKM8MoPDfu1 +be/lOe1MjvHzIbBculkrTJ+jU+mc3UX9c31rt0BGAS4t0PVPcbdf/L+19ongxSt 92PUlSWYQPuVJTkV8xEGIUy3kHbfUs/YNUdudSVZAeFf09eId/4HDuKtHImawOwN siYsMNnuG6o8FtY+SnqLHr/J/g== -----END CERTIFICATE-----Generated at Thu Mar 26 00:53:06 2026 by rpki-client