$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: hleVxhGTt4O60lfOv5u8SY61TmbRYiVcFW/xxyGKK4I= Subject key identifier: 91:35:7E:AD:7F:D4:11:39:21:AB:3B:1C:AA:A3:43:B5:B2:7C:52:C3 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0917 Signing time: Sat 28 Feb 2026 20:39:01 +0000 Manifest this update: Sat 28 Feb 2026 20:39:00 +0000 Manifest next update: Sat 07 Mar 2026 20:39:00 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: 4hwNDi0JMTlexFQD67aXNrbcAUrvxattcD8cpEowcC4=) 2: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: /6RdNjawuKYuhK/injB7VuoeyL7n6oTSV9kNVsfLQfE=) 3: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: bPeJO2btPaCYUVh0qNcUsTHYhYl9S+AMYJDMiRwcwDE=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K4ZsrhlRHbGz6KmikspiKMatFVTA+yV67UI0J6tV1jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Feb 28 20:39:00 2026 GMT Not After : Mar 7 20:39:00 2026 GMT Subject: CN=69a35265-257f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:4b:10:57:5f:a3:ab:0e:37:4a:b6:60:77: ff:1c:06:d5:81:b2:aa:85:8c:d5:88:d8:b1:f9:1f: 24:05:cd:26:f7:2c:33:d2:12:20:02:2e:5a:60:61: 54:d6:12:25:95:5e:77:e0:da:36:f1:d2:57:36:48: 96:7c:ab:59:75:db:51:fd:fb:78:34:c4:12:ee:f7: 27:a7:b8:a9:f1:49:cf:3b:98:c3:7c:79:1b:ba:42: 8d:d8:a7:9b:af:33:c4:b7:64:0d:ca:ec:59:c4:cc: 41:ed:c9:2f:59:90:55:3a:1b:f6:b0:5c:a9:3e:cb: bb:04:08:d1:67:62:0b:27:e8:67:c6:f4:e1:7e:8e: 8a:96:8b:ed:fd:8d:10:49:73:78:99:15:2a:d6:a2: 14:44:c4:33:44:fd:52:fa:ac:58:34:de:4c:76:f1: 6c:bd:e1:c3:7f:24:83:1a:00:15:49:1d:84:d5:56: 8d:ca:ce:69:6d:90:2a:92:ff:7f:a4:33:69:45:ef: 91:52:c6:d4:20:e2:e8:9b:ca:6f:13:a6:b7:86:fb: 6c:07:48:30:ff:f8:19:ec:61:06:80:2a:3f:a1:9b: bf:29:3c:e3:22:0f:83:cd:14:68:09:aa:67:11:1e: af:f1:27:c3:0a:60:6b:63:c4:a1:e3:20:fb:ae:13: 7b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:35:7E:AD:7F:D4:11:39:21:AB:3B:1C:AA:A3:43:B5:B2:7C:52:C3 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:d9:4f:39:ea:86:1f:61:e6:bd:60:48:ee:25:1b:46:ff:29: 4f:5f:3c:28:79:29:8a:9a:6f:91:ca:e1:22:d0:1f:c7:b6:b2: 91:b8:07:03:72:c5:6e:81:5d:1c:14:71:55:50:4b:16:21:9f: 24:0b:21:51:43:17:e9:95:7d:6f:a4:f4:a9:79:84:08:ba:6d: 31:ca:b6:c2:75:55:2b:e0:ee:e3:d7:07:6f:dd:77:45:fc:da: 0f:38:ea:73:46:56:9d:f7:36:b2:f6:6e:47:31:45:46:d2:7f: 9f:26:70:6d:5c:41:71:0e:2b:42:a6:a5:30:60:89:12:87:bf: 79:7a:5f:8e:bc:84:fc:6b:a0:c3:ff:be:6a:2d:b3:30:30:35: bb:52:78:ee:31:02:85:d3:e7:5d:03:fb:b0:c3:7a:b0:b1:98: c7:c9:b1:55:98:d0:72:1b:10:12:af:44:1f:b7:d8:93:ea:e4: 6b:ae:16:f7:17:5a:8d:66:ae:8e:f0:69:23:08:a3:40:c8:7e: a7:2c:86:60:14:1c:36:22:a0:7f:8b:dd:36:51:59:e6:78:7b: 62:59:15:68:c1:2c:d7:f7:09:65:f4:53:bf:58:b9:e5:e5:97: 5a:80:71:90:29:21:51:a0:c7:ab:73:2f:c8:97:2b:76:32:11: 42:6f:ba:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwMjI4MjAzOTAwWhcNMjYwMzA3MjAzOTAwWjAYMRYwFAYD VQQDDA02OWEzNTI2NS0yNTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtntLEFdfo6sON0q2YHf/HAbVgbKqhYzViNix+R8kBc0m9ywz0hIgAi5aYGFU 1hIllV534No28dJXNkiWfKtZddtR/ft4NMQS7vcnp7ip8UnPO5jDfHkbukKN2Keb rzPEt2QNyuxZxMxB7ckvWZBVOhv2sFypPsu7BAjRZ2ILJ+hnxvThfo6Klovt/Y0Q SXN4mRUq1qIURMQzRP1S+qxYNN5MdvFsveHDfySDGgAVSR2E1VaNys5pbZAqkv9/ pDNpRe+RUsbUIOLom8pvE6a3hvtsB0gw//gZ7GEGgCo/oZu/KTzjIg+DzRRoCapn ER6v8SfDCmBrY8Sh4yD7rhN7KQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJE1fq1/ 1BE5Ias7HKqjQ7WyfFLDMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFtlPOeqGH2HmvWBI7iUbRv8pT188KHkpippvkcrhItAfx7aykbgHA3LFboFd HBRxVVBLFiGfJAshUUMX6ZV9b6T0qXmECLptMcq2wnVVK+Du49cHb913RfzaDzjq c0ZWnfc2svZuRzFFRtJ/nyZwbVxBcQ4rQqalMGCJEoe/eXpfjryE/Gugw/++ai2z MDA1u1J47jEChdPnXQP7sMN6sLGYx8mxVZjQchsQEq9EH7fYk+rka64W9xdajWau jvBpIwijQMh+pyyGYBQcNiKgf4vdNlFZ5nh7YlkVaMEs1/cJZfRTv1i55eWXWoBx kCkhUaDHq3MvyJcrdjIRQm+6kg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:16:25 2026 by rpki-client