$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: 8QJNbSwvWlruXBsuQd4HDqqpGwkYRkJNBrKNpgLV6s4= Subject key identifier: D7:FA:23:7A:62:F4:D9:17:64:DC:89:5B:F7:E2:6E:6C:4C:D3:31:96 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0964 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0931 Signing time: Thu 16 Apr 2026 20:11:31 +0000 Manifest this update: Thu 16 Apr 2026 20:11:30 +0000 Manifest next update: Thu 23 Apr 2026 20:11:30 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: ZXgwxAvk/7JfG6G6FwpzllSc9pfQBkbF8g5OBlQPVSk=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: +PSgrTx8lXFFvvdktY3RXfTL/A83EghlvOOu8ypgZIc=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: lmS+7uFn8RH9fc0jbeBbvg4YMmHae9TzPRYAxD2jSss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2404 (0x964) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Apr 16 20:11:30 2026 GMT Not After : Apr 23 20:11:30 2026 GMT Subject: CN=69e14273-c498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:73:4f:04:a8:32:eb:70:b1:75:0b:20:13:a9: b1:80:94:33:ab:5f:5d:58:8f:b1:22:f9:4a:7c:d0: d0:f2:24:64:25:8e:cf:3b:b8:18:42:d0:64:68:dc: 38:e5:07:de:5e:c6:64:74:25:b0:07:cf:14:32:81: 35:e4:a1:bd:65:c6:09:82:dc:01:4b:96:4a:20:50: a6:b7:38:97:6a:7d:9b:8c:85:24:d5:42:9f:90:b1: 65:5b:50:35:c0:fc:9b:fe:3d:ab:64:e4:3e:38:2f: c8:22:8d:ff:3e:68:a1:2f:52:3a:3f:24:60:7c:7c: a9:6e:67:de:8d:1d:7d:84:be:1c:c1:75:69:9c:1a: de:ff:c4:42:c9:e2:e7:8e:96:2b:c0:0d:4f:8a:d4: 6a:da:18:7d:ae:7a:e7:00:8a:da:9f:c6:d7:2c:1c: 2c:06:2d:1c:05:3b:ca:02:2d:6c:67:02:e1:d2:ac: 93:22:f8:5a:0e:77:f8:51:f6:68:41:34:d6:82:2d: 0b:a2:0a:c5:c9:c1:cc:3c:4c:17:78:1f:da:c1:3b: 80:93:70:8b:04:e4:c5:be:d6:9e:8c:1f:3a:29:1c: f1:b2:77:ab:a8:6c:3a:66:65:a1:53:07:11:c5:9b: f2:ba:a9:dc:78:e7:2a:cf:f3:e5:65:65:1f:ae:52: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:FA:23:7A:62:F4:D9:17:64:DC:89:5B:F7:E2:6E:6C:4C:D3:31:96 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:52:d8:fb:eb:92:ab:e1:c6:a5:73:9d:33:f5:60:f4:3e:4a: f9:08:3d:4d:8a:cd:11:e4:3d:aa:5f:38:e0:55:23:dc:87:bd: fc:0d:7f:79:1c:a9:23:9a:60:64:fa:27:9b:27:55:40:90:ec: 22:f9:2f:3f:e5:64:9e:8d:f1:30:90:b7:bf:3d:e0:7e:1f:c2: 93:8e:a4:3b:94:c1:2f:da:ad:41:ab:6f:45:91:58:29:47:25: ac:fd:75:a9:a3:c9:d4:ba:55:1d:5e:99:f5:94:62:39:be:6b: e1:40:c0:5c:17:08:37:59:98:35:c9:4c:a9:04:51:9a:31:47: 32:58:69:70:92:c6:62:95:29:8a:9a:39:ca:ec:4e:57:ea:b4: 62:ad:90:1e:30:b4:94:35:21:5b:7f:0d:f6:23:f7:37:2d:a9: 1d:9c:1c:99:3e:97:d2:2b:cf:f0:82:5f:2c:27:6f:9e:d3:a6: da:1e:a5:56:52:ef:2d:f5:b2:cf:e5:97:c6:aa:69:52:3b:8b: 0b:1c:36:48:c5:7f:23:d6:ec:c2:59:0f:95:20:65:8e:6e:c6: 6a:49:00:34:73:4c:52:19:36:04:ce:6e:21:c9:2d:13:9d:73: 3e:00:03:35:f7:fb:89:51:5e:95:a8:6e:39:2c:6b:fa:7b:e9: 27:c9:e0:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwNDE2MjAxMTMwWhcNMjYwNDIzMjAxMTMwWjAYMRYwFAYD VQQDEw02OWUxNDI3My1jNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHNPBKgy63CxdQsgE6mxgJQzq19dWI+xIvlKfNDQ8iRkJY7PO7gYQtBkaNw4 5QfeXsZkdCWwB88UMoE15KG9ZcYJgtwBS5ZKIFCmtziXan2bjIUk1UKfkLFlW1A1 wPyb/j2rZOQ+OC/IIo3/PmihL1I6PyRgfHypbmfejR19hL4cwXVpnBre/8RCyeLn jpYrwA1PitRq2hh9rnrnAIran8bXLBwsBi0cBTvKAi1sZwLh0qyTIvhaDnf4UfZo QTTWgi0LogrFycHMPEwXeB/awTuAk3CLBOTFvtaejB86KRzxsnerqGw6ZmWhUwcR xZvyuqnceOcqz/PlZWUfrlJakwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNf6I3pi 9NkXZNyJW/fibmxM0zGWMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGVLY++uSq+HGpXOdM/Vg9D5K+Qg9TYrNEeQ9ql844FUj3Ie9/A1/eRypI5pg ZPonmydVQJDsIvkvP+Vkno3xMJC3vz3gfh/Ck46kO5TBL9qtQatvRZFYKUclrP11 qaPJ1LpVHV6Z9ZRiOb5r4UDAXBcIN1mYNclMqQRRmjFHMlhpcJLGYpUpipo5yuxO V+q0Yq2QHjC0lDUhW38N9iP3Ny2pHZwcmT6X0ivP8IJfLCdvntOm2h6lVlLvLfWy z+WXxqppUjuLCxw2SMV/I9bswlkPlSBljm7GakkANHNMUhk2BM5uIcktE51zPgAD Nff7iVFelahuOSxr+nvpJ8ngbA== -----END CERTIFICATE-----Generated at Fri Apr 17 14:00:07 2026 by rpki-client