$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: XcsIHtXnby17nqt0SmiyibVETHaEpIlK0qJQeUA81Jo= Subject key identifier: 4B:CF:B4:D1:E7:C1:4B:42:9D:DD:F8:D0:96:FD:3A:D1:2F:10:BA:ED Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0952 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 091F Signing time: Thu 12 Mar 2026 20:00:22 +0000 Manifest this update: Thu 12 Mar 2026 20:00:21 +0000 Manifest next update: Thu 19 Mar 2026 20:00:21 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: oe5pR61CA5CwjT2GPf1vSjUrqDh8UhYWouilFnJ9QHI=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: +PSgrTx8lXFFvvdktY3RXfTL/A83EghlvOOu8ypgZIc=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: lmS+7uFn8RH9fc0jbeBbvg4YMmHae9TzPRYAxD2jSss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2386 (0x952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Mar 12 20:00:21 2026 GMT Not After : Mar 19 20:00:21 2026 GMT Subject: CN=69b31b55-cc96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b1:20:7a:ac:67:54:3d:87:98:be:03:48:56: bb:07:91:6b:11:e9:a4:4d:16:27:ea:a1:6c:83:c7: f1:57:96:18:0d:65:c9:c6:97:59:27:ef:24:c2:ea: 9d:3e:1c:f4:0e:da:2e:4c:e1:e6:5b:af:29:23:4c: 9e:a8:b1:0d:e8:09:26:fb:6b:91:ae:87:b3:74:a2: e0:52:6f:e5:f9:cc:c7:5b:67:78:be:ce:98:14:15: 42:45:18:0a:54:9c:97:f8:41:86:dd:8c:5f:19:43: 98:91:a8:56:c1:45:69:fd:a2:d9:72:1f:b1:59:9e: ee:c7:a1:67:78:12:d5:e7:96:b2:da:28:8a:a0:e1: c3:72:1d:bb:6f:2f:75:1c:10:f1:85:f6:30:e3:b9: c0:ee:06:63:f3:f7:22:ec:db:64:b7:03:79:e0:d7: eb:9a:ac:a3:c0:d5:0e:7f:9b:c3:a3:31:c2:4c:6c: 9b:6d:03:4b:a5:82:3e:c5:e7:97:b1:eb:b8:fb:a9: 20:01:d4:50:40:e1:de:fc:d4:7e:13:5f:46:14:a0: a4:fe:b8:03:6b:ab:6b:e2:b0:56:9d:50:73:97:d4: 30:36:87:0f:27:d3:e1:24:ee:8d:28:17:4d:c9:d0: d0:0e:95:af:f1:8d:87:79:fa:43:36:53:1c:24:9e: fd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CF:B4:D1:E7:C1:4B:42:9D:DD:F8:D0:96:FD:3A:D1:2F:10:BA:ED X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:e6:15:c1:9d:9d:f9:34:68:63:71:77:a0:b2:79:03:b5:c7: 00:3c:f0:75:eb:94:4d:17:93:f8:eb:09:14:89:91:fd:cb:b7: 4d:96:3c:87:b4:39:c0:27:4d:5a:96:52:f6:78:c1:3f:6c:2b: 3a:f6:44:dd:e4:42:33:01:36:d3:32:a6:0d:77:db:0d:89:13: a1:f4:75:39:89:cb:d1:7b:0b:84:60:2b:70:0a:e8:8d:63:d9: d2:96:03:f1:dc:39:83:6c:29:12:5c:67:0c:93:1d:a0:17:66: a5:84:a9:35:4b:62:f3:08:bd:03:97:eb:76:46:e0:c8:93:41: 00:31:c1:67:41:d0:39:ea:34:f7:49:e2:b3:67:93:57:c3:c3: ec:6a:66:db:c7:17:35:b4:56:7a:ca:8a:25:7e:b2:08:a0:1d: 92:a8:e0:dd:4a:20:b0:a9:cd:b4:fd:16:88:e4:d5:7e:8e:b7: a0:b9:b4:28:5f:ed:03:19:9b:fd:30:9b:2a:35:35:9b:b9:2b: 6f:bc:13:52:61:3d:07:df:b3:35:86:6a:fd:57:0c:9b:9a:03: 06:a6:04:be:34:86:4e:3b:51:10:8e:ea:af:44:ea:f2:63:81: db:dd:69:95:f1:3d:0e:8d:3d:29:f1:af:fc:f6:4b:f5:59:b4: 90:20:39:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwMzEyMjAwMDIxWhcNMjYwMzE5MjAwMDIxWjAYMRYwFAYD VQQDEw02OWIzMWI1NS1jYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrEgeqxnVD2HmL4DSFa7B5FrEemkTRYn6qFsg8fxV5YYDWXJxpdZJ+8kwuqd Phz0DtouTOHmW68pI0yeqLEN6Akm+2uRroezdKLgUm/l+czHW2d4vs6YFBVCRRgK VJyX+EGG3YxfGUOYkahWwUVp/aLZch+xWZ7ux6FneBLV55ay2iiKoOHDch27by91 HBDxhfYw47nA7gZj8/ci7NtktwN54NfrmqyjwNUOf5vDozHCTGybbQNLpYI+xeeX seu4+6kgAdRQQOHe/NR+E19GFKCk/rgDa6tr4rBWnVBzl9QwNocPJ9PhJO6NKBdN ydDQDpWv8Y2HefpDNlMcJJ79sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEvPtNHn wUtCnd340Jb9OtEvELrtMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAOYVwZ2d+TRoY3F3oLJ5A7XHADzwdeuUTReT+OsJFImR/cu3TZY8h7Q5wCdN WpZS9njBP2wrOvZE3eRCMwE20zKmDXfbDYkTofR1OYnL0XsLhGArcArojWPZ0pYD 8dw5g2wpElxnDJMdoBdmpYSpNUti8wi9A5frdkbgyJNBADHBZ0HQOeo090nis2eT V8PD7Gpm28cXNbRWesqKJX6yCKAdkqjg3UogsKnNtP0WiOTVfo63oLm0KF/tAxmb /TCbKjU1m7krb7wTUmE9B9+zNYZq/VcMm5oDBqYEvjSGTjtREI7qr0Tq8mOB291p lfE9Do09KfGv/PZL9Vm0kCA5KQ== -----END CERTIFICATE-----Generated at Fri Mar 13 09:57:49 2026 by rpki-client