$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: dUb+ugXa7DbMhslmoLKx1uSz3arg2HpwZk8v5AnXB3U= Subject key identifier: 3F:AF:A5:3D:1F:CE:01:AF:FB:43:EA:D4:52:03:BF:A2:9E:36:34:CE Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0969 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0936 Signing time: Sun 26 Apr 2026 20:10:58 +0000 Manifest this update: Sun 26 Apr 2026 20:10:57 +0000 Manifest next update: Sun 03 May 2026 20:10:57 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: AXeaO4pdCRMmkH00Yjzqp8ZX1hlG6YvRnNfR60hLJSk=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: +PSgrTx8lXFFvvdktY3RXfTL/A83EghlvOOu8ypgZIc=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: lmS+7uFn8RH9fc0jbeBbvg4YMmHae9TzPRYAxD2jSss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2409 (0x969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Apr 26 20:10:57 2026 GMT Not After : May 3 20:10:57 2026 GMT Subject: CN=69ee7152-c74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:af:f8:82:63:53:8b:0a:5d:f0:9c:a2:c8:1c: 8e:14:e1:23:61:bb:6e:9a:88:07:18:39:a9:f2:46: c0:d8:de:41:47:19:91:74:fc:56:b8:da:d4:ff:2b: df:3b:fc:fa:e8:a8:0b:e9:39:9b:88:93:46:cf:a0: 93:20:73:64:ce:9b:11:11:b7:9a:ac:ab:8b:45:ed: 27:ec:86:d8:05:81:32:43:d1:da:19:f1:9d:ad:9a: 21:9f:a0:38:08:7b:7c:93:8b:79:9b:9d:43:ff:85: 0a:98:8b:03:d7:58:a7:f4:f5:37:a7:c9:e5:d7:65: d2:f3:12:91:25:fa:ec:75:0a:b1:df:12:d5:37:b7: d2:de:8d:c8:7d:93:ad:95:db:0a:20:d3:44:b9:65: f9:e7:07:24:ab:ff:12:c7:e1:27:d8:50:dc:78:6e: ed:97:50:00:6e:54:66:02:bd:2f:2b:d7:0f:34:3a: a7:73:07:47:07:b1:22:14:5c:ad:a6:d0:17:69:dc: 03:c7:06:4e:6b:34:f5:8c:75:f6:6b:37:91:e7:3c: 4a:91:11:e5:e1:36:61:39:e2:55:1d:b4:e1:d8:35: 8a:63:4a:19:c0:55:b5:79:cf:54:e2:d9:e8:27:b6: 98:49:65:3d:71:6a:2a:56:16:48:c8:a1:45:39:c7: e9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AF:A5:3D:1F:CE:01:AF:FB:43:EA:D4:52:03:BF:A2:9E:36:34:CE X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:76:f8:73:a6:fd:69:a8:d1:2a:9f:a6:c2:27:ac:4b:73:f3: 09:cd:e5:6a:37:29:cb:96:6e:66:f5:78:5b:0e:30:25:91:f1: 2f:40:38:a7:97:dc:51:3e:44:f7:79:b7:23:98:28:47:81:fd: 38:7e:04:a4:84:df:2d:ff:d5:29:6a:70:e2:a4:9d:3b:54:a3: 41:36:2f:88:ba:0c:90:ae:20:8d:6b:79:b1:fd:47:fa:ee:a2: 67:28:be:7d:42:4d:c7:ff:81:73:72:15:b8:93:86:41:6f:6b: 9a:4f:ae:c3:41:b7:fd:d6:b2:b2:af:a6:9a:ae:d6:d8:5a:79: 4e:f5:9b:8d:ef:d7:76:6a:f9:8a:8e:65:d0:bf:96:ab:ec:85: 23:06:4e:74:70:0a:55:00:eb:ed:01:b9:48:e5:19:41:d9:9e: 35:8b:77:6b:18:08:37:95:49:af:2d:eb:3a:11:94:8e:01:15: d1:24:b0:03:10:4e:f0:0e:e0:c4:72:7c:f0:0e:8c:36:c1:55: 70:42:46:ba:33:c3:21:cf:1a:a3:c3:22:f5:7f:25:c2:f3:e1: 1e:c9:99:3a:b2:c3:59:6d:1a:27:3c:fd:f9:0a:ac:1f:47:e5: 70:63:27:a2:f6:af:11:f9:80:00:ed:4e:cb:c9:04:8c:ed:73: a8:ed:c8:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwNDI2MjAxMDU3WhcNMjYwNTAzMjAxMDU3WjAYMRYwFAYD VQQDEw02OWVlNzE1Mi1jNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArK/4gmNTiwpd8JyiyByOFOEjYbtumogHGDmp8kbA2N5BRxmRdPxWuNrU/yvf O/z66KgL6TmbiJNGz6CTIHNkzpsREbearKuLRe0n7IbYBYEyQ9HaGfGdrZohn6A4 CHt8k4t5m51D/4UKmIsD11in9PU3p8nl12XS8xKRJfrsdQqx3xLVN7fS3o3IfZOt ldsKINNEuWX55wckq/8Sx+En2FDceG7tl1AAblRmAr0vK9cPNDqncwdHB7EiFFyt ptAXadwDxwZOazT1jHX2azeR5zxKkRHl4TZhOeJVHbTh2DWKY0oZwFW1ec9U4tno J7aYSWU9cWoqVhZIyKFFOcfp9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD+vpT0f zgGv+0Pq1FIDv6KeNjTOMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh3b4c6b9aajRKp+mwiesS3PzCc3lajcpy5ZuZvV4Ww4wJZHxL0A4p5fcUT5E 93m3I5goR4H9OH4EpITfLf/VKWpw4qSdO1SjQTYviLoMkK4gjWt5sf1H+u6iZyi+ fUJNx/+Bc3IVuJOGQW9rmk+uw0G3/daysq+mmq7W2Fp5TvWbje/Xdmr5io5l0L+W q+yFIwZOdHAKVQDr7QG5SOUZQdmeNYt3axgIN5VJry3rOhGUjgEV0SSwAxBO8A7g xHJ88A6MNsFVcEJGujPDIc8ao8Mi9X8lwvPhHsmZOrLDWW0aJzz9+QqsH0flcGMn ovavEfmAAO1Oy8kEjO1zqO3IiQ== -----END CERTIFICATE-----Generated at Mon Apr 27 16:06:07 2026 by rpki-client