$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: ElYcW0MEs/OXHjeb8GdYoFBIVZJQe4bsu/q1qSON918= Subject key identifier: 8A:D4:C8:71:85:F4:CA:28:A4:2B:1F:A4:86:83:3C:D9:2E:D3:E0:EC Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0980 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 094D Signing time: Wed 10 Jun 2026 20:15:05 +0000 Manifest this update: Wed 10 Jun 2026 20:15:04 +0000 Manifest next update: Wed 17 Jun 2026 20:15:04 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: /6f+ONB4SQ5oWEfgjm45+W1cTKEt2zfsEPeGCygOTyE=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: +PSgrTx8lXFFvvdktY3RXfTL/A83EghlvOOu8ypgZIc=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: pknh5TpkVdN0wm1/ojQOEGyjuZUBpmr1M782VXIzWZQ=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: lmS+7uFn8RH9fc0jbeBbvg4YMmHae9TzPRYAxD2jSss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2432 (0x980) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Jun 10 20:15:04 2026 GMT Not After : Jun 17 20:15:04 2026 GMT Subject: CN=6a29c5c8-18fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:70:a0:f1:c9:2b:c8:69:f0:3d:e0:d6:20:ae: 88:56:78:29:35:7d:a5:f4:5c:70:24:0b:43:3d:2b: a8:ee:9e:b0:25:5d:fa:cc:e6:c3:b1:82:8e:6b:31: fd:37:29:da:7e:da:bd:2d:e0:8d:9d:33:c7:16:8d: 9e:a1:dd:97:f6:c8:ab:a7:5a:00:54:d5:5c:b9:de: 4a:54:52:72:40:5c:59:42:c2:88:d0:54:b7:e1:18: 51:3b:5d:31:5b:99:de:15:47:79:2c:ea:a6:0c:a2: 9e:c9:66:b4:4c:ad:ce:39:48:51:7c:f5:3b:23:00: e4:6c:4b:47:9f:a3:3d:72:e5:77:64:9f:63:56:9f: d0:60:35:9e:03:37:c0:a6:3f:65:41:c8:b1:73:c1: 76:67:04:dc:c6:5e:87:4a:ee:65:9c:a8:08:fe:1a: 80:56:2c:a5:34:b4:9e:9b:67:24:64:64:0d:91:ed: 3b:23:ff:c2:45:43:63:c6:28:f5:fd:92:96:c8:9e: 8e:22:8d:4d:0d:8d:01:b4:cb:41:59:19:ed:55:8d: 2d:1c:7b:41:ee:13:6d:be:7d:e1:a5:40:99:b8:09: 2a:c0:65:7b:ca:46:65:ce:4e:9c:02:7a:75:1d:6f: 1b:ae:3e:19:9f:70:16:a7:c5:e8:bc:f8:4b:fe:2b: dc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D4:C8:71:85:F4:CA:28:A4:2B:1F:A4:86:83:3C:D9:2E:D3:E0:EC X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d9:89:c6:70:91:c9:0e:d0:b3:b2:52:80:8f:66:d3:c3:c3: 88:51:6e:a6:fe:0c:de:79:cc:b1:f7:60:b2:35:0e:4e:ef:47: 25:4b:c7:fc:84:39:2c:ac:47:ed:d3:8e:41:20:81:51:69:8d: 74:4d:f5:85:f3:35:6c:05:4c:df:1d:43:22:06:94:d2:df:32: 7e:65:f3:1a:44:c4:ba:79:70:bc:33:3b:80:09:3b:ab:84:5d: 06:b5:e4:f2:89:89:22:17:b6:50:42:e7:fc:e0:8b:0f:31:5a: fe:15:ab:d1:17:89:0f:57:cd:db:b5:13:9f:4f:23:92:ca:e3: 50:e5:33:a2:5c:1b:08:5d:8d:6f:40:ab:30:de:d0:38:ee:cd: a3:6e:1d:cb:b0:a8:84:fd:af:93:92:80:a7:59:3c:91:36:ce: 56:a8:ee:0c:a1:b1:8b:f2:b0:50:31:b9:9c:be:77:bd:21:99: d3:45:16:d2:1a:f6:82:69:81:6f:8b:d5:d2:1b:b6:7a:02:4d: a9:96:2d:2a:a1:11:b8:30:84:6c:51:e0:46:f9:9e:9a:80:4b: ed:3a:31:ea:fc:20:40:fb:5e:ff:4b:4f:8d:d9:ae:96:3e:3c: 93:bc:53:eb:90:49:2e:ac:a7:02:15:03:97:22:82:07:db:8c: 4a:bb:55:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjYwNjEwMjAxNTA0WhcNMjYwNjE3MjAxNTA0WjAYMRYwFAYD VQQDEw02YTI5YzVjOC0xOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnCg8ckryGnwPeDWIK6IVngpNX2l9FxwJAtDPSuo7p6wJV36zObDsYKOazH9 Nynaftq9LeCNnTPHFo2eod2X9sirp1oAVNVcud5KVFJyQFxZQsKI0FS34RhRO10x W5neFUd5LOqmDKKeyWa0TK3OOUhRfPU7IwDkbEtHn6M9cuV3ZJ9jVp/QYDWeAzfA pj9lQcixc8F2ZwTcxl6HSu5lnKgI/hqAViylNLSem2ckZGQNke07I//CRUNjxij1 /ZKWyJ6OIo1NDY0BtMtBWRntVY0tHHtB7hNtvn3hpUCZuAkqwGV7ykZlzk6cAnp1 HW8brj4Zn3AWp8XovPhL/ivclQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIrUyHGF 9MoopCsfpIaDPNku0+DsMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAINmJxnCRyQ7Qs7JSgI9m08PDiFFupv4M3nnMsfdgsjUOTu9HJUvH/IQ5LKxH 7dOOQSCBUWmNdE31hfM1bAVM3x1DIgaU0t8yfmXzGkTEunlwvDM7gAk7q4RdBrXk 8omJIhe2UELn/OCLDzFa/hWr0ReJD1fN27UTn08jksrjUOUzolwbCF2Nb0CrMN7Q OO7No24dy7CohP2vk5KAp1k8kTbOVqjuDKGxi/KwUDG5nL53vSGZ00UW0hr2gmmB b4vV0hu2egJNqZYtKqERuDCEbFHgRvmemoBL7Tox6vwgQPte/0tPjdmulj48k7xT 65BJLqynAhUDlyKCB9uMSrtVTQ== -----END CERTIFICATE-----Generated at Fri Jun 12 05:04:42 2026 by rpki-client