$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: ep1bphME9jCJj25l8ZP7Cs2I0Uj/ateAxyXrqwCGleg= Subject key identifier: AE:1A:9F:D3:02:F0:51:5F:AD:20:2F:FC:50:8B:AE:FB:C0:99:55:4B Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 0132 Signing time: Sun 05 Apr 2026 04:56:26 +0000 Manifest this update: Sun 05 Apr 2026 04:56:25 +0000 Manifest next update: Sun 12 Apr 2026 04:56:25 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: gp8DIaUNZPg20Hzp53yOtU58zU6Gn31eI4Bob61QmCs=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: bidCbRFTgDxHMdqmXAGHrBwGv+QM4m7c3Q2wG1dxBaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Apr 5 04:56:25 2026 GMT Not After : Apr 12 04:56:25 2026 GMT Subject: CN=69d1eb79-8a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:95:f7:1f:f3:cc:22:fd:a1:77:25:7b:a9:aa: d3:b1:93:98:79:d6:8f:80:ad:78:2a:1d:0c:a0:10: 4c:53:2b:18:ca:75:ad:ae:3c:38:7d:94:ad:e4:b1: b0:5c:4e:e0:0f:e8:ec:e5:9c:c7:e7:c8:bf:b3:34: cd:73:ab:b9:d9:e8:a4:10:5b:4c:0a:3c:a3:38:7f: 65:3e:25:3f:c3:b2:c7:95:82:2b:df:31:81:f4:0c: cf:39:93:4f:10:89:37:d0:6f:30:61:bd:06:92:43: 8b:85:26:98:b9:92:57:45:a8:63:c9:65:7b:05:fd: 35:f1:93:ed:3b:7f:de:c0:14:4d:a3:51:56:7d:f7: 59:1d:c4:83:77:f9:ef:3b:bf:00:13:24:8e:1d:23: 87:f5:0f:19:c4:44:98:48:a6:2a:ac:13:2a:8f:8d: 57:b9:85:fc:73:25:75:2a:bb:0c:99:0b:7b:0e:00: 2a:4f:3e:6c:2b:1c:5b:73:b6:68:db:46:61:a9:c6: 49:7a:d9:d3:cd:38:d2:b7:9a:63:a7:13:c2:76:3b: b9:c9:75:36:bd:05:2a:c3:70:94:cc:a6:47:94:53: ee:20:85:45:b2:1b:16:c3:39:e0:ec:e7:be:00:e3: c9:09:ab:4f:56:3b:f7:e6:13:f0:6d:2b:e5:e7:53: a4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:1A:9F:D3:02:F0:51:5F:AD:20:2F:FC:50:8B:AE:FB:C0:99:55:4B X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:5c:57:0b:1b:67:f7:8e:b9:52:36:8e:18:0d:cc:00:76:82: 64:a3:24:b8:43:b3:ef:ff:e9:11:01:d4:28:51:11:9a:0f:ab: 6c:37:2b:3b:53:27:78:cc:01:de:9b:96:6f:42:18:f4:cb:fa: e6:66:10:1c:e8:c7:8f:d3:b1:dd:45:86:70:21:8b:bb:3f:ad: b7:ff:8e:01:43:6b:64:5c:1b:54:5f:ce:af:1f:ff:03:eb:e5: c2:61:46:5d:78:e4:60:e2:26:0a:3b:09:7e:ea:ff:6d:9c:5e: 1f:83:d6:a8:a5:a2:51:de:39:c0:c9:68:32:de:a9:03:d6:63: 27:2e:e9:75:01:16:6e:98:2f:38:e8:39:04:bb:78:ef:9a:fd: 83:51:92:49:3a:5e:92:6f:75:60:60:4b:11:dd:fe:cd:c1:a6: fc:8d:5c:6a:f3:5a:52:c2:c3:fe:9e:37:ff:2d:d9:15:aa:2a: c8:5a:f1:ad:f6:64:19:36:28:53:39:cc:6a:82:9a:7f:52:d3: ba:44:64:4c:15:90:83:b5:d1:48:d7:dd:ec:b6:2e:c3:38:93: 37:e1:37:ae:f6:8d:00:5e:a3:aa:bf:bd:0b:d9:d6:f9:6e:33: 85:d8:1e:11:62:b2:92:9a:dd:ff:49:79:9e:8d:f7:e4:14:5e: 37:d1:7c:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwNDA1MDQ1NjI1WhcNMjYwNDEyMDQ1NjI1WjAYMRYwFAYD VQQDEw02OWQxZWI3OS04YTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5X3H/PMIv2hdyV7qarTsZOYedaPgK14Kh0MoBBMUysYynWtrjw4fZSt5LGw XE7gD+js5ZzH58i/szTNc6u52eikEFtMCjyjOH9lPiU/w7LHlYIr3zGB9AzPOZNP EIk30G8wYb0GkkOLhSaYuZJXRahjyWV7Bf018ZPtO3/ewBRNo1FWffdZHcSDd/nv O78AEySOHSOH9Q8ZxESYSKYqrBMqj41XuYX8cyV1KrsMmQt7DgAqTz5sKxxbc7Zo 20ZhqcZJetnTzTjSt5pjpxPCdju5yXU2vQUqw3CUzKZHlFPuIIVFshsWwzng7Oe+ AOPJCatPVjv35hPwbSvl51OkcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK4an9MC 8FFfrSAv/FCLrvvAmVVLMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANVxXCxtn9465UjaOGA3MAHaCZKMkuEOz7//pEQHUKFERmg+rbDcrO1MneMwB 3puWb0IY9Mv65mYQHOjHj9Ox3UWGcCGLuz+tt/+OAUNrZFwbVF/Orx//A+vlwmFG XXjkYOImCjsJfur/bZxeH4PWqKWiUd45wMloMt6pA9ZjJy7pdQEWbpgvOOg5BLt4 75r9g1GSSTpekm91YGBLEd3+zcGm/I1cavNaUsLD/p43/y3ZFaoqyFrxrfZkGTYo UznMaoKaf1LTukRkTBWQg7XRSNfd7LYuwziTN+E3rvaNAF6jqr+9C9nW+W4zhdge EWKykprd/0l5no335BReN9F8uA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:26:07 2026 by rpki-client