$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: 9SYfLY6jc4YOxTXov0rvmPs2UYLRgH8T/uXbFkvTyJI= Subject key identifier: 13:B2:27:9C:AC:11:F5:18:6C:00:73:F5:A7:7F:56:BD:6B:00:06:D9 Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: E2 Signing time: Mon 03 Nov 2025 05:29:06 +0000 Manifest this update: Mon 03 Nov 2025 05:29:05 +0000 Manifest next update: Mon 10 Nov 2025 05:29:05 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: l4AyVdOEqz5+KD9MtLj8uoX08Bn4UjKdJI1GE35otAM=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: ssSab392rUEklfenSvYRYq8TUWajk4XJZygnBh6m+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Nov 3 05:29:05 2025 GMT Not After : Nov 10 05:29:05 2025 GMT Subject: CN=69083da2-385b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:37:be:98:b1:52:95:0f:7f:85:d7:9f:76: 3d:ab:88:4b:0b:af:82:9f:37:1d:4d:27:9c:27:e4: af:c1:2d:92:5a:07:09:e7:18:09:16:bf:b6:83:cb: eb:c9:87:25:46:9b:4d:c6:5f:a9:74:50:01:18:13: f4:82:f8:85:12:6c:79:ae:20:8a:25:f0:34:78:59: 8e:c2:39:5f:31:17:31:54:5c:a3:11:51:73:a6:10: fc:85:c4:12:60:5a:d8:54:4e:88:3a:37:92:d2:4a: f2:01:18:82:6c:bf:9e:78:33:5d:ac:05:6a:ad:27: 34:12:ce:4d:05:ef:f2:c2:8a:a3:95:ed:21:ff:3b: fe:3c:94:63:3d:94:6f:67:a8:2b:ad:b8:30:2f:da: f7:79:dc:21:13:1e:7d:cb:e7:b1:59:8b:d1:98:60: 08:bc:13:57:e8:9e:ef:56:58:97:db:f3:5c:c8:a2: 2d:ed:d8:9b:0a:a6:3f:74:a0:5c:d3:fe:a3:23:25: d2:e4:31:ab:77:18:6d:b3:1c:2e:dd:e2:15:be:cb: ff:b8:2b:17:e6:b0:73:0c:0d:c9:86:ee:44:a5:e1: ec:46:e2:36:9c:93:40:b0:dc:28:d4:7b:ad:9b:a6: 9d:fd:be:4e:d6:ff:93:5a:e4:6e:4c:0b:3b:87:0c: 0c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B2:27:9C:AC:11:F5:18:6C:00:73:F5:A7:7F:56:BD:6B:00:06:D9 X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:15:7d:97:1e:ce:7b:e6:38:3f:a0:d2:41:74:5a:f1:fb:69: 9b:75:92:bc:35:86:4a:0a:ab:15:5c:9d:f1:f0:c0:4c:f1:6e: 0b:79:56:3d:79:97:9b:fe:c5:78:6e:10:12:5d:ff:6c:51:a2: b4:b1:f1:18:22:bd:b2:e9:aa:7b:49:7d:c2:09:5e:af:4d:53: 33:75:85:33:a7:6a:86:2c:aa:c2:18:2b:7a:7f:c3:c8:5e:cf: 9e:be:16:bb:c7:73:0f:87:6f:4b:1b:93:e8:0d:07:49:69:00: b5:3e:f3:52:a0:cf:f7:39:37:1a:51:a5:59:ed:7c:6e:51:e3: bb:77:84:3a:09:a0:cc:77:b6:8f:44:db:3e:b2:db:d2:ca:b4: f6:44:96:ad:96:f4:c2:b2:cd:5e:af:72:94:35:c2:80:e1:98: 82:a9:c1:6b:ec:82:49:73:b2:23:97:4f:c9:76:ce:66:c8:ed: 12:0c:06:44:5c:87:90:f9:a5:ea:95:73:09:37:8e:82:f6:04: 17:a7:dc:2b:3a:e4:f1:50:0e:e6:fa:31:c2:a3:0c:c0:9e:3e: a6:07:71:a6:f7:a2:76:4e:08:2e:4b:aa:d3:36:1e:7e:22:c1: 97:dc:39:87:9e:62:9c:4a:eb:44:49:93:10:b7:b7:6c:2f:2e: 50:5a:69:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjUxMTAzMDUyOTA1WhcNMjUxMTEwMDUyOTA1WjAYMRYwFAYD VQQDEw02OTA4M2RhMi0zODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmc3vpixUpUPf4XXn3Y9q4hLC6+CnzcdTSecJ+SvwS2SWgcJ5xgJFr+2g8vr yYclRptNxl+pdFABGBP0gviFEmx5riCKJfA0eFmOwjlfMRcxVFyjEVFzphD8hcQS YFrYVE6IOjeS0kryARiCbL+eeDNdrAVqrSc0Es5NBe/ywoqjle0h/zv+PJRjPZRv Z6grrbgwL9r3edwhEx59y+exWYvRmGAIvBNX6J7vVliX2/NcyKIt7dibCqY/dKBc 0/6jIyXS5DGrdxhtsxwu3eIVvsv/uCsX5rBzDA3Jhu5EpeHsRuI2nJNAsNwo1Hut m6ad/b5O1v+TWuRuTAs7hwwM5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOyJ5ys EfUYbABz9ad/Vr1rAAbZMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIFX2XHs575jg/oNJBdFrx+2mbdZK8NYZKCqsVXJ3x8MBM8W4LeVY9 eZeb/sV4bhASXf9sUaK0sfEYIr2y6ap7SX3CCV6vTVMzdYUzp2qGLKrCGCt6f8PI Xs+evha7x3MPh29LG5PoDQdJaQC1PvNSoM/3OTcaUaVZ7XxuUeO7d4Q6CaDMd7aP RNs+stvSyrT2RJatlvTCss1er3KUNcKA4ZiCqcFr7IJJc7Ijl0/Jds5myO0SDAZE XIeQ+aXqlXMJN46C9gQXp9wrOuTxUA7m+jHCowzAnj6mB3Gm96J2TgguS6rTNh5+ IsGX3DmHnmKcSutESZMQt7dsLy5QWmmd -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:32 2025 by rpki-client