$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: d3gaGYuzQWwjozyjFDWyMpzqufCPq6Ww0igAhHrTKWE= Subject key identifier: D7:B2:41:23:0B:64:9A:77:E0:B2:3F:06:C0:EE:AD:23:0A:FA:18:07 Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 0149 Signing time: Thu 21 May 2026 05:19:43 +0000 Manifest this update: Thu 21 May 2026 05:19:43 +0000 Manifest next update: Thu 28 May 2026 05:19:43 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: HO3Uy7ydwy3xat8D3eaVZnmFrjWOJqXhPVoAUZ/iqdk=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: bidCbRFTgDxHMdqmXAGHrBwGv+QM4m7c3Q2wG1dxBaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: May 21 05:19:43 2026 GMT Not After : May 28 05:19:43 2026 GMT Subject: CN=6a0e95ef-b924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:46:e3:04:71:ca:b1:96:cc:a7:68:9f:7d: 61:b7:11:68:07:d0:80:29:06:5d:7c:a4:9e:45:00: 83:4e:db:2c:aa:80:48:d0:ef:b1:d2:d5:46:a0:ac: 4b:b0:0b:22:3e:74:ad:0b:7d:a6:10:f7:37:fa:49: d4:f7:3f:e7:11:11:2a:91:a8:5f:7b:b8:7b:23:08: ef:a1:ee:f6:42:c6:95:d9:48:27:5e:e8:a9:da:76: 72:5e:da:72:64:d1:fc:b0:7c:88:c4:82:43:67:39: f5:71:e6:4b:7f:a0:bd:c5:01:63:e2:43:1a:ff:d3: b7:3c:f0:ce:02:74:a1:f4:67:7b:f6:30:4b:51:0e: 99:fc:9d:01:09:75:de:6f:14:41:7f:52:33:ff:d5: 77:5b:84:1a:3c:1f:0d:ed:74:a7:56:e2:5c:df:28: 3c:df:25:40:31:18:6a:a0:af:db:e7:ad:10:9c:4f: ca:06:00:55:10:ed:c4:02:e9:35:be:da:b2:a6:07: 70:44:6d:c0:94:d8:9a:1e:ba:b6:41:cf:c4:33:1c: 36:8c:c1:11:c7:32:04:b0:c8:13:5a:44:35:02:10: b6:59:69:59:1a:cb:26:22:96:5b:0e:c4:37:69:bf: 7b:da:fb:a1:b9:7c:7b:0b:bc:de:9b:dd:c9:f4:d0: 4f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B2:41:23:0B:64:9A:77:E0:B2:3F:06:C0:EE:AD:23:0A:FA:18:07 X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:cb:92:be:54:9e:2f:96:be:94:e3:6b:8b:9e:16:c8:05:96: 32:dc:6f:8a:f0:7c:a1:d5:67:85:9f:d4:e8:1e:98:29:b9:7a: b1:54:4d:f0:c6:8f:5a:b3:6f:cc:75:27:bb:4d:b0:d5:2d:e0: ea:4c:45:d8:92:cb:c1:18:a7:6a:fd:d0:93:14:fc:b1:da:39: 83:8f:e9:74:26:ae:ab:e3:51:3d:41:d2:61:15:07:cf:f6:b1: 9b:8c:5f:97:88:8d:8c:71:c9:bc:a6:5e:47:96:11:e5:6c:ba: cb:94:47:64:4c:56:86:94:d1:b7:26:33:45:bb:e8:94:1a:c4: 15:44:29:12:a6:c1:b3:1d:80:fb:1e:c6:7c:ef:c2:1a:ff:30: cf:89:b2:7f:63:b0:d0:bb:11:fe:71:5e:3b:af:46:d1:7c:0f: ca:d6:0d:85:90:8a:29:8f:94:43:48:25:72:63:3f:6b:19:1b: 5a:c7:f9:e3:f7:dc:08:ab:10:16:4f:18:96:58:09:1c:ba:e9: e6:34:47:c9:98:74:01:05:61:8b:1f:c7:09:4c:fa:7d:d6:ec: 72:91:eb:9a:12:db:ef:b9:34:c4:28:03:ed:20:c7:13:3f:8e: 77:d7:97:11:f0:e6:2f:d8:c9:cf:8b:e6:b4:c0:8b:92:7f:0e: 8f:f9:75:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwNTIxMDUxOTQzWhcNMjYwNTI4MDUxOTQzWjAYMRYwFAYD VQQDEw02YTBlOTVlZi1iOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0dG4wRxyrGWzKdon31htxFoB9CAKQZdfKSeRQCDTtssqoBI0O+x0tVGoKxL sAsiPnStC32mEPc3+knU9z/nEREqkahfe7h7Iwjvoe72QsaV2UgnXuip2nZyXtpy ZNH8sHyIxIJDZzn1ceZLf6C9xQFj4kMa/9O3PPDOAnSh9Gd79jBLUQ6Z/J0BCXXe bxRBf1Iz/9V3W4QaPB8N7XSnVuJc3yg83yVAMRhqoK/b560QnE/KBgBVEO3EAuk1 vtqypgdwRG3AlNiaHrq2Qc/EMxw2jMERxzIEsMgTWkQ1AhC2WWlZGssmIpZbDsQ3 ab972vuhuXx7C7zem93J9NBPmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNeyQSML ZJp34LI/BsDurSMK+hgHMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQMuSvlSeL5a+lONri54WyAWWMtxvivB8odVnhZ/U6B6YKbl6sVRN8MaPWrNv zHUnu02w1S3g6kxF2JLLwRinav3QkxT8sdo5g4/pdCauq+NRPUHSYRUHz/axm4xf l4iNjHHJvKZeR5YR5Wy6y5RHZExWhpTRtyYzRbvolBrEFUQpEqbBsx2A+x7GfO/C Gv8wz4myf2Ow0LsR/nFeO69G0XwPytYNhZCKKY+UQ0glcmM/axkbWsf54/fcCKsQ Fk8YllgJHLrp5jRHyZh0AQVhix/HCUz6fdbscpHrmhLb77k0xCgD7SDHEz+Od9eX EfDmL9jJz4vmtMCLkn8Oj/l1Xg== -----END CERTIFICATE-----Generated at Thu May 21 10:52:25 2026 by rpki-client