$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: 0SZZnCUOWN9kXWWnYtE5L/xAvpK8+leU157rvOtkrmQ= Subject key identifier: 69:27:AF:62:1E:08:4E:67:38:68:5D:C3:1A:2C:AE:68:64:B7:91:1D Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: CC Signing time: Fri 19 Sep 2025 06:23:49 +0000 Manifest this update: Fri 19 Sep 2025 06:23:49 +0000 Manifest next update: Fri 26 Sep 2025 06:23:49 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: CbjcrLJCGWgeBik39QkpCoari7/c+PCmVSYdsLPrF20=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: ssSab392rUEklfenSvYRYq8TUWajk4XJZygnBh6m+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Sep 19 06:23:49 2025 GMT Not After : Sep 26 06:23:49 2025 GMT Subject: CN=68ccf6f5-9cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f7:ed:83:7f:ba:27:4e:7f:3d:b7:25:8f:bf: 9b:73:e7:32:30:d4:1f:ef:1b:4b:a7:f8:f0:44:09: d0:c7:9b:95:39:f3:0b:01:eb:1f:41:a0:b8:67:41: 18:44:27:78:e2:07:4b:80:5e:6e:11:1a:2e:c1:84: ce:8a:8b:04:7f:e7:37:44:6c:b9:f2:19:9b:c8:3f: 50:89:41:53:41:6b:e3:f4:2c:72:f5:39:f4:54:02: 25:81:8f:34:7c:6d:44:92:d6:67:0a:f3:05:37:53: 97:12:45:be:c0:a8:fe:d8:73:91:1b:82:4b:05:29: e5:1e:f9:f5:ba:f9:1b:6c:5c:cf:9a:f7:f5:64:79: b1:d0:2c:f4:d0:a9:fe:f9:56:44:cc:c5:ec:67:1f: e7:e5:2f:f2:59:b6:5f:d4:de:ff:a3:d6:76:5d:99: e0:7b:39:4d:2c:d8:b9:53:38:9c:71:1b:cf:36:64: e0:4d:b0:47:d6:30:81:ae:36:be:68:ba:73:c7:94: eb:1f:79:de:5f:4f:b2:7f:e1:41:4c:e7:d0:57:9c: 62:fa:a0:31:b5:c9:f5:ec:ac:21:bd:47:d0:dd:9c: 0d:bd:82:ce:eb:e7:e5:ff:87:62:09:a2:f2:f8:30: 13:52:7c:eb:e2:dd:1d:76:21:f9:0b:68:c2:6d:bc: 78:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:27:AF:62:1E:08:4E:67:38:68:5D:C3:1A:2C:AE:68:64:B7:91:1D X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b9:5d:bc:15:24:53:2d:94:ab:1e:28:c3:e3:33:15:4b:32: 61:77:28:8e:5a:c7:03:32:e7:9f:d5:61:09:29:31:38:1e:7c: bf:6e:9b:24:92:d1:de:8d:33:42:95:fd:05:c3:bc:79:59:27: ca:7d:04:9a:44:f6:5d:ce:8d:f3:d7:2c:6b:bf:ac:2c:7f:f8: d7:2d:f9:9d:9e:37:03:71:e7:bf:49:02:d7:71:46:9f:8b:16: 42:25:a0:0c:a9:f1:f0:9d:2e:6b:27:a9:8e:f2:65:98:48:5d: b7:e9:be:7e:b6:a9:86:6c:ff:7b:9e:e7:cb:ae:66:70:e3:f4: d1:3a:ab:57:7b:8b:0f:fb:cd:0a:fc:57:dc:85:13:a3:f4:5d: 40:44:66:8f:dd:b1:6c:34:25:42:0b:df:c8:43:d0:d5:c3:33: 6d:73:8f:e2:ab:cc:34:3c:63:f4:ee:cc:45:91:e1:36:8b:f5: 70:2c:b7:d5:d9:08:a8:4e:81:0b:d1:be:04:27:e5:9a:9e:23: 6a:f0:0b:00:f5:da:96:da:26:be:ac:79:1c:ba:93:f7:58:d9: 9f:de:74:40:4b:ac:c3:6a:40:e5:ba:47:bc:bc:7f:5c:77:26: ec:81:8b:11:f4:dc:bc:53:5a:ec:4b:64:8c:06:ba:70:0b:19: dc:09:87:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjUwOTE5MDYyMzQ5WhcNMjUwOTI2MDYyMzQ5WjAYMRYwFAYD VQQDEw02OGNjZjZmNS05Y2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvftg3+6J05/Pbclj7+bc+cyMNQf7xtLp/jwRAnQx5uVOfMLAesfQaC4Z0EY RCd44gdLgF5uERouwYTOiosEf+c3RGy58hmbyD9QiUFTQWvj9Cxy9Tn0VAIlgY80 fG1EktZnCvMFN1OXEkW+wKj+2HORG4JLBSnlHvn1uvkbbFzPmvf1ZHmx0Cz00Kn+ +VZEzMXsZx/n5S/yWbZf1N7/o9Z2XZngezlNLNi5UziccRvPNmTgTbBH1jCBrja+ aLpzx5TrH3neX0+yf+FBTOfQV5xi+qAxtcn17KwhvUfQ3ZwNvYLO6+fl/4diCaLy +DATUnzr4t0ddiH5C2jCbbx4twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGknr2Ie CE5nOGhdwxosrmhkt5EdMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbuV28FSRTLZSrHijD4zMVSzJhdyiOWscDMuef1WEJKTE4Hny/bpsk ktHejTNClf0Fw7x5WSfKfQSaRPZdzo3z1yxrv6wsf/jXLfmdnjcDcee/SQLXcUaf ixZCJaAMqfHwnS5rJ6mO8mWYSF236b5+tqmGbP97nufLrmZw4/TROqtXe4sP+80K /FfchROj9F1ARGaP3bFsNCVCC9/IQ9DVwzNtc4/iq8w0PGP07sxFkeE2i/VwLLfV 2QioToEL0b4EJ+WaniNq8AsA9dqW2ia+rHkcupP3WNmf3nRAS6zDakDluke8vH9c dybsgYsR9Ny8U1rsS2SMBrpwCxncCYdP -----END CERTIFICATE-----Generated at Fri Sep 19 10:37:08 2025 by rpki-client