$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: hylcdW36ua4K+uRiPO1dri5Er+pCHEREUYew3bgXyVo= Subject key identifier: 6F:C7:7D:FD:E8:C1:C8:D0:F9:B3:CF:5C:FC:37:D1:10:50:7E:E6:25 Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 012C Signing time: Wed 25 Mar 2026 04:49:15 +0000 Manifest this update: Wed 25 Mar 2026 04:49:15 +0000 Manifest next update: Wed 01 Apr 2026 04:49:15 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: 8cqVSeF6HgH8iA9hk0hsrbWDnaPR/uCcd/6yE+AtD3s=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: bidCbRFTgDxHMdqmXAGHrBwGv+QM4m7c3Q2wG1dxBaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Mar 25 04:49:15 2026 GMT Not After : Apr 1 04:49:15 2026 GMT Subject: CN=69c3694b-33ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:31:9f:23:ba:8e:47:f7:13:cd:67:e6:df:7f: 75:9c:14:ae:a8:c8:84:ac:7e:dc:e8:ef:9f:5e:3f: ac:f4:36:6b:16:0c:60:45:f5:25:cd:6e:ec:83:bc: 62:d7:db:33:68:ab:fd:7a:67:e8:c1:4d:10:a7:44: 86:8f:80:62:42:92:6b:40:8d:58:ce:ef:1f:10:14: ac:b9:d7:3b:91:f1:78:76:8d:99:c4:3b:c2:44:79: ad:3b:d0:f6:c0:b2:3e:cd:8d:75:fb:36:af:eb:2c: cf:0d:72:1d:8f:25:df:4a:69:1a:b1:df:22:d3:f3: d7:58:da:d6:89:b2:b0:06:e9:73:f0:23:f4:58:db: c8:6f:32:bc:25:13:cf:40:88:05:a5:05:29:5f:f4: 2f:7e:15:96:9c:32:d4:9c:e4:a6:ad:9c:c4:4b:39: 5d:e7:31:9e:4f:2f:6a:4a:d8:12:92:39:0a:b5:c3: d2:4b:15:a3:10:07:65:37:f7:e9:94:38:8a:13:cf: 24:9c:85:43:8f:7a:60:03:b5:c0:ac:7c:c3:82:c6: a8:5e:3d:38:05:3d:38:da:99:cd:71:08:3d:a3:98: 64:be:38:f7:2d:78:9c:eb:a0:e8:dd:a3:e9:63:6e: 99:46:b7:9d:09:10:80:03:8f:0a:38:4b:56:10:37: aa:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C7:7D:FD:E8:C1:C8:D0:F9:B3:CF:5C:FC:37:D1:10:50:7E:E6:25 X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:95:8f:b6:e9:3d:2c:b9:c9:5a:24:54:01:92:8b:88:a6:6f: b2:24:f0:48:b0:a5:e1:2b:91:4e:90:c2:5d:84:1e:fd:39:96: 74:bf:3d:33:34:02:95:28:d2:25:a1:1b:94:e5:2c:b8:76:47: 42:17:30:11:3d:d5:78:50:62:9d:78:09:9e:da:ad:bc:e3:6a: b2:04:5c:19:88:96:4d:46:51:55:a1:76:ea:4b:2d:40:b8:f2: b2:d7:44:c8:22:66:95:b0:ea:f6:00:68:3d:66:b8:39:99:87: 8a:c8:78:52:87:e0:ad:78:6d:50:00:64:c3:34:e7:08:02:52: 67:74:db:ab:2f:b4:2c:ca:f8:9b:a0:6b:de:8a:40:5d:da:6e: 8d:df:ac:3c:9c:36:62:19:14:29:ec:2c:9d:85:a1:5b:62:c1: b6:c2:4c:59:96:21:be:04:7d:20:b3:2a:c8:32:fe:ec:e2:cf: e1:7e:bb:aa:2d:a7:0d:a7:34:74:15:17:31:91:8b:ad:46:18: 2a:60:ed:d7:6e:1b:2b:79:4f:3b:5c:a6:84:41:08:90:c2:c6: c8:d5:f7:5e:d3:92:5a:a2:f1:16:58:5a:39:00:64:de:ef:5a: 2a:10:4d:d1:58:57:13:3e:4b:f6:29:44:5c:28:ce:72:e8:31: e2:34:cb:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwMzI1MDQ0OTE1WhcNMjYwNDAxMDQ0OTE1WjAYMRYwFAYD VQQDEw02OWMzNjk0Yi0zM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkjGfI7qOR/cTzWfm3391nBSuqMiErH7c6O+fXj+s9DZrFgxgRfUlzW7sg7xi 19szaKv9emfowU0Qp0SGj4BiQpJrQI1Yzu8fEBSsudc7kfF4do2ZxDvCRHmtO9D2 wLI+zY11+zav6yzPDXIdjyXfSmkasd8i0/PXWNrWibKwBulz8CP0WNvIbzK8JRPP QIgFpQUpX/QvfhWWnDLUnOSmrZzESzld5zGeTy9qStgSkjkKtcPSSxWjEAdlN/fp lDiKE88knIVDj3pgA7XArHzDgsaoXj04BT042pnNcQg9o5hkvjj3LXic66Do3aPp Y26ZRredCRCAA48KOEtWEDeq1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG/Hff3o wcjQ+bPPXPw30RBQfuYlMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK5WPtuk9LLnJWiRUAZKLiKZvsiTwSLCl4SuRTpDCXYQe/TmWdL89MzQClSjS JaEblOUsuHZHQhcwET3VeFBinXgJntqtvONqsgRcGYiWTUZRVaF26kstQLjystdE yCJmlbDq9gBoPWa4OZmHish4UofgrXhtUABkwzTnCAJSZ3Tbqy+0LMr4m6Br3opA Xdpujd+sPJw2YhkUKewsnYWhW2LBtsJMWZYhvgR9ILMqyDL+7OLP4X67qi2nDac0 dBUXMZGLrUYYKmDt124bK3lPO1ymhEEIkMLGyNX3XtOSWqLxFlhaOQBk3u9aKhBN 0VhXEz5L9ilEXCjOcugx4jTLqg== -----END CERTIFICATE-----Generated at Thu Mar 26 08:28:49 2026 by rpki-client