$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: uECjE55GUmGqB1KI4iMsSJSyzN6NxK4Y+9PWGeA5nQg= Subject key identifier: AE:8F:A0:67:D6:B3:3D:AD:B0:4F:32:D9:EC:A4:0C:13:87:11:B9:B1 Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 0144 Signing time: Mon 11 May 2026 05:23:11 +0000 Manifest this update: Mon 11 May 2026 05:23:10 +0000 Manifest next update: Mon 18 May 2026 05:23:10 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: 913lwXwXAXmAosThKkJM0EaecTtfam95xLFrvxYFKb8=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: bidCbRFTgDxHMdqmXAGHrBwGv+QM4m7c3Q2wG1dxBaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: May 11 05:23:10 2026 GMT Not After : May 18 05:23:10 2026 GMT Subject: CN=6a0167be-8949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c1:bc:67:e7:f0:81:b2:62:4f:e8:0e:7e:e0: 81:8a:09:84:41:3b:c0:c1:5a:bf:09:ce:b9:d9:9d: 64:4e:37:e0:3e:e5:d5:e5:64:e9:23:e9:2b:21:93: e9:69:c8:7b:0d:fb:19:5d:22:f7:9c:d4:e9:a1:ab: 0d:de:01:04:48:cc:5c:78:ed:a5:e2:58:51:00:73: d0:a9:b5:8a:65:3e:47:43:3a:60:c4:fb:a1:e8:61: 72:b4:0e:71:78:4d:61:02:9b:1e:6e:85:50:6d:c8: d0:cc:a8:4f:d4:57:80:f0:f2:84:d7:fd:b5:e6:5e: 1e:27:de:e8:a5:ca:6b:14:5a:d3:ca:a5:4a:a0:8f: 2f:a4:ec:55:29:f9:d5:a2:ec:91:80:ab:7f:e0:24: e0:62:f3:d0:ad:c9:6b:2c:02:01:ab:80:cd:7e:0a: 5d:93:cc:a1:84:87:fb:c0:0c:1b:50:9d:48:79:ac: d2:c6:75:71:d8:b2:84:6d:43:90:6e:f8:48:95:65: 49:24:9e:58:ff:6c:50:81:eb:c6:20:27:85:e5:9a: 34:b9:0d:c5:be:9a:7e:f2:09:d2:2e:fe:3b:cf:8f: 45:ee:86:eb:fd:40:a4:a9:10:94:2d:01:1e:26:68: df:a3:71:a4:56:dd:bc:9c:c5:f5:3d:40:e0:ed:3a: 16:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8F:A0:67:D6:B3:3D:AD:B0:4F:32:D9:EC:A4:0C:13:87:11:B9:B1 X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:38:7a:e8:19:24:76:7d:47:c7:39:a2:e8:8f:e3:73:dd:45: 05:a1:95:61:89:48:8a:ab:77:7e:76:ef:c4:e5:2f:c8:59:61: a7:bc:93:ce:46:dc:d2:d4:39:a9:53:7f:f0:c3:22:a1:ef:1e: 3b:f2:70:a7:b0:76:0f:27:1e:b6:b8:b7:a9:fa:0a:37:03:e3: dd:b0:4f:58:58:59:18:5e:6b:70:d0:54:a9:c6:7f:50:c5:a6: 3c:10:4f:dd:c6:14:ce:1d:8e:fc:ed:9c:6c:28:38:c8:53:b5: ad:18:29:1d:73:76:c8:2a:9b:4b:15:87:45:6f:e5:47:c7:6b: 5c:cc:74:54:83:54:f0:a8:a2:ab:06:9f:90:f8:ac:a0:36:07: 1b:70:78:99:f8:96:51:12:b9:53:0b:94:e1:56:b5:d9:27:07: b7:24:9b:3e:4b:87:bf:56:69:df:43:83:6c:8c:4a:1e:e8:62: d9:a4:03:c7:18:71:92:3a:66:21:f5:d1:df:31:87:c3:d5:25: a5:e7:57:5c:38:46:82:1f:bc:75:f3:b2:98:5c:0a:eb:ad:89: 68:b7:80:ce:18:66:a9:e6:e5:11:2f:cc:1a:ee:4c:e5:89:d1: 65:1f:a9:cb:14:94:49:9a:bb:ff:e9:a4:0a:7f:24:9f:c2:34: f9:8c:3e:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwNTExMDUyMzEwWhcNMjYwNTE4MDUyMzEwWjAYMRYwFAYD VQQDEw02YTAxNjdiZS04OTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsG8Z+fwgbJiT+gOfuCBigmEQTvAwVq/Cc652Z1kTjfgPuXV5WTpI+krIZPp ach7DfsZXSL3nNTpoasN3gEESMxceO2l4lhRAHPQqbWKZT5HQzpgxPuh6GFytA5x eE1hApseboVQbcjQzKhP1FeA8PKE1/215l4eJ97opcprFFrTyqVKoI8vpOxVKfnV ouyRgKt/4CTgYvPQrclrLAIBq4DNfgpdk8yhhIf7wAwbUJ1IeazSxnVx2LKEbUOQ bvhIlWVJJJ5Y/2xQgevGICeF5Zo0uQ3Fvpp+8gnSLv47z49F7obr/UCkqRCULQEe Jmjfo3GkVt28nMX1PUDg7ToWaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK6PoGfW sz2tsE8y2eykDBOHEbmxMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOTh66Bkkdn1Hxzmi6I/jc91FBaGVYYlIiqt3fnbvxOUvyFlhp7yTzkbc0tQ5 qVN/8MMioe8eO/Jwp7B2Dycetri3qfoKNwPj3bBPWFhZGF5rcNBUqcZ/UMWmPBBP 3cYUzh2O/O2cbCg4yFO1rRgpHXN2yCqbSxWHRW/lR8drXMx0VINU8KiiqwafkPis oDYHG3B4mfiWURK5UwuU4Va12ScHtySbPkuHv1Zp30ODbIxKHuhi2aQDxxhxkjpm IfXR3zGHw9UlpedXXDhGgh+8dfOymFwK662JaLeAzhhmqeblES/MGu5M5YnRZR+p yxSUSZq7/+mkCn8kn8I0+Yw+fw== -----END CERTIFICATE-----Generated at Wed May 13 03:10:48 2026 by rpki-client