$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: Loxa8nJuCrKBSROgSd/g7dD0kZhWIRNL8ilqDIha8rs= Subject key identifier: 49:AB:96:6E:7E:68:A4:3C:C6:0F:7C:15:4B:9A:42:0B:07:A6:33:6B Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 011E Signing time: Sun 01 Mar 2026 06:48:05 +0000 Manifest this update: Sun 01 Mar 2026 06:48:04 +0000 Manifest next update: Sun 08 Mar 2026 06:48:04 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: DfmNV3KR1mOuByP/HvYSPSgldpdKdQ1/b3wLPWqlgP4=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: ssSab392rUEklfenSvYRYq8TUWajk4XJZygnBh6m+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Mar 1 06:48:04 2026 GMT Not After : Mar 8 06:48:04 2026 GMT Subject: CN=69a3e125-84ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:49:d4:2a:f5:2f:de:7a:99:7f:d8:2d:b0:b4: 48:4a:46:be:49:a3:93:dc:79:3f:b3:64:f7:85:c4: cd:f1:65:30:23:b0:d7:1e:8e:0a:c5:a1:51:4f:89: 2f:32:b8:fd:04:f7:fa:22:a1:b4:21:9c:05:03:b1: 0a:44:c3:db:d1:fe:56:e0:4e:08:d3:54:bb:e4:a5: c4:6f:50:39:c6:d4:45:4f:b1:f4:7e:c3:a7:ad:4b: 46:6f:d5:b3:bc:45:69:01:19:b0:fe:83:3e:e5:2d: 08:de:75:06:e8:66:33:5e:fa:d8:e1:50:a7:aa:94: ed:66:dd:ab:24:1c:d1:51:a0:9e:64:ce:52:33:2f: 33:b4:f3:fe:17:ad:8b:90:71:15:57:5f:ed:a3:11: 54:bf:35:fd:84:0b:97:b6:0c:17:07:63:5a:e4:0b: e3:ce:83:85:a2:74:be:6f:5b:63:5f:1f:a9:97:39: 1d:22:27:bc:35:e5:00:99:ab:bb:9e:85:5d:50:bd: d6:8d:10:3b:e9:bf:3e:ad:2a:76:96:09:56:31:fa: 36:7e:68:50:58:15:44:43:43:47:27:70:2f:6e:ea: 1a:97:3a:7d:5f:f8:56:9a:2f:be:54:26:87:c9:c6: c8:a1:f8:42:01:ae:95:f1:41:22:f3:ec:a1:33:6b: 1e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AB:96:6E:7E:68:A4:3C:C6:0F:7C:15:4B:9A:42:0B:07:A6:33:6B X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:0c:67:fd:b3:24:98:40:cc:b9:4a:dc:1e:54:36:3d:72:f3: 13:91:2c:f6:f8:59:d1:47:16:2a:82:16:e6:1c:06:84:eb:02: 23:d9:db:18:d9:9c:b1:f5:89:fe:47:58:98:dd:82:bb:8e:5d: 5d:be:5e:5b:68:81:cc:dd:62:21:f8:78:26:9f:a9:86:8d:a3: db:25:c1:c6:f4:8b:b0:18:46:d9:b4:3f:1e:24:99:a1:40:16: 3b:1c:71:7a:99:13:9c:3c:e0:d0:d3:e0:c3:20:bd:ed:d8:f6: f4:3d:3f:f7:39:56:0a:70:eb:3d:26:57:6e:80:b5:49:2b:10: 7f:2a:56:ae:6c:21:c5:e3:c4:69:fa:63:40:fe:e3:c6:5f:58: 2b:9b:0a:de:92:67:c9:5f:22:8a:53:ae:00:a4:9a:cc:1e:38: c6:93:be:66:6f:73:cc:be:2a:37:53:39:4b:f5:04:39:db:02: 09:00:1c:bc:22:df:be:71:4b:d6:7c:27:96:ee:ab:c0:f7:95: 76:3e:93:1c:19:c6:df:92:26:ea:93:e5:f1:76:70:c5:45:b8: f6:5d:79:d0:72:f1:bd:00:8f:36:d7:7d:2e:12:87:c9:07:78: bd:24:01:ee:49:ee:5a:f2:a6:e7:7f:0d:4d:1c:26:9a:b7:45: 58:a9:40:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwMzAxMDY0ODA0WhcNMjYwMzA4MDY0ODA0WjAYMRYwFAYD VQQDEw02OWEzZTEyNS04NGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj0nUKvUv3nqZf9gtsLRISka+SaOT3Hk/s2T3hcTN8WUwI7DXHo4KxaFRT4kv Mrj9BPf6IqG0IZwFA7EKRMPb0f5W4E4I01S75KXEb1A5xtRFT7H0fsOnrUtGb9Wz vEVpARmw/oM+5S0I3nUG6GYzXvrY4VCnqpTtZt2rJBzRUaCeZM5SMy8ztPP+F62L kHEVV1/toxFUvzX9hAuXtgwXB2Na5AvjzoOFonS+b1tjXx+plzkdIie8NeUAmau7 noVdUL3WjRA76b8+rSp2lglWMfo2fmhQWBVEQ0NHJ3Avbuoalzp9X/hWmi++VCaH ycbIofhCAa6V8UEi8+yhM2se2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEmrlm5+ aKQ8xg98FUuaQgsHpjNrMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgAxn/bMkmEDMuUrcHlQ2PXLzE5Es9vhZ0UcWKoIW5hwGhOsCI9nbGNmcsfWJ /kdYmN2Cu45dXb5eW2iBzN1iIfh4Jp+pho2j2yXBxvSLsBhG2bQ/HiSZoUAWOxxx epkTnDzg0NPgwyC97dj29D0/9zlWCnDrPSZXboC1SSsQfypWrmwhxePEafpjQP7j xl9YK5sK3pJnyV8iilOuAKSazB44xpO+Zm9zzL4qN1M5S/UEOdsCCQAcvCLfvnFL 1nwnlu6rwPeVdj6THBnG35Im6pPl8XZwxUW49l150HLxvQCPNtd9LhKHyQd4vSQB 7knuWvKm538NTRwmmrdFWKlAMw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:19 2026 by rpki-client