$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: 40u6a4k1CYhwsrWv4fHuMlUOo7q3fF5Yr+8j5W/3ccM= Subject key identifier: EE:24:30:57:27:E1:D0:BC:78:92:94:F3:58:DB:A9:13:2A:28:41:0E Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 0139 Signing time: Sun 19 Apr 2026 05:04:45 +0000 Manifest this update: Sun 19 Apr 2026 05:04:44 +0000 Manifest next update: Sun 26 Apr 2026 05:04:44 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: oXHz3Jv2zeMs+OPB+zvtm71o/hbEstu2kcfhNpsd7Rk=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: bidCbRFTgDxHMdqmXAGHrBwGv+QM4m7c3Q2wG1dxBaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Apr 19 05:04:44 2026 GMT Not After : Apr 26 05:04:44 2026 GMT Subject: CN=69e4626d-28bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1f:2c:d0:6f:e5:7e:08:fe:bd:46:bd:f6:78: 1a:72:c2:4d:80:20:87:19:b8:c0:05:34:79:ca:dc: dc:93:ba:f8:28:04:1c:7b:bb:73:0d:10:c5:4c:cf: e6:f1:7f:74:d1:9c:9f:f9:12:43:74:2a:a9:27:6e: fb:5a:8e:e2:f9:f4:f1:1d:8e:7d:a0:60:11:6d:ae: f5:31:7d:23:53:81:a0:88:b2:3f:9a:69:14:a1:f0: ad:2f:78:ee:b6:6c:c4:e8:49:06:43:3f:95:a6:09: e5:48:89:eb:16:f6:c3:29:e0:a5:34:8e:ad:fd:6a: ed:34:12:c0:41:42:06:88:eb:6a:2e:13:82:1f:14: 21:f6:2b:5f:8e:0a:cc:2f:c2:a7:07:51:b0:b8:15: 03:42:42:e2:e9:5e:a8:73:f2:62:ee:7e:90:ad:64: fa:04:13:96:84:b9:95:07:f8:0b:95:b9:d8:c8:38: 31:fb:1b:12:66:15:d8:32:5d:b8:c7:13:a9:3a:07: 11:d0:7f:ac:73:23:01:07:21:fc:a7:84:f4:01:b2: 14:60:ff:a5:40:0f:78:29:42:31:ad:b4:81:79:7e: 1f:fc:f5:0d:79:b8:7d:a3:17:13:14:cb:db:1d:2e: 39:90:82:6a:cb:1b:91:1e:87:4c:d6:74:1c:7a:d4: 8f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:24:30:57:27:E1:D0:BC:78:92:94:F3:58:DB:A9:13:2A:28:41:0E X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:43:11:0f:d5:2d:3e:6a:ed:cb:4e:7c:27:77:5f:17:91:ff: 8b:8f:36:c0:12:0a:02:dc:f0:2c:30:33:cd:5c:a8:16:b6:b9: ac:2b:e8:bc:7e:22:c1:0b:3c:49:59:ee:e2:40:7a:6b:1e:f4: 58:95:f6:25:20:1f:88:16:83:5a:5a:55:4b:cc:25:d1:40:63: bd:9c:3f:af:22:5a:3b:90:14:45:2d:09:28:d6:fd:01:76:9d: 5b:01:9b:e2:07:ee:fa:04:70:a6:5c:2b:ee:3d:3f:08:1c:40: 45:fd:5e:83:36:78:c8:55:c8:a6:6c:df:4a:88:59:34:60:ef: 42:9c:ce:ee:44:4c:bb:80:27:81:4d:69:24:9a:06:4e:a8:d3: 67:c5:4a:59:ca:dd:48:d2:0e:05:40:19:40:fd:9e:0d:d4:53: 75:24:2e:0e:43:f0:56:5d:e2:32:ac:fe:cb:d0:7d:6e:9d:7c: 1e:4e:26:95:1b:d7:cc:73:08:cb:d3:45:3e:65:5a:c5:74:fd: a8:41:bc:e5:98:0f:fa:da:c5:52:0d:19:76:c9:50:71:19:bb: 79:0d:e2:d1:c7:1e:58:e2:be:c2:04:76:2f:d3:6e:0d:18:e7: 5a:15:cb:75:90:25:68:5f:30:d0:4a:b6:7a:c4:9b:2b:99:75: 2d:5d:97:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjYwNDE5MDUwNDQ0WhcNMjYwNDI2MDUwNDQ0WjAYMRYwFAYD VQQDEw02OWU0NjI2ZC0yOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzB8s0G/lfgj+vUa99ngacsJNgCCHGbjABTR5ytzck7r4KAQce7tzDRDFTM/m 8X900Zyf+RJDdCqpJ277Wo7i+fTxHY59oGARba71MX0jU4GgiLI/mmkUofCtL3ju tmzE6EkGQz+VpgnlSInrFvbDKeClNI6t/WrtNBLAQUIGiOtqLhOCHxQh9itfjgrM L8KnB1GwuBUDQkLi6V6oc/Ji7n6QrWT6BBOWhLmVB/gLlbnYyDgx+xsSZhXYMl24 xxOpOgcR0H+scyMBByH8p4T0AbIUYP+lQA94KUIxrbSBeX4f/PUNebh9oxcTFMvb HS45kIJqyxuRHodM1nQcetSPjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO4kMFcn 4dC8eJKU81jbqRMqKEEOMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdkMRD9UtPmrty058J3dfF5H/i482wBIKAtzwLDAzzVyoFra5rCvovH4iwQs8 SVnu4kB6ax70WJX2JSAfiBaDWlpVS8wl0UBjvZw/ryJaO5AURS0JKNb9AXadWwGb 4gfu+gRwplwr7j0/CBxARf1egzZ4yFXIpmzfSohZNGDvQpzO7kRMu4AngU1pJJoG TqjTZ8VKWcrdSNIOBUAZQP2eDdRTdSQuDkPwVl3iMqz+y9B9bp18Hk4mlRvXzHMI y9NFPmVaxXT9qEG85ZgP+trFUg0ZdslQcRm7eQ3i0cceWOK+wgR2L9NuDRjnWhXL dZAlaF8w0Eq2esSbK5l1LV2X6A== -----END CERTIFICATE-----Generated at Sun Apr 19 10:04:27 2026 by rpki-client