$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: cTxfOIwXCwQURjXQF25xnGjqMCUczgzknucuduljQ8M= Subject key identifier: B7:1B:14:FD:7D:7C:F7:B0:89:B3:C4:21:0C:B3:57:0C:38:DB:CE:36 Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: B3 Signing time: Tue 05 Aug 2025 06:33:54 +0000 Manifest this update: Tue 05 Aug 2025 06:33:53 +0000 Manifest next update: Tue 12 Aug 2025 06:33:53 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: Ik9HbXNEbRQl8vXAicwkuhI0BZGv1AlFvuTtE3PPerU=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: g7W9G3ij02vVGRhQiw6Ym1yygIWGPWKSpCEET+ZTaHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Aug 5 06:33:53 2025 GMT Not After : Aug 12 06:33:53 2025 GMT Subject: CN=6891a5d1-c330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:10:a3:e2:a8:65:7c:64:75:c2:4e:35:41: 71:94:70:a1:ed:71:53:7b:5b:7f:10:59:a7:2d:45: ac:f5:a6:e7:77:07:de:72:e6:3d:09:ce:48:14:ac: aa:20:59:c3:07:7a:f9:66:bf:27:3d:26:4a:78:ff: be:93:32:14:31:63:ec:0d:96:76:f3:2d:6b:1f:62: 28:be:bd:5f:2c:b3:a4:fe:7e:18:14:72:65:97:f8: a5:93:b5:27:9c:89:0a:2c:90:10:2c:cc:b7:aa:9b: 8f:52:fc:62:dd:bd:88:fc:c0:54:8e:7a:18:d4:f6: 01:8e:f3:a0:52:c1:17:27:52:b6:08:1d:5e:7e:e9: ee:50:aa:1f:e1:e1:a6:70:6c:4f:65:54:8d:fc:b3: e8:6b:54:14:d8:bc:9c:0c:d4:5c:43:a5:0c:87:d5: 68:76:5e:d6:8f:c7:55:34:90:dd:3f:b8:85:2f:ef: b2:e9:f8:b1:48:a2:a6:b5:4a:7c:50:4a:f0:2c:a7: b6:01:eb:c5:9a:4f:f3:f5:7b:b9:9a:f5:15:8d:0e: 35:fc:bb:87:49:aa:41:b2:f1:d5:54:ae:08:8b:17: aa:21:c4:f7:f3:8d:39:4d:ac:c2:15:da:47:e7:f6: 2e:05:b4:d0:a3:76:69:25:ae:3d:6e:3c:bd:0f:f5: 8a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1B:14:FD:7D:7C:F7:B0:89:B3:C4:21:0C:B3:57:0C:38:DB:CE:36 X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:fc:01:40:cf:4b:99:b8:3c:55:74:26:c6:d2:bc:63:e6:44: fe:af:74:e8:7b:50:95:57:1b:a5:c1:36:cd:2b:c4:8b:1e:aa: 62:d8:a8:dc:49:36:13:43:8b:5a:47:55:3f:4f:10:c3:0c:d1: e9:29:92:14:b4:c0:3e:7e:5d:42:03:af:49:41:1f:0b:ba:c2: 48:49:91:eb:b6:b7:c4:9b:8d:5c:96:12:df:99:f9:4e:14:70: 1a:56:50:b9:73:53:6e:6c:5c:1d:0a:fb:57:08:93:1d:71:ab: bd:3e:dc:df:5c:26:e9:64:80:ba:f0:d3:fc:8b:f0:22:35:f5: c5:46:5f:c9:f2:de:81:38:82:b2:74:fc:73:d0:75:15:74:ba: 45:a6:6e:cc:93:0f:23:15:1c:f0:cb:4d:80:75:48:94:49:a3: 67:31:e6:56:b4:83:5b:dd:0f:5b:95:b4:2e:c9:ae:61:15:a1: e5:a5:bc:35:cd:d2:a1:d2:49:0c:5b:11:d9:5d:d2:d3:d0:5f: 18:23:2e:7a:b0:12:4e:e4:89:54:bb:15:38:41:71:45:ef:71: 49:68:0b:27:41:43:76:6d:a1:2c:8c:a5:e9:da:e2:4b:58:62: f3:77:d5:0d:16:0f:9e:b5:cb:3b:95:85:78:4d:f8:35:69:29: 1a:fa:13:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjUwODA1MDYzMzUzWhcNMjUwODEyMDYzMzUzWjAYMRYwFAYD VQQDEw02ODkxYTVkMS1jMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPMQo+KoZXxkdcJONUFxlHCh7XFTe1t/EFmnLUWs9abndwfecuY9Cc5IFKyq IFnDB3r5Zr8nPSZKeP++kzIUMWPsDZZ28y1rH2Iovr1fLLOk/n4YFHJll/ilk7Un nIkKLJAQLMy3qpuPUvxi3b2I/MBUjnoY1PYBjvOgUsEXJ1K2CB1efunuUKof4eGm cGxPZVSN/LPoa1QU2LycDNRcQ6UMh9Vodl7Wj8dVNJDdP7iFL++y6fixSKKmtUp8 UErwLKe2AevFmk/z9Xu5mvUVjQ41/LuHSapBsvHVVK4IixeqIcT38405TazCFdpH 5/YuBbTQo3ZpJa49bjy9D/WKmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcbFP19 fPewibPEIQyzVww42842MB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX/AFAz0uZuDxVdCbG0rxj5kT+r3Toe1CVVxulwTbNK8SLHqpi2Kjc STYTQ4taR1U/TxDDDNHpKZIUtMA+fl1CA69JQR8LusJISZHrtrfEm41clhLfmflO FHAaVlC5c1NubFwdCvtXCJMdcau9PtzfXCbpZIC68NP8i/AiNfXFRl/J8t6BOIKy dPxz0HUVdLpFpm7Mkw8jFRzwy02AdUiUSaNnMeZWtINb3Q9blbQuya5hFaHlpbw1 zdKh0kkMWxHZXdLT0F8YIy56sBJO5IlUuxU4QXFF73FJaAsnQUN2baEsjKXp2uJL WGLzd9UNFg+etcs7lYV4Tfg1aSka+hNe -----END CERTIFICATE-----Generated at Thu Aug 7 03:53:00 2025 by rpki-client