$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: 49rFyVdLM7JA6vRkC8wqsK1xSBiqOYR5o0JOUVpn9Mo= Subject key identifier: 3A:A4:62:4D:F5:91:D1:BA:9D:2E:C8:91:78:BE:BE:53:DF:D4:CD:28 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 14A5 Signing time: Sat 18 Oct 2025 18:49:58 +0000 Manifest this update: Sat 18 Oct 2025 18:49:57 +0000 Manifest next update: Sat 25 Oct 2025 18:49:57 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: dWPUMZt7554C+qz99MfB9fj5OoSMBD9QKovp5kknUzw=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: B2tDIxeYNCo5gTNbHXofF/quSOaekq5ljkbk6cQhp5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Oct 18 18:49:57 2025 GMT Not After : Oct 25 18:49:57 2025 GMT Subject: CN=68f3e156-0778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:25:ea:2b:22:76:15:4c:44:84:5c:6a:15: a1:17:39:ab:0e:db:33:02:d6:17:5e:3b:e2:61:bf: a1:f5:be:d3:b9:87:9b:6a:4c:79:e1:00:d7:20:a3: 60:a0:a8:4d:d7:bf:d0:df:a3:ec:d3:e5:29:ef:12: d1:b8:22:1f:c7:90:3a:36:d0:e1:68:05:7b:b7:3e: f9:a3:0c:74:31:d9:1a:5a:4b:bb:f0:a0:da:0a:26: 66:b1:ac:66:a4:4c:48:c9:83:04:96:ca:04:6f:36: d6:28:cd:81:cd:60:ad:ff:f3:b6:bd:80:8f:71:17: 6d:f4:e7:9f:07:74:71:32:50:93:3a:d5:ea:d0:57: d7:f3:3c:78:e8:94:b2:14:47:5c:65:bc:d8:21:96: 5e:db:a1:ca:1d:e1:95:29:e8:81:12:2d:ef:ca:03: 2c:ab:db:ea:da:b4:82:a8:22:91:5a:b6:32:e2:e5: a1:2b:59:6e:72:3b:00:6e:78:1f:9c:e4:1b:c0:85: b3:ac:ed:fb:e7:5d:f6:92:b0:cd:8f:2b:c6:f0:35: 68:05:b0:1a:14:33:1d:96:10:f4:d2:f8:2e:60:1f: f9:cf:f8:78:47:ee:98:c6:db:fd:e2:c4:d9:79:2d: 09:e5:6a:3c:52:60:e7:a8:a9:c1:bf:aa:e6:a0:6f: 58:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A4:62:4D:F5:91:D1:BA:9D:2E:C8:91:78:BE:BE:53:DF:D4:CD:28 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:13:78:51:5e:36:da:4a:30:e4:2d:be:fc:8e:b9:73:aa:0e: 5c:47:52:65:c0:8d:b3:54:27:e1:8e:56:56:46:a0:8c:45:d6: 87:e7:4c:87:1f:45:0c:7e:05:b7:c6:9a:81:38:d0:3a:8e:07: 86:75:e3:85:16:54:76:08:62:ec:30:ec:22:6b:10:9d:36:fa: 77:90:b0:c7:44:81:9c:89:11:df:01:1c:6c:0f:33:49:dc:f3: a2:4c:27:20:dd:ed:61:66:10:70:65:31:97:4e:83:ec:cd:3b: 07:83:bb:e0:1c:a0:00:fe:e4:3f:74:1c:0e:a6:db:35:3b:67: ef:81:ff:f1:bf:cf:34:68:0c:34:f2:9a:3b:2a:a6:d8:a0:3c: a5:25:88:c6:81:ae:cb:c0:23:e3:3b:bf:1a:24:11:47:ff:0d: 0b:a6:c8:f1:06:4c:fb:b5:9e:bd:39:c7:91:c1:9f:5f:c9:3b: 40:41:2f:d4:80:04:d2:f2:d6:4d:ae:cf:fc:f5:9a:d2:1a:a7: e0:ba:df:ea:57:81:6f:f1:9a:1f:fb:f6:fe:96:7b:9a:44:05: d2:b0:ce:34:0c:f7:2f:ef:6d:a5:b4:83:ca:89:26:27:1a:ef: 10:de:fc:5d:dd:1d:c7:ce:ff:ee:0f:90:5f:ee:93:d7:e2:30: 4d:ce:25:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUxMDE4MTg0OTU3WhcNMjUxMDI1MTg0OTU3WjAYMRYwFAYD VQQDEw02OGYzZTE1Ni0wNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMwl6isidhVMRIRcahWhFzmrDtszAtYXXjviYb+h9b7TuYebakx54QDXIKNg oKhN17/Q36Ps0+Up7xLRuCIfx5A6NtDhaAV7tz75owx0MdkaWku78KDaCiZmsaxm pExIyYMElsoEbzbWKM2BzWCt//O2vYCPcRdt9OefB3RxMlCTOtXq0FfX8zx46JSy FEdcZbzYIZZe26HKHeGVKeiBEi3vygMsq9vq2rSCqCKRWrYy4uWhK1lucjsAbngf nOQbwIWzrO375132krDNjyvG8DVoBbAaFDMdlhD00vguYB/5z/h4R+6Yxtv94sTZ eS0J5Wo8UmDnqKnBv6rmoG9YTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqkYk31 kdG6nS7IkXi+vlPf1M0oMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXE3hRXjbaSjDkLb78jrlzqg5cR1JlwI2zVCfhjlZWRqCMRdaH50yH H0UMfgW3xpqBONA6jgeGdeOFFlR2CGLsMOwiaxCdNvp3kLDHRIGciRHfARxsDzNJ 3POiTCcg3e1hZhBwZTGXToPszTsHg7vgHKAA/uQ/dBwOpts1O2fvgf/xv880aAw0 8po7KqbYoDylJYjGga7LwCPjO78aJBFH/w0LpsjxBkz7tZ69OceRwZ9fyTtAQS/U gATS8tZNrs/89ZrSGqfgut/qV4Fv8Zof+/b+lnuaRAXSsM40DPcv722ltIPKiSYn Gu8Q3vxd3R3Hzv/uD5Bf7pPX4jBNziWZ -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:33 2025 by rpki-client