$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: BSUNw6K1c4Pbdurkb7yOvBUvnA6KNooZ2zvm4nS1QOs= Subject key identifier: FF:5C:E0:90:69:B3:8F:40:52:2F:1B:68:9B:99:47:85:59:D1:F9:87 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 0792 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 13FE Signing time: Mon 12 May 2025 18:05:13 +0000 Manifest this update: Mon 12 May 2025 18:05:12 +0000 Manifest next update: Mon 19 May 2025 18:05:12 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: +E8PmNlskdmZO0obxdaDmtiR0aH7mkRclCZu/T185us=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: noVdM6ngikXxZBW4pTHIBoQSLKize1jndamJhpeixzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1938 (0x792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: May 12 18:05:12 2025 GMT Not After : May 19 18:05:12 2025 GMT Subject: CN=68223859-d898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:42:a8:69:7a:84:46:93:9c:b6:23:98:c0:73: e3:df:00:0b:0e:ed:a1:1e:f8:fe:ea:f2:2b:5e:e3: 5d:77:5c:09:3c:08:0a:49:1f:8e:b9:ee:8c:f9:93: 98:f5:39:05:ed:c4:05:42:bf:2c:f8:6e:d4:e8:3c: f9:64:b7:41:40:c9:27:26:2d:6c:3f:ce:5f:d9:62: 91:a4:c9:02:db:76:bd:c6:cb:f3:67:8b:58:a0:78: bb:9d:23:4d:1a:80:50:c2:3b:2f:11:88:89:69:6d: bc:77:85:ec:24:2a:9c:4d:de:fd:8e:9b:db:54:35: 8f:5a:93:48:c0:b0:71:57:11:0e:82:d8:7f:42:d6: b2:3b:a1:c2:e3:5a:ff:54:6c:ae:b1:97:e0:63:c9: 00:18:89:d8:c8:9a:1a:e7:32:31:3a:81:cc:cd:ee: ae:53:8f:55:ec:46:94:db:08:f1:46:79:99:48:2b: 85:7b:11:71:62:64:ac:7e:35:99:32:76:77:69:7e: ff:6d:05:75:cf:b5:ae:34:5a:17:26:7d:0d:ab:25: 6f:a9:18:db:b1:ce:37:8a:79:e6:49:26:8f:79:c1: 0d:7f:46:05:77:0c:f4:a5:92:f1:57:e9:c0:82:4e: 75:d9:55:04:71:d0:a5:85:54:72:31:f2:b1:41:67: da:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5C:E0:90:69:B3:8F:40:52:2F:1B:68:9B:99:47:85:59:D1:F9:87 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4d:8a:86:e8:76:ce:ef:0d:47:36:c2:97:32:d3:96:d5:4a: 68:1f:65:81:3d:46:3b:97:8e:1c:c7:79:71:ef:d2:b7:f0:65: 13:a3:69:b7:96:e0:b1:78:38:bc:a4:06:64:55:2f:a2:95:43: 32:97:c4:66:cf:4d:ed:9f:22:46:26:2c:33:a0:29:53:d1:d3: e7:6d:89:ca:72:88:5c:b5:c8:ff:f7:b6:56:7a:d1:ed:30:20: c9:23:4b:b8:db:50:8d:b7:84:10:d6:e5:29:39:7d:d9:ba:e6: ab:e8:ee:24:95:42:88:53:fe:01:ef:30:3a:f2:be:7f:e2:18: 58:a6:2b:3a:b6:94:ed:31:ff:e5:a6:ff:f7:86:fd:80:66:1a: 35:b6:53:16:01:31:37:ab:bd:f2:05:43:be:c5:77:ee:10:df: 1a:e0:96:a1:78:b0:08:bc:39:93:46:0e:c0:8b:4c:b3:d0:35: 4a:91:fd:f0:2c:d0:84:63:b5:25:0a:2f:77:f3:57:85:0f:71: a7:be:b8:e4:a4:f0:99:35:7f:59:03:61:f4:e8:24:08:7b:dc: de:f2:35:a4:f4:99:1b:cb:3e:3a:c4:b9:3c:38:f3:14:87:66: 02:db:cb:99:43:45:05:bd:19:34:2f:17:09:e2:cc:42:e7:d6: e9:05:29:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwNTEyMTgwNTEyWhcNMjUwNTE5MTgwNTEyWjAYMRYwFAYD VQQDEw02ODIyMzg1OS1kODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukKoaXqERpOctiOYwHPj3wALDu2hHvj+6vIrXuNdd1wJPAgKSR+Oue6M+ZOY 9TkF7cQFQr8s+G7U6Dz5ZLdBQMknJi1sP85f2WKRpMkC23a9xsvzZ4tYoHi7nSNN GoBQwjsvEYiJaW28d4XsJCqcTd79jpvbVDWPWpNIwLBxVxEOgth/QtayO6HC41r/ VGyusZfgY8kAGInYyJoa5zIxOoHMze6uU49V7EaU2wjxRnmZSCuFexFxYmSsfjWZ MnZ3aX7/bQV1z7WuNFoXJn0NqyVvqRjbsc43innmSSaPecENf0YFdwz0pZLxV+nA gk512VUEcdClhVRyMfKxQWfaSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9c4JBp s49AUi8baJuZR4VZ0fmHMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8TYqG6HbO7w1HNsKXMtOW1UpoH2WBPUY7l44cx3lx79K38GUTo2m3 luCxeDi8pAZkVS+ilUMyl8Rmz03tnyJGJiwzoClT0dPnbYnKcohctcj/97ZWetHt MCDJI0u421CNt4QQ1uUpOX3Zuuar6O4klUKIU/4B7zA68r5/4hhYpis6tpTtMf/l pv/3hv2AZho1tlMWATE3q73yBUO+xXfuEN8a4JaheLAIvDmTRg7Ai0yz0DVKkf3w LNCEY7UlCi9381eFD3GnvrjkpPCZNX9ZA2H06CQIe9ze8jWk9Jkbyz46xLk8OPMU h2YC28uZQ0UFvRk0LxcJ4sxC59bpBSlb -----END CERTIFICATE-----Generated at Wed May 14 17:19:39 2025 by rpki-client