$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: CgOUQSyMOitWmBy+aRNLEVW4C/ROkuftz57TPbjY+ZM= Subject key identifier: 8C:B7:EF:EB:B1:10:AC:EB:6A:E8:E5:3C:EA:5B:F2:DA:D7:1E:A6:21 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 083F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 154A Signing time: Tue 24 Mar 2026 17:54:32 +0000 Manifest this update: Tue 24 Mar 2026 17:54:32 +0000 Manifest next update: Tue 31 Mar 2026 17:54:32 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: hcXKtSvyq/+1AbGiYKcGbHIHvP70acQ5it846NIg3mY=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: HxB0HCgQPbOlmo96fIp6uk7AphF4jHP5wZ0nGph8yhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Mar 24 17:54:32 2026 GMT Not After : Mar 31 17:54:32 2026 GMT Subject: CN=69c2cfd8-9a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d2:65:cb:d5:88:e8:9b:5f:ea:b7:21:bd:0f: 37:0e:6f:05:05:35:72:2d:54:52:c3:12:d2:f1:ad: df:da:0e:c5:33:8b:f5:9b:07:b1:00:6b:91:be:a7: 2c:b8:b0:c2:eb:16:0c:b2:7a:1d:db:02:da:93:dd: af:d9:71:77:f6:0e:86:41:58:e6:22:65:12:27:1b: d7:06:d0:6a:ba:36:0b:1b:3a:ce:fd:b2:47:3d:ee: 9d:77:8d:11:cf:e1:c3:12:af:df:98:a4:53:6b:42: 1a:bb:b4:e7:2a:a1:16:9a:f6:cc:13:d0:9b:72:47: 01:e8:66:fc:b1:d8:50:c9:25:18:0b:75:f1:c2:b5: 18:f9:0c:fe:34:86:7b:fa:e0:2c:ad:fc:3e:82:58: f4:4e:58:35:d3:f3:c8:f7:c6:19:ea:58:2b:7a:03: 38:d6:f3:ad:97:31:57:93:64:7a:10:cc:16:e7:52: 80:64:b0:71:3b:08:38:d0:80:85:9d:69:e4:2a:d5: d4:35:6e:b2:00:01:2b:c9:4e:3c:7b:3f:86:c4:c1: 48:b3:ee:92:47:d9:53:39:91:d9:50:4d:89:21:be: 63:ca:7f:a5:fa:70:1d:8e:7f:c1:43:90:73:29:c0: 66:0d:87:7d:d9:15:eb:75:7f:7f:47:d9:8a:aa:3d: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B7:EF:EB:B1:10:AC:EB:6A:E8:E5:3C:EA:5B:F2:DA:D7:1E:A6:21 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:38:d5:2d:0b:e8:c3:d8:d7:47:05:39:db:e2:f0:31:92:ad: 21:de:e7:b3:fa:b1:33:bb:77:3d:47:b9:e3:56:09:ac:e1:0f: b7:57:21:d4:65:b1:4d:ec:d9:08:15:f8:30:71:7b:10:0e:6a: f7:74:68:f4:f7:d1:17:d9:c1:5a:04:e3:48:e3:c7:cb:e8:7a: f3:4e:72:65:b3:35:fa:ae:36:ea:86:d3:4f:05:5e:3a:76:e0: da:31:75:c9:21:c0:e2:87:1d:5c:b4:51:80:e9:7d:c4:5d:78: 71:fa:fb:39:ec:7f:57:ff:3d:90:80:87:40:23:bb:e3:1b:93: b0:ee:40:2d:85:ef:99:4c:91:88:f4:48:63:0e:e2:d5:95:ba: 4b:6b:4f:41:27:c9:17:5c:cb:51:c1:10:1d:d8:51:73:30:fb: 65:78:a9:08:70:06:86:b0:6e:87:64:40:49:f8:50:0c:ca:b6: 72:77:25:da:56:6d:33:56:1a:39:c1:16:11:a8:1b:17:9d:3f: cc:85:0b:c0:7e:34:a0:dd:96:33:8d:32:3c:66:65:20:3c:70: e1:20:8f:1b:82:20:ec:3f:55:82:7e:92:1c:81:fa:82:1d:eb: e0:fd:40:89:b5:d1:f1:14:d9:57:3f:49:6f:f2:0d:8d:7a:64: fd:80:76:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjYwMzI0MTc1NDMyWhcNMjYwMzMxMTc1NDMyWjAYMRYwFAYD VQQDEw02OWMyY2ZkOC05YTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztJly9WI6Jtf6rchvQ83Dm8FBTVyLVRSwxLS8a3f2g7FM4v1mwexAGuRvqcs uLDC6xYMsnod2wLak92v2XF39g6GQVjmImUSJxvXBtBqujYLGzrO/bJHPe6dd40R z+HDEq/fmKRTa0Iau7TnKqEWmvbME9CbckcB6Gb8sdhQySUYC3XxwrUY+Qz+NIZ7 +uAsrfw+glj0Tlg10/PI98YZ6lgregM41vOtlzFXk2R6EMwW51KAZLBxOwg40ICF nWnkKtXUNW6yAAEryU48ez+GxMFIs+6SR9lTOZHZUE2JIb5jyn+l+nAdjn/BQ5Bz KcBmDYd92RXrdX9/R9mKqj3TcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIy37+ux EKzraujlPOpb8trXHqYhMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgzjVLQvow9jXRwU52+LwMZKtId7ns/qxM7t3PUe541YJrOEPt1ch1GWxTezZ CBX4MHF7EA5q93Ro9PfRF9nBWgTjSOPHy+h6805yZbM1+q426obTTwVeOnbg2jF1 ySHA4ocdXLRRgOl9xF14cfr7Oex/V/89kICHQCO74xuTsO5ALYXvmUyRiPRIYw7i 1ZW6S2tPQSfJF1zLUcEQHdhRczD7ZXipCHAGhrBuh2RASfhQDMq2cncl2lZtM1Ya OcEWEagbF50/zIULwH40oN2WM40yPGZlIDxw4SCPG4Ig7D9Vgn6SHIH6gh3r4P1A ibXR8RTZVz9Jb/INjXpk/YB2LA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:32:19 2026 by rpki-client