$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: rDcODIvt+P4ZYjJLgcu0HCRW1d59ncxD8jcV5ZgPYzo= Subject key identifier: 37:56:A6:92:FE:18:98:AA:0C:15:43:AC:F4:BE:83:75:F0:57:90:C3 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 0858 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 157C Signing time: Tue 12 May 2026 18:03:51 +0000 Manifest this update: Tue 12 May 2026 18:03:50 +0000 Manifest next update: Tue 19 May 2026 18:03:50 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: 3/Dw+crWhxHA64l6z1H6OmV6uTApPtUuLv+J0keF4tw=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: HxB0HCgQPbOlmo96fIp6uk7AphF4jHP5wZ0nGph8yhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2136 (0x858) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: May 12 18:03:50 2026 GMT Not After : May 19 18:03:50 2026 GMT Subject: CN=6a036b87-1548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:7c:22:d0:90:d2:75:f5:0d:50:32:13:b1: d6:c6:35:31:8a:15:f6:c2:87:a6:1e:55:76:63:7b: f0:22:79:b2:ce:e1:cd:ab:4f:73:86:87:fe:68:a6: 45:e4:cd:ba:4b:f8:05:df:58:cd:3b:34:e2:35:bb: 8a:45:dd:bb:5c:90:67:15:25:49:83:7b:bf:aa:e3: d2:54:9c:63:01:cd:ba:15:ab:be:a1:71:16:99:93: 53:ff:ee:71:58:24:f9:4a:42:ff:e8:7c:4e:63:4a: b4:26:2c:3e:44:c5:59:b7:1a:4f:21:a3:e2:12:83: 14:34:8f:6c:45:bc:8a:0a:49:84:2d:cf:36:a9:6a: 2c:d4:08:ba:c0:cb:7a:02:41:60:b2:1d:ee:73:0b: e3:ae:78:bc:f3:5b:31:e5:b5:b5:0c:ff:19:ad:2b: 45:aa:6b:58:2f:1e:ad:db:9f:74:78:9f:cf:4c:da: c7:be:ea:a3:ef:14:a2:4d:74:94:0d:72:b3:f1:f0: d5:07:22:4a:34:45:42:b8:a5:e7:0d:72:cc:31:5c: 4b:76:8e:24:b1:0d:2b:84:8a:41:d9:f8:06:21:06: a1:57:3c:df:3c:55:fa:3f:a5:e3:9d:53:d7:0c:3a: fd:d5:c3:ea:14:39:b3:59:c0:31:c5:b7:99:c2:1d: ff:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:56:A6:92:FE:18:98:AA:0C:15:43:AC:F4:BE:83:75:F0:57:90:C3 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:6b:5f:97:12:ec:b2:66:09:60:7d:e0:ff:4a:d4:f9:49:28: c0:c3:cd:4e:8f:e7:ee:da:38:dd:ef:49:5d:be:7b:5e:22:e0: ac:98:5e:ee:3f:12:b8:32:54:20:6e:46:b3:52:b6:8d:75:c0: 29:ff:d0:69:e9:5a:36:52:68:23:a9:1b:c2:14:1a:bf:d6:59: 6f:d2:28:41:84:46:4c:82:44:f6:06:53:0f:11:9a:fe:46:9a: df:d9:4f:e3:7a:11:3f:13:97:da:94:1f:89:51:0f:21:f1:4a: a5:59:3f:49:02:91:4d:81:a7:e7:8b:a6:35:4a:03:18:de:d4: 02:6b:87:56:43:e2:88:6d:c1:d5:87:f1:48:e5:bf:2e:40:ff: 3b:a1:75:dd:4b:6c:a6:db:c0:e1:0f:69:6e:4d:7d:10:4b:62: f4:e7:0f:aa:78:48:51:a2:82:63:4b:c9:cf:8b:a7:d9:31:9d: 77:87:f9:94:ed:4a:5b:a3:2c:70:59:35:76:0a:22:fd:08:20: 80:d5:dc:1f:37:30:27:1f:ce:a4:d0:be:59:fa:df:23:7a:4c: f3:fc:b9:e9:fd:80:6b:22:d5:18:39:46:45:3c:18:97:93:40: e9:87:d5:ac:20:bf:0d:52:ac:82:1d:92:ba:aa:5c:77:a8:81: 07:f1:7e:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjYwNTEyMTgwMzUwWhcNMjYwNTE5MTgwMzUwWjAYMRYwFAYD VQQDEw02YTAzNmI4Ny0xNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+p8ItCQ0nX1DVAyE7HWxjUxihX2woemHlV2Y3vwInmyzuHNq09zhof+aKZF 5M26S/gF31jNOzTiNbuKRd27XJBnFSVJg3u/quPSVJxjAc26Fau+oXEWmZNT/+5x WCT5SkL/6HxOY0q0Jiw+RMVZtxpPIaPiEoMUNI9sRbyKCkmELc82qWos1Ai6wMt6 AkFgsh3ucwvjrni881sx5bW1DP8ZrStFqmtYLx6t2590eJ/PTNrHvuqj7xSiTXSU DXKz8fDVByJKNEVCuKXnDXLMMVxLdo4ksQ0rhIpB2fgGIQahVzzfPFX6P6XjnVPX DDr91cPqFDmzWcAxxbeZwh3/KQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDdWppL+ GJiqDBVDrPS+g3XwV5DDMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAomtflxLssmYJYH3g/0rU+UkowMPNTo/n7to43e9JXb57XiLgrJhe7j8SuDJU IG5Gs1K2jXXAKf/QaelaNlJoI6kbwhQav9ZZb9IoQYRGTIJE9gZTDxGa/kaa39lP 43oRPxOX2pQfiVEPIfFKpVk/SQKRTYGn54umNUoDGN7UAmuHVkPiiG3B1YfxSOW/ LkD/O6F13UtsptvA4Q9pbk19EEti9OcPqnhIUaKCY0vJz4un2TGdd4f5lO1KW6Ms cFk1dgoi/QgggNXcHzcwJx/OpNC+WfrfI3pM8/y56f2AayLVGDlGRTwYl5NA6YfV rCC/DVKsgh2Suqpcd6iBB/F+GA== -----END CERTIFICATE-----Generated at Wed May 13 05:08:17 2026 by rpki-client