$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: gKVFr3EUXFJI3KV6gR9w4b5JASMi3+bk2Upq3kGsM3Q= Subject key identifier: 43:40:C1:DA:95:2B:DB:38:CA:F6:59:EF:1C:3B:FC:70:AD:FE:80:FE Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 1432 Signing time: Wed 02 Jul 2025 18:24:16 +0000 Manifest this update: Wed 02 Jul 2025 18:24:15 +0000 Manifest next update: Wed 09 Jul 2025 18:24:15 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: WYRcncPIH5c3AxY8vkIn52RH0qxg/WeZIhjSKxAjTpQ=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: noVdM6ngikXxZBW4pTHIBoQSLKize1jndamJhpeixzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Jul 2 18:24:15 2025 GMT Not After : Jul 9 18:24:15 2025 GMT Subject: CN=68657950-91f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:50:9d:34:f3:c5:f3:ad:3f:7a:78:0c:63: 2f:e1:01:ba:3f:00:d8:1b:73:7a:e8:79:2d:25:b3: e4:b5:34:d3:73:0d:40:57:6d:3c:29:dc:89:26:ea: 8a:40:1d:c8:a8:22:a0:53:17:d3:68:aa:e8:39:0f: aa:b2:d6:a1:78:0e:42:c8:f3:d5:44:1a:66:45:8f: 56:9c:af:88:33:16:7c:15:9f:0a:26:39:1e:3b:ec: 20:ea:82:66:9e:4a:79:1f:cd:35:4f:24:94:77:fa: 38:a1:27:86:25:0d:23:32:48:33:f6:51:dd:a0:c0: 75:bf:56:18:72:df:4a:64:67:1a:40:d3:06:1b:0e: 2d:04:9a:a0:bb:e7:85:22:a5:f2:1b:f2:b4:c4:c0: dd:fe:85:b1:14:da:44:1a:21:18:b4:2b:d9:8e:d5: a4:73:01:1e:fd:55:d2:e2:06:46:89:dd:3d:37:29: 03:07:99:a0:7f:8a:8a:09:8e:b6:c7:4b:a5:d3:06: 6d:51:a4:77:b0:bf:71:98:15:88:45:8e:db:fb:9d: 4c:6a:22:d3:16:55:f5:d0:bc:c2:1d:85:ad:fe:22: 5f:b0:af:3a:df:8f:64:1c:af:a1:be:df:17:e6:ed: 53:8a:b7:56:0f:d6:9c:6c:92:19:e5:01:46:33:9a: 39:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:40:C1:DA:95:2B:DB:38:CA:F6:59:EF:1C:3B:FC:70:AD:FE:80:FE X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:f0:14:35:b9:3a:fc:92:a5:d7:e3:0f:e9:be:b1:74:24:37: f4:f4:3a:a7:c1:9d:e7:8b:d6:21:02:e7:49:8a:e2:13:aa:87: 96:9c:db:5c:fa:59:52:e4:b3:ec:85:66:0b:3f:b5:0d:af:9f: 01:cf:07:01:b1:f5:30:7a:17:65:cc:5c:c4:56:6b:2c:79:53: da:50:2f:a6:2e:4e:36:1d:df:62:be:73:39:26:11:2b:e5:23: b3:24:ab:93:f7:35:d7:34:0f:73:e7:35:d0:52:09:b0:2e:f4: e6:63:c0:1f:d3:ab:83:1a:d7:c3:8d:7f:57:ec:7e:ad:7a:e5: 93:c0:dd:33:a4:c9:0a:de:85:6f:7f:28:48:30:f5:73:6a:2f: cb:61:24:af:13:69:08:aa:c5:e2:ef:dd:8a:33:cb:79:3e:23: d8:99:a9:8d:80:64:35:bb:0d:e9:51:da:e5:cb:52:4e:a5:96: e2:de:79:56:92:f8:e7:0c:f7:f9:f6:81:fc:18:29:15:12:55: b4:79:ce:eb:fa:7a:68:9a:ed:6e:65:fd:e5:70:85:a7:7a:c3: 58:fd:b7:bf:f2:03:b4:34:eb:b8:eb:e2:b5:4f:7d:f7:46:05: f9:40:75:28:8e:8a:3d:f0:a6:0f:ce:a4:66:da:d4:f6:b0:a5: 2f:b0:16:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwNzAyMTgyNDE1WhcNMjUwNzA5MTgyNDE1WjAYMRYwFAYD VQQDEw02ODY1Nzk1MC05MWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz1QnTTzxfOtP3p4DGMv4QG6PwDYG3N66HktJbPktTTTcw1AV208KdyJJuqK QB3IqCKgUxfTaKroOQ+qstaheA5CyPPVRBpmRY9WnK+IMxZ8FZ8KJjkeO+wg6oJm nkp5H801TySUd/o4oSeGJQ0jMkgz9lHdoMB1v1YYct9KZGcaQNMGGw4tBJqgu+eF IqXyG/K0xMDd/oWxFNpEGiEYtCvZjtWkcwEe/VXS4gZGid09NykDB5mgf4qKCY62 x0ul0wZtUaR3sL9xmBWIRY7b+51MaiLTFlX10LzCHYWt/iJfsK86349kHK+hvt8X 5u1TirdWD9acbJIZ5QFGM5o5cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENAwdqV K9s4yvZZ7xw7/HCt/oD+MB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU8BQ1uTr8kqXX4w/pvrF0JDf09DqnwZ3ni9YhAudJiuITqoeWnNtc +llS5LPshWYLP7UNr58BzwcBsfUwehdlzFzEVmsseVPaUC+mLk42Hd9ivnM5JhEr 5SOzJKuT9zXXNA9z5zXQUgmwLvTmY8Af06uDGtfDjX9X7H6teuWTwN0zpMkK3oVv fyhIMPVzai/LYSSvE2kIqsXi792KM8t5PiPYmamNgGQ1uw3pUdrly1JOpZbi3nlW kvjnDPf59oH8GCkVElW0ec7r+npomu1uZf3lcIWnesNY/be/8gO0NOu46+K1T333 RgX5QHUojoo98KYPzqRm2tT2sKUvsBZ2 -----END CERTIFICATE-----Generated at Thu Jul 3 00:21:26 2025 by rpki-client