$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: 1MHulN7UGoAXyew5wBwQP5un84mRprKE5qeSED2f4Ck= Subject key identifier: 85:32:FC:19:6F:96:5F:B2:E4:C0:63:16:CE:01:E4:EF:2F:18:A4:70 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 146B Signing time: Fri 22 Aug 2025 18:16:26 +0000 Manifest this update: Fri 22 Aug 2025 18:16:26 +0000 Manifest next update: Fri 29 Aug 2025 18:16:26 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: aZK77I9j+AiNLH8dYP0tpwgQnBqdxjKYLfhdMV7rp7E=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: B2tDIxeYNCo5gTNbHXofF/quSOaekq5ljkbk6cQhp5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Aug 22 18:16:26 2025 GMT Not After : Aug 29 18:16:26 2025 GMT Subject: CN=68a8b3fa-4c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:6b:9e:0a:ca:eb:3a:02:ba:39:ca:ea:98: 1c:90:ed:ad:d6:a4:e1:c9:be:1b:0b:a4:fd:8a:2c: 33:00:b3:79:01:63:2e:e3:96:34:21:17:86:fc:fa: 11:ef:48:70:23:b2:7c:ab:2c:d0:c1:7d:1b:17:aa: 5c:a2:05:12:9d:20:1b:8c:73:87:68:d6:8d:85:dc: fd:2b:cf:da:b0:58:97:b8:5e:1a:72:98:5e:b3:79: 2d:d2:1c:b0:fc:6f:ac:29:7e:6a:63:43:07:24:d0: 31:f5:fe:e1:7e:75:cd:18:eb:47:06:9a:38:56:72: 8c:10:cb:4c:5e:c4:22:c9:6e:b2:30:4f:63:f7:1c: bd:18:72:71:43:6a:6c:34:18:c8:50:69:8f:3b:dc: 13:6a:cc:16:64:af:a1:93:19:8e:cb:a3:d1:30:ee: 43:e1:a9:5b:1b:c0:7c:79:15:d9:cf:9f:5c:b4:e0: f6:5e:b1:c2:cc:fc:a7:ff:25:68:db:92:1a:1b:98: c0:c0:64:72:08:b8:81:93:62:0a:4b:69:d4:64:fe: d0:25:77:ea:61:72:8c:89:f0:38:44:78:24:3d:24: 82:c8:f1:09:eb:de:9d:ac:37:7b:33:c3:b8:e8:2b: d0:d1:89:05:d1:b5:5c:0a:5a:49:a2:df:3b:44:ef: a2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:32:FC:19:6F:96:5F:B2:E4:C0:63:16:CE:01:E4:EF:2F:18:A4:70 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:78:23:57:1b:10:e1:77:fa:6b:c8:b5:7c:86:25:03:a0:73: 92:dc:bd:71:d3:c3:03:56:9b:04:f8:29:94:bf:5d:28:4e:a6: da:60:79:a8:f9:7c:a2:b5:ce:2d:de:2e:c8:aa:5d:fb:94:56: 2d:b3:dd:93:48:19:1b:80:fb:59:3e:79:ca:b4:82:4f:41:89: fc:08:69:dd:a6:8a:c3:cd:a1:5e:b8:db:53:75:3f:52:6d:a6: d6:e0:68:ca:e0:30:17:53:42:77:ad:84:71:74:10:b5:0a:6f: 6a:b2:04:b9:e2:a8:3e:e3:c9:d3:82:c9:64:d2:ab:f8:f6:05: f1:9b:89:c5:7d:30:8c:dc:06:31:0b:60:b3:47:2e:74:fd:dd: 9c:9b:80:96:23:34:44:80:15:e9:34:50:07:01:0b:54:bc:35: 59:5f:8f:83:81:8c:a0:bf:c2:49:e6:73:bd:74:8b:df:71:b0: 9d:43:af:9b:6c:88:56:dc:f5:11:15:c3:95:7b:a6:54:e0:e4: 6f:f9:99:e8:71:f4:f0:0d:ef:a4:30:dc:03:cd:eb:27:62:45: 1a:02:3a:5e:5c:f6:21:aa:fb:a6:ab:2b:e8:d1:92:c1:bd:93: 3a:db:95:ab:a2:1d:8b:47:0a:5a:74:29:b1:1f:41:ca:b5:5d: a0:94:e2:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwODIyMTgxNjI2WhcNMjUwODI5MTgxNjI2WjAYMRYwFAYD VQQDEw02OGE4YjNmYS00YzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs5rngrK6zoCujnK6pgckO2t1qThyb4bC6T9iiwzALN5AWMu45Y0IReG/PoR 70hwI7J8qyzQwX0bF6pcogUSnSAbjHOHaNaNhdz9K8/asFiXuF4acphes3kt0hyw /G+sKX5qY0MHJNAx9f7hfnXNGOtHBpo4VnKMEMtMXsQiyW6yME9j9xy9GHJxQ2ps NBjIUGmPO9wTaswWZK+hkxmOy6PRMO5D4albG8B8eRXZz59ctOD2XrHCzPyn/yVo 25IaG5jAwGRyCLiBk2IKS2nUZP7QJXfqYXKMifA4RHgkPSSCyPEJ696drDd7M8O4 6CvQ0YkF0bVcClpJot87RO+iLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUy/Blv ll+y5MBjFs4B5O8vGKRwMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWeCNXGxDhd/pryLV8hiUDoHOS3L1x08MDVpsE+CmUv10oTqbaYHmo +Xyitc4t3i7Iql37lFYts92TSBkbgPtZPnnKtIJPQYn8CGndporDzaFeuNtTdT9S babW4GjK4DAXU0J3rYRxdBC1Cm9qsgS54qg+48nTgslk0qv49gXxm4nFfTCM3AYx C2CzRy50/d2cm4CWIzREgBXpNFAHAQtUvDVZX4+DgYygv8JJ5nO9dIvfcbCdQ6+b bIhW3PURFcOVe6ZU4ORv+ZnocfTwDe+kMNwDzesnYkUaAjpeXPYhqvumqyvo0ZLB vZM625Wroh2LRwpadCmxH0HKtV2glOJo -----END CERTIFICATE-----Generated at Sun Aug 24 09:01:54 2025 by rpki-client