$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: FZuChYcsR5DK4QWjQ3KCzJh8rQl8yb59eBNMKFAQP5Y= Subject key identifier: 89:BE:9C:46:B6:86:45:81:57:50:4C:39:B5:B5:8D:D8:26:1C:A6:71 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 145D Signing time: Fri 08 Aug 2025 18:23:02 +0000 Manifest this update: Fri 08 Aug 2025 18:23:01 +0000 Manifest next update: Fri 15 Aug 2025 18:23:01 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: t+1DDU/qml7RkvY2Hm2LQs3euzpClc4cLrCebZ7Gsi4=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: B2tDIxeYNCo5gTNbHXofF/quSOaekq5ljkbk6cQhp5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1990 (0x7c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Aug 8 18:23:01 2025 GMT Not After : Aug 15 18:23:01 2025 GMT Subject: CN=68964085-2e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:57:24:0e:87:a4:60:62:a9:de:84:0c:c9:76: e7:62:db:55:28:cf:22:fe:ca:c3:f2:59:7d:5b:94: d4:5b:56:ae:b7:d6:46:c9:a4:4b:25:2f:73:16:36: e4:5f:75:21:90:95:e8:67:d6:7c:b7:46:f2:d4:00: 8a:04:0a:c8:d9:0a:44:06:2a:d6:de:f2:f8:b3:b1: 4d:41:ea:3a:78:53:8f:fa:56:2e:39:e8:93:66:ad: ae:20:2d:7d:11:39:33:ae:47:00:b2:ac:82:1d:69: 66:95:8b:20:8f:4b:90:3d:d1:1d:6b:b7:19:2c:95: fd:ce:9a:43:f7:7b:e0:a7:6c:8f:99:a7:4d:78:a1: 23:1c:0b:f6:49:06:b1:45:ae:56:93:11:d9:e4:6e: e9:f1:5c:6d:c5:ec:2c:aa:64:0e:b8:3c:cc:b5:cc: 49:7e:ce:84:0f:2b:ab:2f:37:21:20:0b:eb:b3:c9: ba:43:eb:06:2b:47:bb:16:47:db:0a:62:51:2a:ab: ca:d7:b3:4d:7c:0c:b6:24:b3:57:cf:fa:33:79:5f: 8f:a6:5f:84:f3:49:22:eb:ea:0d:0a:4a:c4:86:87: d4:2e:91:96:b6:60:33:90:2d:66:e7:02:5a:75:b9: 29:23:3f:fa:48:a1:66:cb:82:6d:27:12:f8:2a:85: 2e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BE:9C:46:B6:86:45:81:57:50:4C:39:B5:B5:8D:D8:26:1C:A6:71 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1a:ac:64:87:b7:af:d8:16:bd:00:2a:f2:55:ae:79:fa:90: ca:34:82:9a:cd:ef:01:bc:90:7c:2e:47:f3:92:4b:9e:65:46: 0a:6b:05:56:a5:26:39:32:67:eb:33:98:a3:74:bb:91:e8:71: 1c:5b:ff:cc:f2:98:ab:ee:91:21:43:09:06:c0:0d:6d:73:67: 51:fa:e7:45:91:fa:9d:53:c5:f1:2d:22:72:41:6b:86:f9:c6: 7d:37:ca:d2:f7:68:27:6f:5e:95:fb:73:e4:97:20:d7:93:93: a1:d6:33:55:58:f9:4d:b7:28:5a:ee:0d:98:e2:c4:40:3b:22: f4:77:89:ba:22:eb:74:fc:8c:53:e3:31:a7:60:31:a9:a2:72: c2:1e:ff:25:53:b0:99:28:b2:60:0f:02:de:a7:14:88:17:5d: 22:9d:58:d6:37:97:a7:1a:21:aa:ad:05:f4:4b:82:f2:52:17: 59:78:72:ae:cc:1b:a5:0c:33:f3:a8:a8:e4:2c:1e:8d:96:3d: a0:7e:be:02:d2:9a:36:3b:55:6f:af:4e:36:d7:e3:c4:05:f6: 55:41:7a:0c:8c:3a:e2:d5:cd:d5:e5:1f:f7:a3:89:45:a0:ee: 11:92:94:60:2d:39:2b:7b:f9:29:38:1f:d1:0f:c8:26:48:09: 70:dd:21:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwODA4MTgyMzAxWhcNMjUwODE1MTgyMzAxWjAYMRYwFAYD VQQDEw02ODk2NDA4NS0yZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FckDoekYGKp3oQMyXbnYttVKM8i/srD8ll9W5TUW1aut9ZGyaRLJS9zFjbk X3UhkJXoZ9Z8t0by1ACKBArI2QpEBirW3vL4s7FNQeo6eFOP+lYuOeiTZq2uIC19 ETkzrkcAsqyCHWlmlYsgj0uQPdEda7cZLJX9zppD93vgp2yPmadNeKEjHAv2SQax Ra5WkxHZ5G7p8VxtxewsqmQOuDzMtcxJfs6EDyurLzchIAvrs8m6Q+sGK0e7Fkfb CmJRKqvK17NNfAy2JLNXz/ozeV+Ppl+E80ki6+oNCkrEhofULpGWtmAzkC1m5wJa dbkpIz/6SKFmy4JtJxL4KoUulQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm+nEa2 hkWBV1BMObW1jdgmHKZxMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiGqxkh7ev2Ba9ACryVa55+pDKNIKaze8BvJB8LkfzkkueZUYKawVW pSY5MmfrM5ijdLuR6HEcW//M8pir7pEhQwkGwA1tc2dR+udFkfqdU8XxLSJyQWuG +cZ9N8rS92gnb16V+3PklyDXk5Oh1jNVWPlNtyha7g2Y4sRAOyL0d4m6Iut0/IxT 4zGnYDGponLCHv8lU7CZKLJgDwLepxSIF10inVjWN5enGiGqrQX0S4LyUhdZeHKu zBulDDPzqKjkLB6Nlj2gfr4C0po2O1Vvr0421+PEBfZVQXoMjDri1c3V5R/3o4lF oO4RkpRgLTkre/kpOB/RD8gmSAlw3SFu -----END CERTIFICATE-----Generated at Sun Aug 10 04:23:40 2025 by rpki-client