$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: /UjAE0TnZOB8tXLftUivRasE9ebn5/FNGy74+NV7JHk= Subject key identifier: 15:45:4A:6E:74:E9:F8:11:91:A6:F5:14:B5:D1:2D:0D:AF:8E:21:C5 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 13EC Signing time: Thu 24 Apr 2025 18:11:12 +0000 Manifest this update: Thu 24 Apr 2025 18:11:12 +0000 Manifest next update: Thu 01 May 2025 18:11:12 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: zJEPtXMw5++6brXiuQdEu4Tfa0CWteMnsaahcLEv0w0=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: noVdM6ngikXxZBW4pTHIBoQSLKize1jndamJhpeixzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Apr 24 18:11:12 2025 GMT Not After : May 1 18:11:12 2025 GMT Subject: CN=680a7ec0-0912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9d:67:dd:e8:f7:be:63:fa:5e:11:98:58:86: 0f:9c:a0:a5:92:99:be:65:a3:63:18:2b:d2:16:4d: 51:89:6c:9a:90:41:f1:6d:13:35:13:f3:3f:ef:72: b0:a3:c2:28:e6:98:8e:5e:80:29:42:77:76:15:e3: 94:fc:b0:07:de:a3:91:cd:3b:3f:95:64:b7:0e:f7: 46:10:5a:e4:55:5b:42:5f:6b:db:52:a5:fb:66:c5: 9d:61:8f:13:d8:0d:0e:32:f3:58:ba:61:3e:03:6e: 0a:4a:69:ba:b2:55:6d:d8:55:63:ec:47:9f:e2:e5: 19:a9:79:d8:3d:fa:85:a8:a5:4e:9b:73:b9:71:bb: 6d:79:de:c3:f8:be:a9:3a:65:02:ae:e8:09:72:c5: f1:a5:8a:90:da:39:f3:22:18:a5:00:f4:e0:52:d0: 0c:cf:bf:53:08:65:32:cd:a2:b3:50:03:a5:7d:5a: 53:c3:77:9c:ef:04:4a:8c:fd:af:47:07:a7:53:f0: b0:fb:94:44:6f:5b:9b:a9:cf:f4:3a:8c:10:4b:22: b2:46:d6:86:11:95:99:d9:11:21:16:55:71:f9:08: 99:c4:02:9e:6f:9b:3e:85:b9:37:6a:f3:d7:73:57: f3:3b:1d:ea:69:fe:03:6c:50:cd:d9:c3:6e:85:64: 17:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:45:4A:6E:74:E9:F8:11:91:A6:F5:14:B5:D1:2D:0D:AF:8E:21:C5 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:88:a4:06:28:df:69:bd:b9:12:94:78:9f:81:a2:d5:70:fb: eb:d4:b5:ca:e3:5b:89:63:06:4d:f1:a8:14:18:98:cc:e4:57: 1e:0b:d1:d0:7b:e5:91:55:53:43:d2:12:09:51:7b:ec:82:1c: 71:88:23:37:57:64:71:61:3a:32:d1:fb:63:9c:c0:2b:bf:7f: a3:c0:45:aa:35:22:88:49:33:a0:89:81:71:18:56:03:a9:37: 6b:cb:2a:24:e5:60:54:9e:8b:4c:2e:51:1a:84:a6:81:2f:56: d8:4f:cc:74:57:66:e4:a4:8b:55:76:e3:47:ed:be:4b:07:42: f9:76:82:e9:0d:4f:a0:dd:fe:d9:e1:71:17:b5:7e:07:19:6d: 57:f4:e7:df:f0:17:e3:b1:8a:59:b4:e4:c6:37:05:38:a3:91: 00:1c:98:09:a1:6f:78:cb:d7:be:94:05:7a:55:71:a7:eb:d9: 1a:05:7b:4d:5d:8b:d7:e3:82:20:65:19:95:63:e8:bc:68:87: 85:04:b4:cb:97:9b:2c:d4:51:c8:11:26:9f:2d:31:24:da:b0: f4:27:5f:3f:fb:ec:1b:35:fa:0a:e6:65:43:64:b4:fb:78:87: 7a:8e:b4:aa:d9:b4:84:28:7e:2c:5c:b5:5e:6e:5c:4c:d9:dc: 0a:b5:6c:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwNDI0MTgxMTEyWhcNMjUwNTAxMTgxMTEyWjAYMRYwFAYD VQQDEw02ODBhN2VjMC0wOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp1n3ej3vmP6XhGYWIYPnKClkpm+ZaNjGCvSFk1RiWyakEHxbRM1E/M/73Kw o8Io5piOXoApQnd2FeOU/LAH3qORzTs/lWS3DvdGEFrkVVtCX2vbUqX7ZsWdYY8T 2A0OMvNYumE+A24KSmm6slVt2FVj7Eef4uUZqXnYPfqFqKVOm3O5cbtted7D+L6p OmUCrugJcsXxpYqQ2jnzIhilAPTgUtAMz79TCGUyzaKzUAOlfVpTw3ec7wRKjP2v RwenU/Cw+5REb1ubqc/0OowQSyKyRtaGEZWZ2REhFlVx+QiZxAKeb5s+hbk3avPX c1fzOx3qaf4DbFDN2cNuhWQXpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVFSm50 6fgRkab1FLXRLQ2vjiHFMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1iKQGKN9pvbkSlHifgaLVcPvr1LXK41uJYwZN8agUGJjM5FceC9HQ e+WRVVND0hIJUXvsghxxiCM3V2RxYToy0ftjnMArv3+jwEWqNSKISTOgiYFxGFYD qTdryyok5WBUnotMLlEahKaBL1bYT8x0V2bkpItVduNH7b5LB0L5doLpDU+g3f7Z 4XEXtX4HGW1X9Off8BfjsYpZtOTGNwU4o5EAHJgJoW94y9e+lAV6VXGn69kaBXtN XYvX44IgZRmVY+i8aIeFBLTLl5ss1FHIESafLTEk2rD0J18/++wbNfoK5mVDZLT7 eId6jrSq2bSEKH4sXLVeblxM2dwKtWwP -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:05 2025 by rpki-client