$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: Pry72M4EXQC7bz+8d/EOOJSFt4L4dsLi0uBudGCtPeA= Subject key identifier: 2F:F9:99:C2:F2:B8:C5:61:35:4D:9F:28:31:FB:4E:CD:07:51:19:4D Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 1420 Signing time: Sat 14 Jun 2025 18:05:07 +0000 Manifest this update: Sat 14 Jun 2025 18:05:06 +0000 Manifest next update: Sat 21 Jun 2025 18:05:06 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: Pe+HPRisJJ9o3UwVW5ClJe82PGMlKS9X7ezPblSS3Po=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: noVdM6ngikXxZBW4pTHIBoQSLKize1jndamJhpeixzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Jun 14 18:05:06 2025 GMT Not After : Jun 21 18:05:06 2025 GMT Subject: CN=684db9d2-e3c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a6:7f:90:8e:71:73:2b:58:82:fb:b8:bd:29: d7:c6:2c:0c:72:8e:f7:f1:1c:e2:c1:19:e0:03:0a: 58:27:1b:dd:9c:62:1e:69:78:ad:dd:be:de:3d:f1: 5b:60:82:3c:aa:a5:0e:c3:18:1d:09:25:e0:c4:d4: 20:b7:18:71:99:15:eb:28:75:39:41:04:d6:6b:bf: ee:80:98:e9:5c:95:b6:ad:7d:04:b6:2c:3c:2a:3a: d1:d6:86:e3:10:ce:56:d9:c1:61:0c:de:47:14:a1: 3a:b9:be:7c:d1:25:56:a6:b9:eb:97:92:32:aa:00: c7:06:d8:36:10:c9:7e:e2:b4:a9:c7:00:49:29:da: 7c:55:5b:ac:df:88:5c:e0:e2:68:a8:f0:79:1f:fe: 96:58:87:7f:61:83:04:b4:67:e7:ec:86:8e:a8:c4: cf:7e:4b:f3:61:53:ad:4d:9a:db:70:b8:4e:7f:6e: 65:34:0d:77:2d:ce:b0:15:5b:56:df:8f:0b:e9:3f: ad:e3:fe:65:02:e0:36:0a:77:d3:f0:93:42:8e:06: 45:b0:62:e5:8a:ae:05:4d:c6:80:86:88:b1:df:7f: 82:41:65:d3:48:b9:24:5f:cb:7b:2b:84:e0:b7:b1: 48:d6:8c:18:32:70:f9:a0:a4:6f:9f:7e:a4:79:52: 02:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F9:99:C2:F2:B8:C5:61:35:4D:9F:28:31:FB:4E:CD:07:51:19:4D X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:8f:98:2e:de:1f:de:d5:6b:2b:e4:ff:fe:f4:cc:d3:4a:6d: 5c:9b:07:0a:bb:ba:01:36:da:28:09:6f:b9:6b:b4:a7:f1:6a: 77:51:13:fc:80:e8:10:3b:5d:d3:01:45:fb:51:a3:3a:dc:99: f0:e2:be:72:75:fe:bf:01:d9:38:95:54:c0:d4:41:8b:ac:ca: 91:40:03:5b:2e:40:0a:65:97:99:3f:58:81:a5:a7:bc:fa:89: 93:ff:f4:e3:a0:73:7a:8d:20:45:9c:57:35:61:79:8d:64:e0: 4d:0e:2d:c7:7e:45:20:f7:79:fb:0d:06:b5:90:63:19:69:aa: bd:86:77:41:a1:a9:2d:f7:2a:f0:52:1e:c0:26:90:25:5d:07: 52:7b:3b:ac:cc:e9:7c:16:01:88:62:ad:0f:52:dc:d5:32:be: f7:07:f4:dc:38:da:d2:7f:a4:31:76:19:9e:d7:aa:28:42:3e: 28:ce:33:8c:2b:97:89:e2:c8:d0:f3:1a:f7:03:e4:d4:39:c5: 27:91:73:a2:96:6a:0d:85:aa:53:89:66:35:85:26:24:45:dd: 63:09:4e:81:18:d3:0c:f1:45:a7:df:28:c7:c0:46:ec:a3:ab: 61:fd:dc:6e:c1:9b:1d:b8:5e:4d:48:02:84:90:c4:5c:02:19: 26:76:c4:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwNjE0MTgwNTA2WhcNMjUwNjIxMTgwNTA2WjAYMRYwFAYD VQQDEw02ODRkYjlkMi1lM2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6KZ/kI5xcytYgvu4vSnXxiwMco738RziwRngAwpYJxvdnGIeaXit3b7ePfFb YII8qqUOwxgdCSXgxNQgtxhxmRXrKHU5QQTWa7/ugJjpXJW2rX0Etiw8KjrR1obj EM5W2cFhDN5HFKE6ub580SVWprnrl5IyqgDHBtg2EMl+4rSpxwBJKdp8VVus34hc 4OJoqPB5H/6WWId/YYMEtGfn7IaOqMTPfkvzYVOtTZrbcLhOf25lNA13Lc6wFVtW 348L6T+t4/5lAuA2CnfT8JNCjgZFsGLliq4FTcaAhoix33+CQWXTSLkkX8t7K4Tg t7FI1owYMnD5oKRvn36keVICtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/5mcLy uMVhNU2fKDH7Ts0HURlNMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTj5gu3h/e1Wsr5P/+9MzTSm1cmwcKu7oBNtooCW+5a7Sn8Wp3URP8 gOgQO13TAUX7UaM63Jnw4r5ydf6/Adk4lVTA1EGLrMqRQANbLkAKZZeZP1iBpae8 +omT//TjoHN6jSBFnFc1YXmNZOBNDi3HfkUg93n7DQa1kGMZaaq9hndBoakt9yrw Uh7AJpAlXQdSezuszOl8FgGIYq0PUtzVMr73B/TcONrSf6Qxdhme16ooQj4ozjOM K5eJ4sjQ8xr3A+TUOcUnkXOilmoNhapTiWY1hSYkRd1jCU6BGNMM8UWn3yjHwEbs o6th/dxuwZsduF5NSAKEkMRcAhkmdsRt -----END CERTIFICATE-----Generated at Sun Jun 15 09:38:55 2025 by rpki-client