$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: u9IoRvdZ/20nnHltPEW96UvwKYqUBb6vLeUK7Jho1c4= Subject key identifier: 54:3D:C1:8B:44:2A:38:97:34:D5:9C:7D:B7:E1:54:35:A4:AE:1E:3B Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 1562 Signing time: Thu 16 Apr 2026 17:57:19 +0000 Manifest this update: Thu 16 Apr 2026 17:57:18 +0000 Manifest next update: Thu 23 Apr 2026 17:57:18 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: lveXuQf+3IRPl6p5s1iZunpEDvl85ooiDyqNH6ZBTCk=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: HxB0HCgQPbOlmo96fIp6uk7AphF4jHP5wZ0nGph8yhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Apr 16 17:57:18 2026 GMT Not After : Apr 23 17:57:18 2026 GMT Subject: CN=69e122fe-b4d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:4b:d3:33:67:d5:4b:e4:4d:77:c0:c7:63: 58:0b:ed:f8:fe:8a:24:fc:68:28:20:d0:2f:1a:c7: 74:e2:d8:fe:13:98:97:75:53:11:df:f6:d1:6a:ee: 6c:07:c8:b4:0f:cc:f3:f9:d6:ce:d5:f8:72:48:45: 11:be:39:88:9f:6e:ba:cb:fd:2e:3c:d5:0a:b2:50: dc:7e:c4:97:a3:cd:11:48:82:93:75:5e:16:50:c3: 10:65:08:61:07:f6:63:c5:e6:9a:f0:d6:48:37:98: 88:c3:7a:98:33:ea:3c:24:9b:d3:fe:90:c9:2d:ea: 6c:cf:7c:fb:0f:a6:6b:b1:ec:cc:dc:d4:2f:25:3e: f2:37:31:d4:5a:60:55:88:68:c1:7e:2c:29:cb:e8: 21:a1:cf:ea:f4:09:f8:16:4f:f5:1c:17:97:1e:81: 58:f6:13:9a:1c:a3:f2:70:f7:a0:b8:4e:8d:b3:6c: e7:07:5d:46:6e:83:7c:85:fd:75:19:b6:50:38:24: 65:06:2e:44:02:44:cc:24:40:49:86:66:65:bf:e9: f6:78:b0:4b:38:db:0f:03:b3:2d:63:12:f2:13:f7: d2:98:a9:37:34:1a:5c:99:c4:74:f1:fe:1a:16:d0: ae:e4:5a:53:3a:52:61:66:d0:36:06:72:16:e9:1f: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3D:C1:8B:44:2A:38:97:34:D5:9C:7D:B7:E1:54:35:A4:AE:1E:3B X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:62:c0:10:ed:7e:38:b2:43:08:eb:a6:f9:35:0f:e5:70:46: ed:53:fb:e8:e1:71:3b:3f:e7:cd:db:77:22:83:b9:dc:a2:98: 90:15:ae:19:ea:41:51:4f:48:f7:50:f7:09:68:a0:7e:ad:26: 78:08:80:9b:58:4d:51:f5:dd:3c:5a:1d:81:9b:cf:a4:98:40: 37:3f:52:86:04:f9:f0:be:af:23:d2:a3:44:38:90:a8:6e:39: 97:f3:1b:41:60:f8:05:50:6f:9c:62:a5:18:1e:64:40:a8:0a: 62:58:17:e9:6d:93:65:3c:ff:6a:42:99:6c:f0:64:28:89:51: 87:1e:70:42:76:4d:1a:d3:ec:86:09:ff:e9:56:41:fa:e7:fa: f7:55:72:25:5b:bd:f5:6e:3c:c2:e1:d5:23:27:1f:0c:dc:7f: 9f:c4:a1:79:2f:da:88:d0:7c:1c:db:f6:07:76:23:72:d4:ab: 70:a9:36:18:c0:e8:fe:c5:de:c1:5c:3f:c3:d4:c1:c0:f7:de: 17:4f:29:d9:0a:63:39:11:00:c9:eb:a1:ce:43:b0:4e:18:ff: 42:ab:8b:11:db:c8:36:f2:80:b3:9f:86:85:f1:42:ae:d5:de: 71:47:14:01:1e:dc:b1:98:a8:86:aa:82:bc:da:f8:b4:85:1e: 51:d1:51:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjYwNDE2MTc1NzE4WhcNMjYwNDIzMTc1NzE4WjAYMRYwFAYD VQQDEw02OWUxMjJmZS1iNGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC5L0zNn1UvkTXfAx2NYC+34/ook/GgoINAvGsd04tj+E5iXdVMR3/bRau5s B8i0D8zz+dbO1fhySEURvjmIn266y/0uPNUKslDcfsSXo80RSIKTdV4WUMMQZQhh B/Zjxeaa8NZIN5iIw3qYM+o8JJvT/pDJLepsz3z7D6ZrsezM3NQvJT7yNzHUWmBV iGjBfiwpy+ghoc/q9An4Fk/1HBeXHoFY9hOaHKPycPeguE6Ns2znB11GboN8hf11 GbZQOCRlBi5EAkTMJEBJhmZlv+n2eLBLONsPA7MtYxLyE/fSmKk3NBpcmcR08f4a FtCu5FpTOlJhZtA2BnIW6R8L1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFQ9wYtE KjiXNNWcfbfhVDWkrh47MB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT2LAEO1+OLJDCOum+TUP5XBG7VP76OFxOz/nzdt3IoO53KKYkBWuGepBUU9I 91D3CWigfq0meAiAm1hNUfXdPFodgZvPpJhANz9ShgT58L6vI9KjRDiQqG45l/Mb QWD4BVBvnGKlGB5kQKgKYlgX6W2TZTz/akKZbPBkKIlRhx5wQnZNGtPshgn/6VZB +uf691VyJVu99W48wuHVIycfDNx/n8SheS/aiNB8HNv2B3YjctSrcKk2GMDo/sXe wVw/w9TBwPfeF08p2QpjOREAyeuhzkOwThj/QquLEdvINvKAs5+GhfFCrtXecUcU AR7csZiohqqCvNr4tIUeUdFReA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:59:00 2026 by rpki-client