$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: cOJSdEXvY5nj7DotLYGF3jcHLNEA8peoC9BSY+CQdj8= Subject key identifier: 38:02:DE:5E:AC:7A:20:64:64:24:D9:02:E1:BE:B5:A5:E6:74:02:15 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 14B5 Signing time: Sun 02 Nov 2025 18:07:16 +0000 Manifest this update: Sun 02 Nov 2025 18:07:15 +0000 Manifest next update: Sun 09 Nov 2025 18:07:15 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: kyX53Nx9czwXODhwQGd6OPhmdLxgKCPTh+YxS7Q3sLI=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: B2tDIxeYNCo5gTNbHXofF/quSOaekq5ljkbk6cQhp5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Nov 2 18:07:15 2025 GMT Not After : Nov 9 18:07:15 2025 GMT Subject: CN=69079dd4-3413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:85:ce:d8:43:fd:7b:3a:96:c8:1b:56:f6:a8: 80:ce:58:ef:bd:c0:88:87:ab:2d:ff:da:92:63:9b: 8e:d2:03:cd:82:ae:ab:95:f1:79:10:ca:3b:64:d8: 4e:b3:1b:1e:20:36:e0:ab:ca:44:45:5f:a4:31:13: 27:95:bd:6b:d5:c9:e6:20:d6:63:10:26:da:ac:05: c0:49:a0:af:40:4b:89:c9:70:ba:83:97:22:0b:e5: e6:12:5a:3d:8a:7f:8e:aa:5f:7e:e0:42:ef:68:7d: 73:5d:15:c2:2b:57:b0:67:f2:4a:06:56:b7:90:a1: e7:77:1d:8a:72:01:27:71:cf:e6:11:03:09:78:95: aa:86:1a:3f:87:a1:21:44:fa:c4:33:23:8b:bc:c0: 95:28:fc:3f:65:f6:df:c7:e7:13:cf:a5:a3:fc:9c: 13:11:d0:75:49:d8:9d:c8:20:8b:30:87:15:f7:38: 73:52:2c:f3:0d:a7:2d:b3:ef:c3:8f:69:10:2d:54: 78:9d:51:fb:af:95:70:74:82:96:47:60:5f:fb:89: e7:19:15:09:1b:a4:a1:1e:1c:0a:1f:e6:b6:23:42: cf:20:d3:25:8a:11:2e:ed:29:7a:03:e9:bd:c9:ad: ca:cd:46:38:19:bf:77:ba:71:7f:df:91:7a:40:3c: f8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:02:DE:5E:AC:7A:20:64:64:24:D9:02:E1:BE:B5:A5:E6:74:02:15 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:73:42:5f:3c:f3:cf:a0:9e:e5:79:8f:98:e4:98:25:54:c0: 9f:19:46:32:23:31:64:7e:90:3c:e3:7f:c6:d9:c9:c3:23:84: a9:70:29:3b:e9:6a:f8:88:54:a8:88:cd:6a:06:75:8a:ba:f7: f8:93:a7:24:5f:da:cc:28:91:11:c9:76:33:2b:f2:c7:f8:fa: 6f:a2:72:66:fd:cb:4a:7b:a7:22:ca:af:30:c9:33:3b:6b:d8: 7d:b1:4b:30:d5:8a:31:d6:bd:68:67:ec:11:d0:65:a5:e1:f2: 01:55:0e:cd:61:b3:ef:21:88:c2:21:48:9d:51:76:4e:aa:91: 19:b2:1f:49:60:1f:44:d9:25:27:54:f2:2d:8d:76:5c:b7:ba: 73:55:38:21:cd:de:3b:fb:92:86:f9:11:71:e0:8d:5c:b5:d9: b5:4f:9f:dd:e4:cb:ed:e1:56:92:4a:98:99:07:75:6f:a5:c6: e5:25:c7:cc:36:a9:81:70:d3:e6:c2:5f:9e:3f:25:aa:be:c7: a0:15:3e:8c:f7:2c:15:3f:60:39:ad:46:f0:87:27:d5:8c:71: 44:3f:43:2f:62:ff:28:72:44:94:b3:14:dd:77:a2:08:80:1d: 87:46:c9:00:6c:a7:60:c3:74:a3:b5:74:16:cd:35:ea:5d:87: de:ab:22:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUxMTAyMTgwNzE1WhcNMjUxMTA5MTgwNzE1WjAYMRYwFAYD VQQDEw02OTA3OWRkNC0zNDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYXO2EP9ezqWyBtW9qiAzljvvcCIh6st/9qSY5uO0gPNgq6rlfF5EMo7ZNhO sxseIDbgq8pERV+kMRMnlb1r1cnmINZjECbarAXASaCvQEuJyXC6g5ciC+XmElo9 in+Oql9+4ELvaH1zXRXCK1ewZ/JKBla3kKHndx2KcgEncc/mEQMJeJWqhho/h6Eh RPrEMyOLvMCVKPw/Zfbfx+cTz6Wj/JwTEdB1SdidyCCLMIcV9zhzUizzDacts+/D j2kQLVR4nVH7r5VwdIKWR2Bf+4nnGRUJG6ShHhwKH+a2I0LPINMlihEu7Sl6A+m9 ya3KzUY4Gb93unF/35F6QDz4QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgC3l6s eiBkZCTZAuG+taXmdAIVMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHc0JfPPPPoJ7leY+Y5JglVMCfGUYyIzFkfpA843/G2cnDI4SpcCk7 6Wr4iFSoiM1qBnWKuvf4k6ckX9rMKJERyXYzK/LH+PpvonJm/ctKe6ciyq8wyTM7 a9h9sUsw1Yox1r1oZ+wR0GWl4fIBVQ7NYbPvIYjCIUidUXZOqpEZsh9JYB9E2SUn VPItjXZct7pzVTghzd47+5KG+RFx4I1ctdm1T5/d5Mvt4VaSSpiZB3VvpcblJcfM NqmBcNPmwl+ePyWqvsegFT6M9ywVP2A5rUbwhyfVjHFEP0MvYv8ockSUsxTdd6II gB2HRskAbKdgw3SjtXQWzTXqXYfeqyIa -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:19 2025 by rpki-client