$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: jmV7vWavQzBd5TK69hk8R8EvI5FHemJm+vkk1448zdg= Subject key identifier: 74:FE:01:AB:95:40:3A:44:63:99:13:70:AC:6F:0C:FA:E9:83:D8:D6 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 13E8 Signing time: Sun 20 Apr 2025 18:05:33 +0000 Manifest this update: Sun 20 Apr 2025 18:05:33 +0000 Manifest next update: Sun 27 Apr 2025 18:05:33 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: CCOmZjXtwhSbQzeWms7pr7VNatw7ucsThuHZV3vk+DU=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: noVdM6ngikXxZBW4pTHIBoQSLKize1jndamJhpeixzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 18:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Apr 20 18:05:33 2025 GMT Not After : Apr 27 18:05:33 2025 GMT Subject: CN=6805376d-9568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1b:33:51:82:81:81:fe:ea:dc:f9:ae:a7:bc: bb:25:7a:8d:d1:9c:3c:bb:63:20:0b:51:5a:30:33: c7:9c:a2:83:c7:5f:8e:84:1e:c5:b7:58:b7:93:60: db:94:45:f3:65:f1:70:a2:5d:c7:72:a8:2c:f8:d7: fd:4d:9a:90:02:37:1b:04:1c:6d:aa:d5:23:ae:2d: 7b:5d:73:83:88:7a:fa:d9:a6:9b:6a:4d:80:98:c0: 27:45:6e:ba:09:12:08:a6:ba:c4:79:a4:47:42:a5: 5a:a7:39:40:d5:fc:25:1e:38:b8:4e:45:d2:86:15: 9e:cd:b9:a6:34:7b:cc:11:d6:06:ba:08:9b:f4:1a: 25:8c:a9:cf:45:f7:d2:f3:c6:67:d2:2b:9d:91:c2: af:1c:d8:a1:1e:48:f7:d3:9b:29:b7:3b:a9:c8:6d: 1f:16:25:4d:54:05:c0:6b:aa:09:05:b6:fa:35:1a: 53:dd:6e:90:32:78:70:69:ac:f4:5d:86:44:a4:d0: 5d:45:7c:34:19:1f:81:2a:27:f5:c2:69:45:4a:77: 07:9a:9a:35:16:a5:a4:72:85:cb:98:f7:32:60:8f: b5:98:0e:c7:0a:2e:de:e9:80:e5:a3:e8:96:8a:28: cd:0a:6a:4f:83:76:53:a8:08:82:8c:d2:c0:f6:6e: 1f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FE:01:AB:95:40:3A:44:63:99:13:70:AC:6F:0C:FA:E9:83:D8:D6 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:65:2e:4c:b5:61:fc:bc:b3:c1:67:6d:f3:9f:1a:63:e6:e0: 6b:c5:eb:95:36:5a:0c:39:93:0c:bd:bf:4d:cf:dd:d1:50:51: b3:74:3a:c7:34:bf:59:1c:0e:a5:3a:15:d6:c3:72:c9:7e:b5: d0:5e:a0:7c:1b:0e:84:60:c8:8e:44:bb:a6:d7:57:12:65:fa: bd:32:bd:3c:98:03:f1:9a:91:cb:f3:76:39:cc:a2:0e:44:e1: 66:c0:3e:3e:47:f8:17:da:4b:46:9d:63:c7:e4:08:61:73:1d: 52:f1:29:00:7e:b8:b6:d7:fb:80:44:42:9c:03:3f:57:ec:c4: c1:47:95:40:f1:bc:7f:51:d6:10:01:c1:08:a5:42:65:c8:97: c0:d1:5b:6a:9b:1b:7d:95:cc:6b:17:bd:03:9a:f4:9e:0b:1b: 9c:79:b4:51:34:55:a2:18:8b:0f:1b:53:4c:2c:b2:a7:c1:0a: 11:5d:72:76:05:e9:17:c8:f4:8d:a6:21:e7:a2:76:c5:e3:7a: f2:93:e6:5d:8f:07:c7:3c:97:89:d0:25:33:49:19:34:51:77: b4:31:fb:96:35:9e:fd:1c:7b:a2:0f:79:f6:c9:4e:32:71:ef: df:89:48:77:05:a7:41:02:dc:dd:0f:44:5d:82:e8:25:ee:f5: b8:ac:45:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwNDIwMTgwNTMzWhcNMjUwNDI3MTgwNTMzWjAYMRYwFAYD VQQDEw02ODA1Mzc2ZC05NTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7hszUYKBgf7q3Pmup7y7JXqN0Zw8u2MgC1FaMDPHnKKDx1+OhB7Ft1i3k2Db lEXzZfFwol3Hcqgs+Nf9TZqQAjcbBBxtqtUjri17XXODiHr62aabak2AmMAnRW66 CRIIprrEeaRHQqVapzlA1fwlHji4TkXShhWezbmmNHvMEdYGugib9BoljKnPRffS 88Zn0iudkcKvHNihHkj305sptzupyG0fFiVNVAXAa6oJBbb6NRpT3W6QMnhwaaz0 XYZEpNBdRXw0GR+BKif1wmlFSncHmpo1FqWkcoXLmPcyYI+1mA7HCi7e6YDlo+iW iijNCmpPg3ZTqAiCjNLA9m4fcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHT+AauV QDpEY5kTcKxvDPrpg9jWMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmZS5MtWH8vLPBZ23znxpj5uBrxeuVNloMOZMMvb9Nz93RUFGzdDrH NL9ZHA6lOhXWw3LJfrXQXqB8Gw6EYMiORLum11cSZfq9Mr08mAPxmpHL83Y5zKIO ROFmwD4+R/gX2ktGnWPH5Ahhcx1S8SkAfri21/uAREKcAz9X7MTBR5VA8bx/UdYQ AcEIpUJlyJfA0Vtqmxt9lcxrF70DmvSeCxucebRRNFWiGIsPG1NMLLKnwQoRXXJ2 BekXyPSNpiHnonbF43ryk+ZdjwfHPJeJ0CUzSRk0UXe0MfuWNZ79HHuiD3n2yU4y ce/fiUh3BadBAtzdD0Rdgugl7vW4rEWE -----END CERTIFICATE-----Generated at Tue Apr 22 02:47:16 2025 by rpki-client