$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: neMnA0gMIzhjOdHjqFEKYeN1+/lbVmpFIPRaXRUXqrk= Subject key identifier: A2:FF:97:09:E3:57:16:81:CE:C4:6A:D4:09:63:E2:CF:AE:EE:4C:71 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 0845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 1556 Signing time: Sat 04 Apr 2026 17:54:13 +0000 Manifest this update: Sat 04 Apr 2026 17:54:12 +0000 Manifest next update: Sat 11 Apr 2026 17:54:12 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: BBVcfWh0RsmiNAkCp9KhQscZmvkObTfVl6zKHdXYiLo=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: HxB0HCgQPbOlmo96fIp6uk7AphF4jHP5wZ0nGph8yhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2117 (0x845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Apr 4 17:54:12 2026 GMT Not After : Apr 11 17:54:12 2026 GMT Subject: CN=69d15044-d631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:47:60:8b:69:88:cd:62:5c:c7:8a:d4:5c:8b: 79:01:a5:e4:d5:cc:1f:80:3a:ca:a8:b1:cc:d4:4a: 7b:ca:a6:a3:3a:52:34:fc:8c:94:3b:46:13:71:a7: f8:c3:fa:0b:5d:3a:75:e5:dc:54:04:09:e4:ac:35: 00:92:a7:cb:e0:b1:14:27:b4:0e:72:31:57:26:ff: eb:b0:fd:74:bb:39:af:b2:71:48:d5:5a:6b:dc:22: 6c:03:c0:48:e0:7e:f3:55:18:36:6e:67:8f:8c:09: bb:b8:9b:42:37:d8:b3:41:15:70:b1:0f:df:b8:b9: 05:57:56:b6:85:50:9b:55:94:75:71:e9:a3:16:a6: 02:5e:3c:c9:ea:90:e5:2a:d4:3a:c1:69:3d:ff:f2: c3:f7:b3:37:00:6f:72:2b:be:6d:44:d8:f1:73:3a: ad:2c:9a:ce:87:78:38:33:cc:8f:4b:6b:32:76:0e: 12:e9:ef:0c:2c:8f:5a:41:c0:c0:3d:85:99:ae:17: 5a:c3:b1:02:1b:63:5e:1c:f1:c8:6e:20:79:49:80: 76:5b:9c:61:26:61:79:11:83:03:f8:b8:90:ab:dc: ac:af:36:eb:d1:8f:b2:83:f5:96:27:a9:d4:cc:02: a8:4f:20:96:ba:3d:70:c0:e7:fa:e1:05:10:17:6b: 4a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FF:97:09:E3:57:16:81:CE:C4:6A:D4:09:63:E2:CF:AE:EE:4C:71 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:5b:59:ac:42:17:64:f0:63:49:65:76:98:41:1c:b1:d4:0a: 3a:20:9f:fe:4f:a0:92:ed:85:20:7d:ec:a1:79:05:f5:af:d1: 03:3b:34:8c:8c:f4:d5:e9:45:58:be:e8:c2:f6:59:91:dc:1b: 96:6e:0d:db:61:45:93:0c:05:43:5a:7d:a3:75:a3:f8:6e:1e: ec:79:56:d4:ac:64:3d:e0:94:21:e8:e3:14:f9:35:2e:ff:25: ab:c9:34:9b:38:76:1a:e1:4a:67:5d:4d:04:aa:7d:71:8e:23: c5:49:ee:1a:b0:b2:68:25:99:48:30:11:fe:45:40:9d:f3:07: 9e:cc:82:b2:8c:7e:49:50:31:44:0b:26:92:6a:ac:e8:d5:59: 81:9f:1a:b3:2c:df:fb:5d:ed:cb:dc:9a:71:15:1d:c3:29:ab: b8:9c:ff:93:57:4f:ba:9c:91:84:83:7c:b6:2e:f6:fe:77:b1: d0:26:33:fc:40:1d:ad:b2:05:aa:e9:34:26:d3:68:80:51:e2: 77:bc:62:43:5d:e7:c3:03:fa:a5:19:2f:d1:17:14:22:eb:fb: 8f:7e:24:12:8a:89:42:20:fd:f9:c2:24:4a:4c:1a:d3:96:14: 85:91:36:90:1d:4e:6c:2f:98:92:3b:63:4d:19:ad:81:77:62: cc:e1:6a:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjYwNDA0MTc1NDEyWhcNMjYwNDExMTc1NDEyWjAYMRYwFAYD VQQDEw02OWQxNTA0NC1kNjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40dgi2mIzWJcx4rUXIt5AaXk1cwfgDrKqLHM1Ep7yqajOlI0/IyUO0YTcaf4 w/oLXTp15dxUBAnkrDUAkqfL4LEUJ7QOcjFXJv/rsP10uzmvsnFI1Vpr3CJsA8BI 4H7zVRg2bmePjAm7uJtCN9izQRVwsQ/fuLkFV1a2hVCbVZR1cemjFqYCXjzJ6pDl KtQ6wWk9//LD97M3AG9yK75tRNjxczqtLJrOh3g4M8yPS2sydg4S6e8MLI9aQcDA PYWZrhdaw7ECG2NeHPHIbiB5SYB2W5xhJmF5EYMD+LiQq9ysrzbr0Y+yg/WWJ6nU zAKoTyCWuj1wwOf64QUQF2tKwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKL/lwnj VxaBzsRq1Alj4s+u7kxxMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANVtZrEIXZPBjSWV2mEEcsdQKOiCf/k+gku2FIH3soXkF9a/RAzs0jIz01elF WL7owvZZkdwblm4N22FFkwwFQ1p9o3Wj+G4e7HlW1KxkPeCUIejjFPk1Lv8lq8k0 mzh2GuFKZ11NBKp9cY4jxUnuGrCyaCWZSDAR/kVAnfMHnsyCsox+SVAxRAsmkmqs 6NVZgZ8asyzf+13ty9yacRUdwymruJz/k1dPupyRhIN8ti72/nex0CYz/EAdrbIF quk0JtNogFHid7xiQ13nwwP6pRkv0RcUIuv7j34kEoqJQiD9+cIkSkwa05YUhZE2 kB1ObC+YkjtjTRmtgXdizOFqKQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:08 2026 by rpki-client