$ rpki-client -vvf rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft File: DNZOS9b605fHRxEYooA7h90sHVM.mft (raw, json) Hash identifier: bgUU7fpJiewBKkbisR3ISiOkxiNk0FbAfOms/MeTvQc= Subject key identifier: C1:73:27:97:AE:9C:65:1C:F3:0C:D9:E3:D7:C4:7F:59:CC:23:5A:EB Authority key identifier: 0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 Certificate issuer: /CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Certificate serial: 053E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft Manifest number: 0533 Signing time: Thu 24 Apr 2025 23:17:16 +0000 Manifest this update: Thu 24 Apr 2025 23:17:16 +0000 Manifest next update: Thu 01 May 2025 23:17:16 +0000 Files and hashes: 1: DNZOS9b605fHRxEYooA7h90sHVM.crl (hash: BBeTcR5aky6tlVarsppF+kEG3qYusFMxrBHQsc4f6F0=) 2: 97A9EA446CE211EEA0262334C4F9AE02.roa (hash: N3l8NbXI6PWZv8XLkMHP80swkTXCmSPPyHudla60h0Y=) 3: CBB9F6766CE211EEA9499734C4F9AE02.roa (hash: +s3RfgfZleOkFSX6tECNHJYojBeQ3ve3IeKnyvn0+N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E151, serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Validity Not Before: Apr 24 23:17:16 2025 GMT Not After : May 1 23:17:16 2025 GMT Subject: CN=680ac67c-9a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:94:46:c9:16:13:5e:d4:93:8b:4f:72:28:2b: 12:2d:f9:16:d4:09:7e:b5:32:75:6c:31:a9:fa:20: cd:35:29:11:cc:4d:cc:ef:5f:0f:9e:ee:e4:36:af: 27:a7:50:6d:77:2b:93:0a:e4:02:09:06:7f:4e:6a: e2:7d:56:78:5f:b5:bf:71:d6:14:64:93:17:2e:19: 46:5c:be:23:68:57:c7:55:49:2d:d7:1b:5e:bf:a6: 11:90:71:48:24:15:2b:d3:d9:06:81:9f:63:bc:f3: d9:b1:b4:2e:74:1c:56:8e:bb:f1:be:32:52:8c:d0: 64:41:d1:cb:3e:3a:17:9e:32:e1:ea:38:63:3f:fc: b9:43:76:90:be:dd:fd:23:4d:41:3d:8f:c6:4b:44: 9b:0d:36:18:19:fe:94:ae:bd:fe:7a:93:dd:67:10: 4a:25:25:b7:46:a0:c3:c3:04:ef:0d:10:38:bb:d9: a3:70:1e:17:63:ce:2f:06:04:9e:0e:d7:1e:51:7d: a0:c0:4b:f2:6c:39:dd:bb:ca:a9:45:da:f7:ed:08: f0:84:d4:20:5e:72:52:d2:9b:0b:91:08:db:93:0d: 20:85:be:cb:66:ef:d6:c5:2b:69:b8:6b:53:d7:38: 3e:d6:6c:23:de:d7:f9:25:77:fd:68:16:52:6c:f3: 78:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:73:27:97:AE:9C:65:1C:F3:0C:D9:E3:D7:C4:7F:59:CC:23:5A:EB X509v3 Authority Key Identifier: keyid:0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:45:48:3a:52:a5:5f:5e:75:75:08:e6:3e:e8:97:ee:c5:7b: e2:2a:59:14:f9:09:41:be:be:c4:3b:aa:ce:36:66:bb:8c:0b: 67:d2:03:ee:ff:c8:ee:54:c9:ad:b8:be:3f:5d:e2:00:8a:b3: 19:ee:4e:74:3d:b1:58:60:43:c6:47:6c:34:1d:2a:df:cc:4b: b7:07:eb:94:82:a8:f2:64:5e:4d:90:8a:71:23:9f:0d:03:91: 5e:31:fd:61:ae:0c:cb:d4:4b:0d:ae:63:f8:34:4e:01:8a:a0: 4f:40:75:72:56:3b:7a:8f:fa:8f:ff:20:f4:7d:0e:55:d4:f8: 16:04:a3:ee:40:ee:db:c1:d0:6b:08:9e:1d:0f:6e:6b:01:66: 9d:58:0f:db:4f:86:22:f4:93:14:8b:8c:75:f3:c4:29:90:bd: 02:b6:78:de:e3:57:0e:e7:cc:6c:d1:a6:12:5a:9e:1a:c2:47: 98:99:1a:6b:03:9e:87:8b:b9:f5:5c:5a:f4:84:50:33:1b:60: 07:03:11:7a:ff:22:69:f6:e3:e2:8c:5a:ef:b4:2e:ed:62:5a: 23:26:25:db:f2:7e:07:1c:2a:09:29:79:04:ff:38:dc:ea:75: 15:fd:cc:c2:82:bc:bb:5e:ff:99:fb:99:d0:8c:c6:7b:4a:8d: 20:0d:99:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxNTExMTAvBgNVBAUTKDBDRDY0RTRCRDZGQUQzOTdDNzQ3MTExOEEyODAzQjg3 REQyQzFENTMwHhcNMjUwNDI0MjMxNzE2WhcNMjUwNTAxMjMxNzE2WjAYMRYwFAYD VQQDEw02ODBhYzY3Yy05YTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZRGyRYTXtSTi09yKCsSLfkW1Al+tTJ1bDGp+iDNNSkRzE3M718Pnu7kNq8n p1BtdyuTCuQCCQZ/TmrifVZ4X7W/cdYUZJMXLhlGXL4jaFfHVUkt1xtev6YRkHFI JBUr09kGgZ9jvPPZsbQudBxWjrvxvjJSjNBkQdHLPjoXnjLh6jhjP/y5Q3aQvt39 I01BPY/GS0SbDTYYGf6Urr3+epPdZxBKJSW3RqDDwwTvDRA4u9mjcB4XY84vBgSe DtceUX2gwEvybDndu8qpRdr37QjwhNQgXnJS0psLkQjbkw0ghb7LZu/WxStpuGtT 1zg+1mwj3tf5JXf9aBZSbPN4vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFzJ5eu nGUc8wzZ49fEf1nMI1rrMB8GA1UdIwQYMBaAFAzWTkvW+tOXx0cRGKKAO4fdLB1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTE1MS8xMkFDRDZCQUY0 REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1ZkhSeEVZb29BN2g5MHNI Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROWk9TOWI2MDVmSFJ4RVlvb0E3aDkwc0hWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTE1MS8xMkFDRDZCQUY0REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1 ZkhSeEVZb29BN2g5MHNIVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQRUg6UqVfXnV1COY+6JfuxXviKlkU+QlBvr7EO6rONma7jAtn0gPu /8juVMmtuL4/XeIAirMZ7k50PbFYYEPGR2w0HSrfzEu3B+uUgqjyZF5NkIpxI58N A5FeMf1hrgzL1EsNrmP4NE4BiqBPQHVyVjt6j/qP/yD0fQ5V1PgWBKPuQO7bwdBr CJ4dD25rAWadWA/bT4Yi9JMUi4x188QpkL0Ctnje41cO58xs0aYSWp4awkeYmRpr A56Hi7n1XFr0hFAzG2AHAxF6/yJp9uPijFrvtC7tYlojJiXb8n4HHCoJKXkE/zjc 6nUV/czCgry7Xv+Z+5nQjMZ7So0gDZmD -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:16 2025 by rpki-client