$ rpki-client -vvf rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft File: DNZOS9b605fHRxEYooA7h90sHVM.mft (raw, json) Hash identifier: 5bRL72P0q2Qaw+TvjK8mPzAJkEBrgakK/xLv5J28QEE= Subject key identifier: 5B:E9:3D:D2:9C:5F:E5:47:F2:79:61:FD:3C:CE:8D:02:7B:9C:72:ED Authority key identifier: 0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 Certificate issuer: /CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Certificate serial: 0576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft Manifest number: 0569 Signing time: Wed 06 Aug 2025 23:49:15 +0000 Manifest this update: Wed 06 Aug 2025 23:49:14 +0000 Manifest next update: Wed 13 Aug 2025 23:49:14 +0000 Files and hashes: 1: DNZOS9b605fHRxEYooA7h90sHVM.crl (hash: czh926o4UZuR26Up2S1CvqPg2wH7+fNRRLtDj56v85c=) 2: 97A9EA446CE211EEA0262334C4F9AE02.roa (hash: O5L0VNBny7pJfYOS9ciWnkG89gWRJAbqHnsSmXbIfoU=) 3: CBB9F6766CE211EEA9499734C4F9AE02.roa (hash: CJGHkmIeNsyNcyQKQSDuECGqLutAY84BUmcFgCd6XHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E151, serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Validity Not Before: Aug 6 23:49:14 2025 GMT Not After : Aug 13 23:49:14 2025 GMT Subject: CN=6893e9fa-5b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0e:cc:ad:3f:5a:5d:d0:db:b6:54:12:21:56: 44:c8:83:dd:b4:e2:86:69:61:78:a6:9c:34:53:4b: cb:3d:08:b1:19:05:60:60:c0:af:90:b6:94:4e:88: 86:ca:01:86:f5:ee:a2:47:f1:43:57:3f:9c:22:23: 2c:85:6b:b8:88:37:46:1e:34:42:94:99:be:6d:26: a3:eb:3f:c3:12:2e:b8:1e:3f:6e:d4:e4:08:20:15: f3:9f:03:88:da:e5:f2:6f:03:a9:e6:93:cc:06:d0: 6e:5f:c6:69:73:98:69:30:d1:1a:75:36:68:ec:f5: 1f:51:47:af:e1:15:3d:c7:ca:7e:e0:a3:25:19:fc: 1d:e1:2d:dc:30:6f:95:9d:a4:aa:61:18:c4:b0:f0: 74:c7:59:bf:e1:72:6e:26:cb:d0:83:3a:ba:95:c9: ac:29:30:fc:82:4d:bc:50:89:b9:cb:ae:c1:b3:28: d2:ac:68:37:7c:28:69:7c:09:60:39:3a:b7:ad:d8: 0e:3b:fd:89:89:db:36:75:01:57:45:a6:60:30:ff: 4c:8b:6a:54:d3:3a:51:09:da:51:81:ce:0b:72:80: 95:6c:77:85:27:13:95:e3:ae:72:23:38:1c:e8:44: e4:b5:76:36:a2:3c:74:c3:7b:f5:97:d8:e3:19:53: ba:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E9:3D:D2:9C:5F:E5:47:F2:79:61:FD:3C:CE:8D:02:7B:9C:72:ED X509v3 Authority Key Identifier: keyid:0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f7:d9:dc:d5:3b:12:8b:1a:9b:74:89:26:82:d7:96:a6:71: 2a:bf:a1:38:43:91:56:a3:d4:30:13:28:dc:08:d1:44:6f:c3: a1:b9:54:a5:11:b9:c6:d0:9a:c8:94:44:66:95:33:43:44:02: d1:d1:a9:c0:fb:43:81:d7:a3:f0:c4:57:79:2c:01:4f:7c:67: e0:51:92:a0:c9:74:59:0d:2c:4d:a8:6f:ec:26:4a:3b:f8:9b: 68:f0:58:a9:21:4c:df:3b:cc:f2:87:34:72:ed:1c:18:74:c0: e3:f0:e3:81:92:14:ed:78:55:b7:1b:1c:28:6f:df:64:da:16: dc:72:d1:08:1a:3c:e0:d3:a6:de:3f:ea:38:eb:af:99:ef:ba: d2:bb:0d:d6:16:f6:31:bd:cd:16:fd:35:24:88:d5:9b:99:41: 93:e7:81:d4:36:0f:c2:ba:f3:8b:04:3d:f2:46:25:1a:90:4f: 24:4e:37:66:28:87:ed:af:6a:f0:68:db:dc:84:db:c0:2e:eb: 69:8f:8a:19:ad:5a:e5:77:1b:fb:09:12:ac:81:31:c5:5e:7b: 3e:78:56:b3:9b:a6:c3:63:3e:44:09:42:9c:6b:c1:d3:5e:9b: ea:4e:19:0f:df:83:8b:a1:2b:5a:83:78:fd:df:c5:14:9a:d0: 34:6f:68:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxNTExMTAvBgNVBAUTKDBDRDY0RTRCRDZGQUQzOTdDNzQ3MTExOEEyODAzQjg3 REQyQzFENTMwHhcNMjUwODA2MjM0OTE0WhcNMjUwODEzMjM0OTE0WjAYMRYwFAYD VQQDEw02ODkzZTlmYS01YjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApg7MrT9aXdDbtlQSIVZEyIPdtOKGaWF4ppw0U0vLPQixGQVgYMCvkLaUToiG ygGG9e6iR/FDVz+cIiMshWu4iDdGHjRClJm+bSaj6z/DEi64Hj9u1OQIIBXznwOI 2uXybwOp5pPMBtBuX8Zpc5hpMNEadTZo7PUfUUev4RU9x8p+4KMlGfwd4S3cMG+V naSqYRjEsPB0x1m/4XJuJsvQgzq6lcmsKTD8gk28UIm5y67BsyjSrGg3fChpfAlg OTq3rdgOO/2Jids2dQFXRaZgMP9Mi2pU0zpRCdpRgc4LcoCVbHeFJxOV465yIzgc 6ETktXY2ojx0w3v1l9jjGVO6/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvpPdKc X+VH8nlh/TzOjQJ7nHLtMB8GA1UdIwQYMBaAFAzWTkvW+tOXx0cRGKKAO4fdLB1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTE1MS8xMkFDRDZCQUY0 REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1ZkhSeEVZb29BN2g5MHNI Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROWk9TOWI2MDVmSFJ4RVlvb0E3aDkwc0hWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTE1MS8xMkFDRDZCQUY0REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1 ZkhSeEVZb29BN2g5MHNIVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC99nc1TsSixqbdIkmgteWpnEqv6E4Q5FWo9QwEyjcCNFEb8OhuVSl EbnG0JrIlERmlTNDRALR0anA+0OB16PwxFd5LAFPfGfgUZKgyXRZDSxNqG/sJko7 +Jto8FipIUzfO8zyhzRy7RwYdMDj8OOBkhTteFW3Gxwob99k2hbcctEIGjzg06be P+o466+Z77rSuw3WFvYxvc0W/TUkiNWbmUGT54HUNg/CuvOLBD3yRiUakE8kTjdm KIftr2rwaNvchNvALutpj4oZrVrldxv7CRKsgTHFXns+eFazm6bDYz5ECUKca8HT XpvqThkP34OLoStag3j938UUmtA0b2hd -----END CERTIFICATE-----Generated at Fri Aug 8 20:41:02 2025 by rpki-client