$ rpki-client -vvf rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft File: DNZOS9b605fHRxEYooA7h90sHVM.mft (raw, json) Hash identifier: 9hiZkZeEWUFIGMVOzSDdVVjaWuUCurG3Xlh3gdDnJrQ= Subject key identifier: 02:6F:FA:90:F8:4B:95:70:76:E3:AD:4B:E5:CD:09:8D:F4:EF:FF:3E Authority key identifier: 0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 Certificate issuer: /CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Certificate serial: 05A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft Manifest number: 0596 Signing time: Tue 04 Nov 2025 23:17:10 +0000 Manifest this update: Tue 04 Nov 2025 23:17:10 +0000 Manifest next update: Tue 11 Nov 2025 23:17:10 +0000 Files and hashes: 1: DNZOS9b605fHRxEYooA7h90sHVM.crl (hash: n0N9y3i5+TJFSrQwHF8T6ZedGT3hpRxAUnETsaXnXPg=) 2: 97A9EA446CE211EEA0262334C4F9AE02.roa (hash: O5L0VNBny7pJfYOS9ciWnkG89gWRJAbqHnsSmXbIfoU=) 3: CBB9F6766CE211EEA9499734C4F9AE02.roa (hash: CJGHkmIeNsyNcyQKQSDuECGqLutAY84BUmcFgCd6XHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1443 (0x5a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E151, serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Validity Not Before: Nov 4 23:17:10 2025 GMT Not After : Nov 11 23:17:10 2025 GMT Subject: CN=690a8976-5bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:be:86:59:e7:a4:9c:91:51:ec:1f:17:0f:f8: 8a:76:35:04:3b:98:be:4f:6f:5f:19:73:cb:a4:9c: 36:9a:1a:aa:b7:14:a2:bd:b4:3d:36:98:81:e8:67: 7b:06:ff:03:c2:75:4b:94:12:f8:51:dd:16:84:bb: 9e:16:45:9b:fa:3d:9c:cd:04:67:da:93:84:6c:db: c1:9e:47:96:67:ee:f4:64:39:8b:10:aa:6b:4b:d9: 26:c2:68:b4:ba:18:92:de:a1:1e:23:9c:53:cd:43: 2e:9c:e2:75:a4:17:f3:7e:39:e8:fb:31:f0:75:6e: 13:4c:d0:ae:d2:02:89:a1:c7:3b:7b:cc:1c:dd:ff: 52:95:14:a4:bb:73:20:f4:31:13:f3:6b:11:b6:1a: db:53:b0:bf:5e:91:78:39:b9:42:b0:cb:ca:f1:36: 1a:72:68:dc:d7:2b:bc:4a:4f:22:45:de:8f:8b:51: 62:c2:3c:e2:4f:bd:18:ea:52:2d:f9:df:12:07:dd: ea:e0:e9:64:6d:30:27:c8:9e:07:04:02:1d:79:12: ac:34:4a:15:cd:a2:3f:51:f6:05:a2:58:a8:b3:d1: b3:98:d2:ae:db:23:0c:70:8e:2c:ce:37:16:4e:d2: 77:05:73:48:85:0a:bb:ac:21:97:2f:f1:4c:75:23: 8c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:6F:FA:90:F8:4B:95:70:76:E3:AD:4B:E5:CD:09:8D:F4:EF:FF:3E X509v3 Authority Key Identifier: keyid:0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8e:65:5e:ae:4a:fa:38:8b:fb:e0:24:48:7e:04:e2:f6:f0: 69:7b:1e:20:2f:66:e3:41:5d:a2:53:a4:95:05:20:b0:f4:47: 57:58:49:c4:65:a8:29:44:a5:68:f7:3b:a4:ed:f0:30:a9:c3: 62:11:22:c3:3d:3a:b7:67:bc:8c:bb:09:c0:b2:b9:a0:18:d4: 2e:32:dc:e8:9e:99:29:19:0f:dd:4a:da:45:9b:28:d4:02:8d: 92:18:26:52:eb:c6:c6:70:cb:bd:5f:d6:b1:6b:92:d4:c4:28: 3b:e3:b6:5b:6d:88:35:4f:46:65:b8:81:a6:07:fd:41:f6:4e: 49:49:8d:67:aa:f3:55:e0:f1:bc:33:77:8c:97:ca:e2:8e:dc: ac:d3:d2:a2:39:c2:cf:92:67:34:dd:72:b5:b6:8d:f9:f2:4f: 8e:08:b6:60:1a:be:c9:90:7e:80:4d:04:c8:3f:ac:97:62:65: 84:e3:d4:27:a9:68:04:ca:b5:b8:26:fe:6e:62:85:05:00:05: 1d:d8:d5:bb:3e:5e:65:82:c8:ad:93:82:e7:9d:63:a4:80:39: 77:71:71:23:be:ba:00:b1:f7:f1:85:47:b3:0d:1a:86:55:a7: b7:7a:8f:7a:26:ce:c7:73:17:af:00:90:27:23:41:77:8d:20: dc:47:3f:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxNTExMTAvBgNVBAUTKDBDRDY0RTRCRDZGQUQzOTdDNzQ3MTExOEEyODAzQjg3 REQyQzFENTMwHhcNMjUxMTA0MjMxNzEwWhcNMjUxMTExMjMxNzEwWjAYMRYwFAYD VQQDEw02OTBhODk3Ni01YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnr6GWeeknJFR7B8XD/iKdjUEO5i+T29fGXPLpJw2mhqqtxSivbQ9NpiB6Gd7 Bv8DwnVLlBL4Ud0WhLueFkWb+j2czQRn2pOEbNvBnkeWZ+70ZDmLEKprS9kmwmi0 uhiS3qEeI5xTzUMunOJ1pBfzfjno+zHwdW4TTNCu0gKJocc7e8wc3f9SlRSku3Mg 9DET82sRthrbU7C/XpF4OblCsMvK8TYacmjc1yu8Sk8iRd6Pi1FiwjziT70Y6lIt +d8SB93q4OlkbTAnyJ4HBAIdeRKsNEoVzaI/UfYFolios9GzmNKu2yMMcI4szjcW TtJ3BXNIhQq7rCGXL/FMdSOMjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJv+pD4 S5VwduOtS+XNCY307/8+MB8GA1UdIwQYMBaAFAzWTkvW+tOXx0cRGKKAO4fdLB1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTE1MS8xMkFDRDZCQUY0 REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1ZkhSeEVZb29BN2g5MHNI Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROWk9TOWI2MDVmSFJ4RVlvb0E3aDkwc0hWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTE1MS8xMkFDRDZCQUY0REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1 ZkhSeEVZb29BN2g5MHNIVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAijmVerkr6OIv74CRIfgTi9vBpex4gL2bjQV2iU6SVBSCw9EdXWEnE ZagpRKVo9zuk7fAwqcNiESLDPTq3Z7yMuwnAsrmgGNQuMtzonpkpGQ/dStpFmyjU Ao2SGCZS68bGcMu9X9axa5LUxCg747ZbbYg1T0ZluIGmB/1B9k5JSY1nqvNV4PG8 M3eMl8rijtys09KiOcLPkmc03XK1to358k+OCLZgGr7JkH6ATQTIP6yXYmWE49Qn qWgEyrW4Jv5uYoUFAAUd2NW7Pl5lgsitk4LnnWOkgDl3cXEjvroAsffxhUezDRqG Vae3eo96Js7HcxevAJAnI0F3jSDcRz+K -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:02 2025 by rpki-client