$ rpki-client -vvf rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft File: DNZOS9b605fHRxEYooA7h90sHVM.mft (raw, json) Hash identifier: xGw1EHXPPUA7AvVlALZeSnMDY1m/TCo2EfXG80kS/7s= Subject key identifier: CC:14:11:48:CD:29:6C:F0:62:D2:12:16:C3:5F:C3:9A:E9:63:1B:B8 Authority key identifier: 0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 Certificate issuer: /CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Certificate serial: 05E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft Manifest number: 05D6 Signing time: Sat 28 Feb 2026 23:35:22 +0000 Manifest this update: Sat 28 Feb 2026 23:35:21 +0000 Manifest next update: Sat 07 Mar 2026 23:35:21 +0000 Files and hashes: 1: DNZOS9b605fHRxEYooA7h90sHVM.crl (hash: 29Bj22ErA5Ii4Xn2tEy+BoK/KIahwCltHr5465sjHyM=) 2: CBB9F6766CE211EEA9499734C4F9AE02.roa (hash: CJGHkmIeNsyNcyQKQSDuECGqLutAY84BUmcFgCd6XHA=) 3: EE99A422139111F1BDC8075D3B3D8C67.roa (hash: AOkQ/qP4GzBkvmhob3U3hLgvcTeFpKmdHt13HnJmjco=) 4: 2804A8CE139211F19169847F3B3D8C67.roa (hash: gnSc+4dNDcRhZis4tSN/jeV4b8orn5CVzSyDxoS+zTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E151, serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Validity Not Before: Feb 28 23:35:21 2026 GMT Not After : Mar 7 23:35:21 2026 GMT Subject: CN=69a37bba-d428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0c:12:02:8e:22:7b:94:95:d8:9c:97:7a:e3: a9:87:76:96:94:a5:7a:cc:9b:23:e3:3e:d7:7a:54: 57:16:b5:84:b8:e4:65:6f:e6:b3:cb:d9:1a:e3:42: 24:97:8c:5d:97:49:ac:9b:4b:ca:1b:30:0b:0c:5f: 20:f1:cb:3c:2b:51:b3:66:e3:ba:86:05:99:2d:c1: 34:0d:d6:bc:69:b3:34:c0:36:fa:2f:21:35:2f:c5: fe:5b:69:2c:e8:f8:4e:9e:e5:fa:1a:f1:05:e8:36: b4:a7:b1:69:25:14:84:7d:15:07:d1:f2:6a:e3:d3: db:cf:bf:42:0c:c9:62:0b:cf:e7:b5:2a:86:72:ab: 7e:28:05:65:85:89:29:78:08:63:08:cd:ed:45:5e: b5:a8:42:d8:2a:46:d8:f6:d7:2b:2e:2b:72:16:f6: b1:04:31:d2:b3:08:d9:5c:72:26:c9:10:22:72:64: 95:f8:55:3e:f7:79:57:bd:96:b4:8b:cf:fe:2d:7a: 64:6c:b2:dd:dd:fd:ae:ce:3c:ee:3e:39:7b:74:38: 9a:eb:fc:20:5c:88:27:d1:a1:ba:a2:5b:cd:20:e9: 59:f7:7f:97:4b:69:fd:b7:31:dc:f4:95:79:e7:aa: d0:d1:0e:1e:41:5b:3e:ff:68:25:62:b3:05:b7:b7: 78:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:14:11:48:CD:29:6C:F0:62:D2:12:16:C3:5F:C3:9A:E9:63:1B:B8 X509v3 Authority Key Identifier: keyid:0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:77:79:27:87:07:a6:f5:8f:96:5d:39:a7:68:82:79:c6:03: 72:24:43:fc:6a:a7:4a:14:da:67:86:e1:29:55:d8:0e:13:cc: 00:c5:fa:b3:1b:fc:f5:2e:b7:5a:f5:28:99:43:cf:2f:c3:60: c1:61:56:c8:ce:ec:c6:45:40:b6:fa:33:30:47:72:ca:d3:69: f2:d8:ad:0d:2b:1c:a1:d3:52:e5:10:8e:f8:30:b2:7c:57:60: c3:7a:c7:04:a0:ef:59:8d:57:4c:a6:34:a9:45:37:89:1e:e2: ec:eb:d9:88:67:17:1d:94:02:d8:67:fb:ce:d4:f9:19:0a:2d: 03:ff:30:c9:76:47:5b:cf:a0:4e:1c:71:d9:13:b2:a4:36:49: ef:92:4b:e8:d0:73:35:84:8c:c9:3f:d2:cc:11:b9:c4:de:e5: 17:c9:ca:52:a5:7f:22:e2:8a:fa:fe:98:52:d5:31:ee:33:59: 47:ec:8e:45:8e:cb:0c:e9:0a:c1:12:6b:36:b9:85:64:0b:e7: 60:b4:68:b4:98:54:0a:c3:ce:15:6c:a9:e4:74:b9:59:c4:11: 8d:23:12:e5:fc:a9:22:b0:45:8a:04:67:ab:5e:12:d1:f2:b0: f6:dd:f4:10:b7:92:9b:65:04:5c:a7:14:e6:9a:e4:96:0f:e8: 12:f6:46:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxNTExMTAvBgNVBAUTKDBDRDY0RTRCRDZGQUQzOTdDNzQ3MTExOEEyODAzQjg3 REQyQzFENTMwHhcNMjYwMjI4MjMzNTIxWhcNMjYwMzA3MjMzNTIxWjAYMRYwFAYD VQQDDA02OWEzN2JiYS1kNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQwSAo4ie5SV2JyXeuOph3aWlKV6zJsj4z7XelRXFrWEuORlb+azy9ka40Ik l4xdl0msm0vKGzALDF8g8cs8K1GzZuO6hgWZLcE0Dda8abM0wDb6LyE1L8X+W2ks 6PhOnuX6GvEF6Da0p7FpJRSEfRUH0fJq49Pbz79CDMliC8/ntSqGcqt+KAVlhYkp eAhjCM3tRV61qELYKkbY9tcrLityFvaxBDHSswjZXHImyRAicmSV+FU+93lXvZa0 i8/+LXpkbLLd3f2uzjzuPjl7dDia6/wgXIgn0aG6olvNIOlZ93+XS2n9tzHc9JV5 56rQ0Q4eQVs+/2glYrMFt7d4iQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMwUEUjN KWzwYtISFsNfw5rpYxu4MB8GA1UdIwQYMBaAFAzWTkvW+tOXx0cRGKKAO4fdLB1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTE1MS8xMkFDRDZCQUY0 REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1ZkhSeEVZb29BN2g5MHNI Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROWk9TOWI2MDVmSFJ4RVlvb0E3aDkwc0hWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTE1MS8xMkFDRDZCQUY0REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1 ZkhSeEVZb29BN2g5MHNIVk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPXd5J4cHpvWPll05p2iCecYDciRD/GqnShTaZ4bhKVXYDhPMAMX6sxv89S63 WvUomUPPL8NgwWFWyM7sxkVAtvozMEdyytNp8titDSscodNS5RCO+DCyfFdgw3rH BKDvWY1XTKY0qUU3iR7i7OvZiGcXHZQC2Gf7ztT5GQotA/8wyXZHW8+gThxx2ROy pDZJ75JL6NBzNYSMyT/SzBG5xN7lF8nKUqV/IuKK+v6YUtUx7jNZR+yORY7LDOkK wRJrNrmFZAvnYLRotJhUCsPOFWyp5HS5WcQRjSMS5fypIrBFigRnq14S0fKw9t30 ELeSm2UEXKcU5prklg/oEvZGRw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:52 2026 by rpki-client