$ rpki-client -vvf rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft File: DNZOS9b605fHRxEYooA7h90sHVM.mft (raw, json) Hash identifier: ExL3kqlzMsDUOgQNEA9kpjgUXcjLaxdYuVmM4l1lHdY= Subject key identifier: 9D:6C:EB:FA:9A:D5:BF:CE:9C:00:36:BC:3A:DD:14:D4:4B:6E:19:40 Authority key identifier: 0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 Certificate issuer: /CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft Manifest number: 054D Signing time: Mon 16 Jun 2025 23:04:08 +0000 Manifest this update: Mon 16 Jun 2025 23:04:07 +0000 Manifest next update: Mon 23 Jun 2025 23:04:07 +0000 Files and hashes: 1: DNZOS9b605fHRxEYooA7h90sHVM.crl (hash: vLy6xNbxcqqnLCAiTIc6sWTfI0oKTfxSMeKHT9QQufw=) 2: 97A9EA446CE211EEA0262334C4F9AE02.roa (hash: N3l8NbXI6PWZv8XLkMHP80swkTXCmSPPyHudla60h0Y=) 3: CBB9F6766CE211EEA9499734C4F9AE02.roa (hash: +s3RfgfZleOkFSX6tECNHJYojBeQ3ve3IeKnyvn0+N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E151, serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Validity Not Before: Jun 16 23:04:07 2025 GMT Not After : Jun 23 23:04:07 2025 GMT Subject: CN=6850a2e7-f342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:be:a0:27:43:63:24:3e:c1:1a:15:6b:54:35: b8:59:f7:74:41:d2:5a:37:aa:9d:2a:b3:85:9e:b8: 67:da:e3:ab:2f:78:13:6a:aa:d7:5a:4e:3d:8b:0b: 3e:e8:4d:01:fc:23:70:f7:a4:8a:e4:78:af:de:9f: 70:59:1c:f8:f2:e8:53:91:15:7b:cd:d3:58:c8:95: 34:c5:e2:da:8e:85:4e:29:9f:aa:15:32:27:ce:53: 67:3f:5b:33:44:b0:7c:de:6d:1d:8c:a9:c1:89:d8: dc:ef:57:fb:49:61:f7:61:7f:a9:5b:15:5c:87:72: bb:c8:6b:aa:47:50:d4:a0:8b:41:e6:b2:a4:68:77: c7:30:d9:44:9e:95:63:3a:70:31:47:41:5b:e0:48: fd:60:82:dc:d5:1b:c3:75:c6:92:25:e8:f9:e2:a0: 84:5d:f5:b9:e9:4f:f0:e6:8f:12:24:9c:f4:da:d2: 55:1f:91:6b:76:f9:9c:9e:5e:cc:ad:d8:57:b7:e6: 23:63:b0:95:d8:fa:57:d5:95:19:44:9a:82:fe:5c: 01:1a:65:10:db:f0:fc:35:bd:97:73:c3:62:78:bd: 57:61:91:2b:17:3f:1f:32:e2:71:a9:4c:bb:da:ee: 78:39:2b:4f:7d:c1:2e:59:6b:e1:9d:20:30:c4:b1: 11:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6C:EB:FA:9A:D5:BF:CE:9C:00:36:BC:3A:DD:14:D4:4B:6E:19:40 X509v3 Authority Key Identifier: keyid:0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:36:17:5e:bf:57:92:19:e7:11:d0:b9:e3:34:c9:0e:10:ad: ef:27:46:75:e6:84:14:5c:f6:a1:43:00:c3:23:3e:f0:2c:9b: 27:c6:49:ae:01:31:4a:4d:36:16:dd:ab:59:09:17:1b:c6:6c: 9e:d1:bb:a6:8f:ee:9a:4b:0a:d6:80:17:16:33:8f:21:49:bc: ea:ca:e9:99:34:7a:ec:38:96:35:9b:11:c2:c6:79:e3:74:77: ef:29:38:82:25:21:f9:65:fc:65:58:81:36:db:9f:4f:e9:c5: 9c:b5:9d:81:90:93:d2:cc:52:60:64:b2:ad:6d:fd:3f:89:18: 63:63:a0:63:59:b2:16:01:7d:8d:65:28:dd:f5:d0:d1:3a:7c: 03:dd:35:d6:bd:ac:c9:ec:2e:66:47:9e:72:3c:fb:07:f1:de: ac:6c:1d:2a:40:4c:0d:98:d4:8d:88:3c:ec:65:c0:93:db:b2: 83:a0:90:67:d7:7b:dd:a4:a5:0f:3a:41:e1:d9:15:13:43:f5: ec:32:3c:57:3b:e5:60:1a:e9:77:89:5a:ab:04:f5:8c:4a:59: 48:f5:92:1c:f3:d7:78:9a:9f:45:b6:04:1e:b5:f0:4d:d9:2c: a5:15:b1:6b:88:4f:d3:4b:10:0e:c2:50:a4:a1:26:a5:11:46: 4c:26:84:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxNTExMTAvBgNVBAUTKDBDRDY0RTRCRDZGQUQzOTdDNzQ3MTExOEEyODAzQjg3 REQyQzFENTMwHhcNMjUwNjE2MjMwNDA3WhcNMjUwNjIzMjMwNDA3WjAYMRYwFAYD VQQDEw02ODUwYTJlNy1mMzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA376gJ0NjJD7BGhVrVDW4Wfd0QdJaN6qdKrOFnrhn2uOrL3gTaqrXWk49iws+ 6E0B/CNw96SK5Hiv3p9wWRz48uhTkRV7zdNYyJU0xeLajoVOKZ+qFTInzlNnP1sz RLB83m0djKnBidjc71f7SWH3YX+pWxVch3K7yGuqR1DUoItB5rKkaHfHMNlEnpVj OnAxR0Fb4Ej9YILc1RvDdcaSJej54qCEXfW56U/w5o8SJJz02tJVH5Frdvmcnl7M rdhXt+YjY7CV2PpX1ZUZRJqC/lwBGmUQ2/D8Nb2Xc8NieL1XYZErFz8fMuJxqUy7 2u54OStPfcEuWWvhnSAwxLERhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1s6/qa 1b/OnAA2vDrdFNRLbhlAMB8GA1UdIwQYMBaAFAzWTkvW+tOXx0cRGKKAO4fdLB1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTE1MS8xMkFDRDZCQUY0 REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1ZkhSeEVZb29BN2g5MHNI Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROWk9TOWI2MDVmSFJ4RVlvb0E3aDkwc0hWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTE1MS8xMkFDRDZCQUY0REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1 ZkhSeEVZb29BN2g5MHNIVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFNhdev1eSGecR0LnjNMkOEK3vJ0Z15oQUXPahQwDDIz7wLJsnxkmu ATFKTTYW3atZCRcbxmye0bumj+6aSwrWgBcWM48hSbzqyumZNHrsOJY1mxHCxnnj dHfvKTiCJSH5ZfxlWIE2259P6cWctZ2BkJPSzFJgZLKtbf0/iRhjY6BjWbIWAX2N ZSjd9dDROnwD3TXWvazJ7C5mR55yPPsH8d6sbB0qQEwNmNSNiDzsZcCT27KDoJBn 13vdpKUPOkHh2RUTQ/XsMjxXO+VgGul3iVqrBPWMSllI9ZIc89d4mp9FtgQetfBN 2SylFbFriE/TSxAOwlCkoSalEUZMJoT5 -----END CERTIFICATE-----Generated at Tue Jun 17 16:54:04 2025 by rpki-client