$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: nBvLtHJtjc/mG+V6wtJg/X4TnOlQpYPNIhspZuWe+Yg= Subject key identifier: 1E:ED:E1:13:DF:99:F8:45:8F:F1:C2:99:E3:DB:43:9C:8E:1C:7C:8E Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0BBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0BB6 Signing time: Sat 18 Oct 2025 19:46:41 +0000 Manifest this update: Sat 18 Oct 2025 19:46:41 +0000 Manifest next update: Sat 25 Oct 2025 19:46:41 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: M0BWfucRyo0sxtRNtQDRV+wQNU/NR9F+1tbHpHs4q14=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3007 (0xbbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Oct 18 19:46:41 2025 GMT Not After : Oct 25 19:46:41 2025 GMT Subject: CN=68f3eea1-40a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5e:46:5f:45:e2:b8:3c:ec:84:1c:cd:6a:04: 9b:61:6e:79:26:e6:99:02:38:02:0a:ff:4a:8f:3d: c2:3c:36:f7:2c:f7:b8:0d:0d:a0:94:6b:99:c4:09: 86:96:ba:81:da:6c:39:89:88:7b:cd:0e:6d:3d:ca: 1f:da:62:b4:76:a6:32:1d:15:b4:ff:c0:2f:8f:d5: 35:07:51:6e:a8:00:fc:54:19:02:b8:90:74:b9:ee: 3b:4f:41:49:dd:73:cd:1b:5f:6e:8b:12:22:37:5d: 5a:9c:42:15:38:cf:12:f3:57:6d:ba:22:5e:aa:bf: cd:80:3b:5e:67:c3:0f:75:e4:42:66:a4:31:3e:30: 27:2e:4e:20:b6:20:9f:ee:a3:b7:4d:b6:5e:60:63: bf:e3:5e:76:d1:b0:ff:64:f2:46:5c:4f:7a:2e:77: 7f:61:f9:02:5a:75:61:4d:c3:b2:9e:ea:96:7b:fe: 98:11:23:97:1d:6f:17:ac:77:a9:2f:c4:1a:2f:38: 88:dd:94:89:f4:68:a3:48:10:78:21:19:d0:27:ab: 4d:63:7f:e5:fb:13:9a:aa:7e:1c:0f:ae:87:fa:05: 3c:14:4e:f2:c0:c1:d2:cb:b8:d1:f0:5f:02:53:22: 2e:60:51:6c:cf:9c:ae:d6:5b:f6:48:ee:45:a1:1e: 3b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:ED:E1:13:DF:99:F8:45:8F:F1:C2:99:E3:DB:43:9C:8E:1C:7C:8E X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f2:ce:35:16:92:c6:76:19:c5:cd:50:74:ad:58:c6:87:df: 57:8d:25:f8:7a:0d:58:b5:a1:6c:e9:0d:ab:e0:d1:9e:3b:0a: 0c:1e:95:59:d2:c6:05:17:7e:7a:4f:b4:b6:33:5b:0b:cb:1f: fe:ba:6c:b2:bd:c0:d8:dd:47:6b:38:54:14:d4:5d:46:0f:be: 03:d2:30:6d:0e:15:b2:75:30:2f:fa:bc:93:e4:4e:1d:57:d0: 41:21:98:d7:78:c6:f5:78:b3:c9:56:61:68:32:2a:a5:3e:ff: 83:55:88:6e:ca:a2:07:cb:b6:63:5d:3c:6a:cd:d9:95:72:a2: 06:4c:47:06:24:b4:7a:1d:96:59:a8:a9:bc:5f:3e:9d:74:9e: eb:76:28:69:1f:e5:72:29:8a:fe:d1:af:59:f1:61:e7:b5:ac: 1f:6c:84:92:c6:ec:b2:39:7d:66:b7:b5:f5:6e:a0:37:a6:b2: 1a:fb:56:ac:7a:85:c9:6b:bc:35:7a:dd:85:62:ef:bb:4a:8b: 8a:c7:59:bc:cc:b1:53:8c:d7:d0:63:12:c5:76:df:5c:94:0b: fe:ca:a2:37:59:05:8c:91:cb:2c:9e:63:d6:c0:97:71:69:f9: b6:46:f7:28:4b:75:b1:38:fc:25:fd:7a:31:0f:94:d7:4e:38: e1:11:3c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUxMDE4MTk0NjQxWhcNMjUxMDI1MTk0NjQxWjAYMRYwFAYD VQQDEw02OGYzZWVhMS00MGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmF5GX0XiuDzshBzNagSbYW55JuaZAjgCCv9Kjz3CPDb3LPe4DQ2glGuZxAmG lrqB2mw5iYh7zQ5tPcof2mK0dqYyHRW0/8Avj9U1B1FuqAD8VBkCuJB0ue47T0FJ 3XPNG19uixIiN11anEIVOM8S81dtuiJeqr/NgDteZ8MPdeRCZqQxPjAnLk4gtiCf 7qO3TbZeYGO/41520bD/ZPJGXE96Lnd/YfkCWnVhTcOynuqWe/6YESOXHW8XrHep L8QaLziI3ZSJ9GijSBB4IRnQJ6tNY3/l+xOaqn4cD66H+gU8FE7ywMHSy7jR8F8C UyIuYFFsz5yu1lv2SO5FoR47IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7t4RPf mfhFj/HCmePbQ5yOHHyOMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA98s41FpLGdhnFzVB0rVjGh99XjSX4eg1YtaFs6Q2r4NGeOwoMHpVZ 0sYFF356T7S2M1sLyx/+umyyvcDY3UdrOFQU1F1GD74D0jBtDhWydTAv+ryT5E4d V9BBIZjXeMb1eLPJVmFoMiqlPv+DVYhuyqIHy7ZjXTxqzdmVcqIGTEcGJLR6HZZZ qKm8Xz6ddJ7rdihpH+VyKYr+0a9Z8WHntawfbISSxuyyOX1mt7X1bqA3prIa+1as eoXJa7w1et2FYu+7SouKx1m8zLFTjNfQYxLFdt9clAv+yqI3WQWMkcssnmPWwJdx afm2RvcoS3WxOPwl/XoxD5TXTjjhETyD -----END CERTIFICATE-----Generated at Mon Oct 20 14:06:02 2025 by rpki-client