$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: GVmM0x/lvbfxZ/zhD4Gyuowy0GaqtvNP+pX5Bn0j/B8= Subject key identifier: D8:48:5A:2B:DF:64:C4:7E:12:96:29:01:30:63:CB:A2:1E:B4:59:3D Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B99 Signing time: Fri 22 Aug 2025 19:07:00 +0000 Manifest this update: Fri 22 Aug 2025 19:06:59 +0000 Manifest next update: Fri 29 Aug 2025 19:06:59 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: G0vSv+nRDgD/rV8firIdI8GTng1GFT8jrct65wP8bxg=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Aug 22 19:06:59 2025 GMT Not After : Aug 29 19:06:59 2025 GMT Subject: CN=68a8bfd3-6ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9d:2b:41:96:0d:a0:5d:70:34:42:83:13:96: 52:10:8b:61:17:ab:3e:63:6b:95:29:e3:8e:4b:69: c3:c2:b7:92:ca:c4:46:4c:48:10:47:ff:f2:de:93: 04:4e:db:a5:9b:32:7f:d7:ff:1f:a1:f7:73:d2:05: a8:5f:fc:ac:17:0c:df:27:0d:3c:29:93:d9:36:59: d1:ec:94:f0:f1:6d:53:0f:e6:c2:c8:91:af:45:dd: ff:fc:8f:1d:72:e7:1f:3d:e7:ba:43:79:61:80:0a: 41:c2:07:1a:2a:50:6f:12:d1:d8:06:04:92:8a:ce: c9:7b:9d:1e:6c:eb:48:dd:90:62:a7:8b:cd:fc:3e: 20:e4:10:74:5f:d5:17:83:ac:92:a9:56:ce:5b:a8: 91:a0:5f:c0:04:e3:41:35:0b:67:60:55:aa:cb:f5: d1:d9:a4:84:5e:94:dc:ae:b0:ff:a0:32:72:ac:7d: a1:80:39:f9:d2:c0:12:e1:fb:f8:f8:37:21:3f:1a: f8:4f:75:4b:62:e1:fa:0b:0b:ad:6e:1b:48:d1:88: 46:de:34:4c:82:12:4a:4f:8e:e8:5a:8c:15:d9:20: aa:b6:49:d0:1f:ff:dc:9e:15:b9:f9:23:b7:db:5c: 90:ef:71:8e:d5:ad:28:ba:72:51:a5:6c:25:f8:c2: b8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:48:5A:2B:DF:64:C4:7E:12:96:29:01:30:63:CB:A2:1E:B4:59:3D X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3e:7e:69:0d:ea:db:5b:b6:30:d5:80:73:88:33:c6:5e:45: 67:dd:e9:80:9b:e4:c6:14:28:ee:cb:87:f5:05:c4:13:3f:87: 4b:59:bc:0d:b1:9a:fc:fe:cf:c4:b3:51:4c:34:ac:cf:7d:d6: f4:ad:34:2d:4b:cf:b2:5d:fd:85:6e:80:83:72:28:3d:73:bd: 24:2c:ed:c9:b6:5f:48:70:3f:49:88:f1:df:48:61:63:06:63: 80:31:70:55:a9:c0:bb:01:b2:25:72:61:18:be:03:ae:d1:5c: 35:be:c4:20:f3:07:7a:c1:d0:5d:0d:76:b1:7a:91:26:5d:2c: 02:71:15:95:24:c9:e8:dd:cd:58:26:4b:a1:58:39:a2:a7:26: bb:38:33:d3:1c:1b:e2:bf:43:8d:a4:5f:d4:1a:0e:de:02:a1: ec:6d:ad:4a:7c:1a:72:11:10:00:3c:f4:8d:a8:63:e3:ff:17: b5:1b:ab:9c:55:43:99:30:6d:b3:b5:69:ed:08:c5:80:e8:02: 8d:73:bd:7b:04:3c:cb:0e:3c:08:64:a3:a0:4b:bc:2f:79:7a: 2e:08:06:0e:86:1f:b0:ea:b0:cb:9e:cb:9b:b2:3b:b2:59:9b: 3f:4d:73:55:12:e6:fb:0e:d7:4e:3e:59:17:c6:70:b4:62:98: 72:ad:0b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUwODIyMTkwNjU5WhcNMjUwODI5MTkwNjU5WjAYMRYwFAYD VQQDEw02OGE4YmZkMy02ZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZ0rQZYNoF1wNEKDE5ZSEIthF6s+Y2uVKeOOS2nDwreSysRGTEgQR//y3pME TtulmzJ/1/8fofdz0gWoX/ysFwzfJw08KZPZNlnR7JTw8W1TD+bCyJGvRd3//I8d cucfPee6Q3lhgApBwgcaKlBvEtHYBgSSis7Je50ebOtI3ZBip4vN/D4g5BB0X9UX g6ySqVbOW6iRoF/ABONBNQtnYFWqy/XR2aSEXpTcrrD/oDJyrH2hgDn50sAS4fv4 +DchPxr4T3VLYuH6CwutbhtI0YhG3jRMghJKT47oWowV2SCqtknQH//cnhW5+SO3 21yQ73GO1a0ounJRpWwl+MK4nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhIWivf ZMR+EpYpATBjy6IetFk9MB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKPn5pDerbW7Yw1YBziDPGXkVn3emAm+TGFCjuy4f1BcQTP4dLWbwN sZr8/s/Es1FMNKzPfdb0rTQtS8+yXf2FboCDcig9c70kLO3Jtl9IcD9JiPHfSGFj BmOAMXBVqcC7AbIlcmEYvgOu0Vw1vsQg8wd6wdBdDXaxepEmXSwCcRWVJMno3c1Y JkuhWDmipya7ODPTHBviv0ONpF/UGg7eAqHsba1KfBpyERAAPPSNqGPj/xe1G6uc VUOZMG2ztWntCMWA6AKNc717BDzLDjwIZKOgS7wveXouCAYOhh+w6rDLnsubsjuy WZs/TXNVEub7DtdOPlkXxnC0YphyrQtV -----END CERTIFICATE-----Generated at Sun Aug 24 00:56:06 2025 by rpki-client