$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: UtUZP6tk3ZOjV2RCm5UMrEd5V6lkHcLfKAPYItOUrFA= Subject key identifier: 8E:9F:55:69:2C:68:C4:06:C9:90:77:75:35:2D:34:56:17:8C:B6:A6 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B7F Signing time: Wed 02 Jul 2025 19:15:22 +0000 Manifest this update: Wed 02 Jul 2025 19:15:22 +0000 Manifest next update: Wed 09 Jul 2025 19:15:22 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: qJ/mW4NMOzmgpnJB+PvkZsKmCF08kVNGR+fuu6xl7PM=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2952 (0xb88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Jul 2 19:15:22 2025 GMT Not After : Jul 9 19:15:22 2025 GMT Subject: CN=6865854a-19e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6b:fe:ae:e4:90:80:d6:e6:e8:50:54:81:45: d2:69:9f:1b:db:99:47:ca:27:03:78:2c:c6:5b:7d: 8a:2f:30:e5:ec:8f:83:f1:d6:13:92:37:fd:b3:42: cb:a3:2c:85:14:b5:9f:a6:27:82:31:34:d2:f3:99: 13:11:5c:e5:9a:e8:b7:e6:38:f2:44:0a:05:0c:b0: f3:e0:e8:65:86:56:1a:8a:e3:ab:b8:ad:19:d2:26: e3:49:42:72:79:16:7f:b3:4e:83:4e:36:67:d2:e9: 54:ce:4c:0b:0e:4a:9c:93:70:b2:46:d3:1f:51:34: 71:f3:37:7c:9b:ac:2b:82:6f:b5:43:a3:85:68:33: 73:1c:10:4d:1a:8f:d8:49:88:a0:fb:6f:de:6d:1c: 78:ee:07:73:b6:99:5c:d1:ee:8e:69:fc:51:1d:f8: 5a:df:f4:36:40:4b:0e:07:5c:98:94:cf:05:5f:43: e7:51:5b:2c:e9:f5:44:a7:5a:4b:51:3d:98:2a:00: 64:1c:11:d4:6e:aa:1e:1b:3a:28:a6:e8:3b:a8:5c: 57:af:b4:2c:9f:76:18:37:ff:49:ae:95:2f:53:21: 5a:50:8a:d5:7f:11:f4:de:53:87:06:d8:7e:cd:89: eb:e3:a3:5f:48:60:de:36:f2:b9:57:0f:d5:78:64: df:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9F:55:69:2C:68:C4:06:C9:90:77:75:35:2D:34:56:17:8C:B6:A6 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d8:6f:65:ba:8e:af:a6:73:7c:ae:a8:46:b3:f2:67:48:53: 16:47:4f:d0:c2:ce:a5:72:c0:f0:5b:33:e1:75:f2:31:26:0e: 39:8b:21:9a:19:9a:a5:0f:d7:47:f7:bb:a0:5b:d7:fc:83:45: 26:a7:50:e5:2a:ba:40:b5:2b:e3:62:92:a0:2a:87:ba:2b:c0: f0:0b:8b:e0:5f:1b:1a:f4:68:5b:f3:48:cb:8e:0f:fe:44:de: 3c:38:56:00:84:86:12:d4:b1:5a:f9:28:00:02:e1:a9:b2:b1: a3:c8:37:17:ea:93:b2:ae:06:68:f0:c7:e2:f6:2b:10:f9:e8: dd:11:d8:4c:ea:29:2c:c0:eb:39:d3:00:68:b2:0f:08:90:42: 73:e9:fe:99:61:94:4f:85:67:69:14:b2:3f:bb:7d:b4:63:6d: 0b:5c:c2:98:31:dd:f9:4c:a6:17:da:be:05:23:c6:d4:7b:cc: 4f:ae:bc:be:ff:23:36:56:7c:b5:91:80:d3:de:3e:c8:e0:fc: f8:c0:51:21:dc:4c:b0:bf:f5:28:0a:ff:43:f4:f4:96:33:be: d9:f5:70:53:fe:94:b4:4d:7f:05:53:96:1e:bd:50:ab:74:9b: 2d:84:7a:37:cd:39:34:0c:c0:0e:58:2c:00:a2:de:c6:75:80: 02:66:71:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUwNzAyMTkxNTIyWhcNMjUwNzA5MTkxNTIyWjAYMRYwFAYD VQQDEw02ODY1ODU0YS0xOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmv+ruSQgNbm6FBUgUXSaZ8b25lHyicDeCzGW32KLzDl7I+D8dYTkjf9s0LL oyyFFLWfpieCMTTS85kTEVzlmui35jjyRAoFDLDz4OhlhlYaiuOruK0Z0ibjSUJy eRZ/s06DTjZn0ulUzkwLDkqck3CyRtMfUTRx8zd8m6wrgm+1Q6OFaDNzHBBNGo/Y SYig+2/ebRx47gdztplc0e6OafxRHfha3/Q2QEsOB1yYlM8FX0PnUVss6fVEp1pL UT2YKgBkHBHUbqoeGzoopug7qFxXr7Qsn3YYN/9JrpUvUyFaUIrVfxH03lOHBth+ zYnr46NfSGDeNvK5Vw/VeGTfVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6fVWks aMQGyZB3dTUtNFYXjLamMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb2G9luo6vpnN8rqhGs/JnSFMWR0/Qws6lcsDwWzPhdfIxJg45iyGa GZqlD9dH97ugW9f8g0Ump1DlKrpAtSvjYpKgKoe6K8DwC4vgXxsa9Ghb80jLjg/+ RN48OFYAhIYS1LFa+SgAAuGpsrGjyDcX6pOyrgZo8Mfi9isQ+ejdEdhM6ikswOs5 0wBosg8IkEJz6f6ZYZRPhWdpFLI/u320Y20LXMKYMd35TKYX2r4FI8bUe8xPrry+ /yM2Vny1kYDT3j7I4Pz4wFEh3Eywv/UoCv9D9PSWM77Z9XBT/pS0TX8FU5YevVCr dJsthHo3zTk0DMAOWCwAot7GdYACZnGY -----END CERTIFICATE-----Generated at Thu Jul 3 12:32:34 2025 by rpki-client