$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: h/Lrp3XCmZWi/x9Co9IthW9Gdro3mJ3JG9LGgm/GdGA= Subject key identifier: 6E:23:C3:1D:D7:40:8D:22:84:16:D1:AF:69:2C:DE:56:5B:65:2E:97 Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 093B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 0935 Signing time: Wed 02 Jul 2025 20:29:40 +0000 Manifest this update: Wed 02 Jul 2025 20:29:39 +0000 Manifest next update: Wed 09 Jul 2025 20:29:39 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: l1HOCfYP9ktaJzk7GEzpIS564EoRDGcafA2FnpYMN2E=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Jul 2 20:29:39 2025 GMT Not After : Jul 9 20:29:39 2025 GMT Subject: CN=686596b4-9f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:94:bd:16:cd:19:ca:57:6e:31:b6:b3:84:ae: e5:23:90:a4:78:3a:dd:03:03:4e:ba:7e:9a:39:8d: 58:fc:fe:b2:70:78:c1:98:2d:2c:43:07:bd:f9:c7: 23:df:bf:42:b6:d4:82:10:20:4f:88:cd:91:20:0c: 4b:90:e7:47:c7:96:a0:95:cf:f9:11:d2:e8:a7:ac: 02:97:2a:89:6f:43:83:ee:f8:e9:2d:fe:f7:38:47: 5d:93:66:25:13:bb:2f:ef:7a:b0:2d:14:3f:db:e3: 38:1d:71:76:1c:e5:3e:89:52:1b:91:b7:12:80:92: c1:ac:4f:3e:9f:10:73:de:44:9c:ad:0b:7b:f3:48: ea:c1:c2:12:34:b3:9a:70:1f:dd:12:62:4a:36:eb: 1c:fe:e1:20:c2:42:4c:22:0e:91:92:21:29:32:50: 04:79:d0:c0:1f:7d:36:1a:0d:88:f8:16:99:b0:8e: 6a:44:fd:62:12:9b:f0:38:52:c2:40:8e:d2:d8:3f: 67:0a:56:f3:a3:91:34:83:ff:fd:57:2c:46:a3:1e: 8d:3d:7c:7c:da:05:a8:6e:e1:c8:26:b7:d5:96:8e: b2:22:72:85:c5:34:71:93:9f:b7:e6:33:02:1b:e6: c5:17:15:b7:73:7c:e7:27:e2:aa:d4:fc:8e:d4:47: a1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:23:C3:1D:D7:40:8D:22:84:16:D1:AF:69:2C:DE:56:5B:65:2E:97 X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:04:fa:f2:a7:0c:22:15:26:1f:8b:a6:6f:9f:30:80:de:76: 0c:96:52:af:7b:31:75:f7:72:f9:e1:dc:73:00:c9:23:7b:83: f1:13:62:63:f3:2b:3c:d3:c3:b6:61:ae:89:79:d9:ed:66:b8: 66:53:7d:cd:01:f4:17:c9:40:ab:bd:35:93:f5:2d:12:e5:ab: 7f:6a:57:96:e2:21:d3:af:9d:3a:32:2c:2c:8d:67:5f:0b:04: 57:83:53:c4:b5:07:e4:94:aa:8d:ac:0c:7d:11:3c:d6:7a:c4: 08:5e:2b:52:1a:e6:ab:44:f7:b2:75:69:b5:c8:aa:cb:34:77: d4:90:40:5a:e8:af:17:19:11:89:3c:45:3e:d7:a3:9b:a3:3e: 71:73:28:f2:31:fe:a4:f3:c3:66:c1:14:c0:21:ae:4f:f9:55: 6a:0b:15:44:15:2c:ff:f2:11:04:7a:e1:5b:fd:55:cc:c4:c6: f2:12:3f:38:17:2c:0e:1c:0a:0e:0b:f5:f1:e7:86:cc:5a:90: 99:ef:d0:41:a2:0c:61:70:bb:46:9c:cf:cc:e4:6b:f4:6d:4a: e5:ac:dc:be:02:f3:3f:d2:75:91:e4:0b:f2:8a:a7:02:1a:cb: c4:c5:64:65:bd:3b:fb:03:98:71:83:1e:ed:83:ba:f0:65:84: f9:35:b9:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUwNzAyMjAyOTM5WhcNMjUwNzA5MjAyOTM5WjAYMRYwFAYD VQQDEw02ODY1OTZiNC05ZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZS9Fs0ZylduMbazhK7lI5CkeDrdAwNOun6aOY1Y/P6ycHjBmC0sQwe9+ccj 379CttSCECBPiM2RIAxLkOdHx5aglc/5EdLop6wClyqJb0OD7vjpLf73OEddk2Yl E7sv73qwLRQ/2+M4HXF2HOU+iVIbkbcSgJLBrE8+nxBz3kScrQt780jqwcISNLOa cB/dEmJKNusc/uEgwkJMIg6RkiEpMlAEedDAH302Gg2I+BaZsI5qRP1iEpvwOFLC QI7S2D9nClbzo5E0g//9VyxGox6NPXx82gWobuHIJrfVlo6yInKFxTRxk5+35jMC G+bFFxW3c3znJ+Kq1PyO1EehuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4jwx3X QI0ihBbRr2ks3lZbZS6XMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXBPrypwwiFSYfi6ZvnzCA3nYMllKvezF193L54dxzAMkje4PxE2Jj 8ys808O2Ya6JedntZrhmU33NAfQXyUCrvTWT9S0S5at/aleW4iHTr506MiwsjWdf CwRXg1PEtQfklKqNrAx9ETzWesQIXitSGuarRPeydWm1yKrLNHfUkEBa6K8XGRGJ PEU+16Oboz5xcyjyMf6k88NmwRTAIa5P+VVqCxVEFSz/8hEEeuFb/VXMxMbyEj84 FywOHAoOC/Xx54bMWpCZ79BBogxhcLtGnM/M5Gv0bUrlrNy+AvM/0nWR5AvyiqcC GsvExWRlvTv7A5hxgx7tg7rwZYT5NbkL -----END CERTIFICATE-----Generated at Thu Jul 3 09:10:22 2025 by rpki-client