$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: KDgM8n39amTPonilKX0fWfl6X/yJ2Yfbev9BP6TShWw= Subject key identifier: 7E:BC:5E:94:B5:E8:13:A0:0A:1C:83:4E:6D:5C:8A:61:E2:0B:9A:ED Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 0972 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 096C Signing time: Sat 18 Oct 2025 21:11:19 +0000 Manifest this update: Sat 18 Oct 2025 21:11:19 +0000 Manifest next update: Sat 25 Oct 2025 21:11:19 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: /eJ7m994ij/ZeVifLsy0JUO5GT4CFeH/nxsjH+qsnYk=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2418 (0x972) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Oct 18 21:11:19 2025 GMT Not After : Oct 25 21:11:19 2025 GMT Subject: CN=68f40277-bd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:17:e3:a5:1f:40:9c:39:29:86:94:28:d9:9f: 26:a0:c0:4c:b0:66:6a:1b:04:34:aa:17:85:6b:b9: 3f:a7:1c:91:bd:a4:7b:b1:62:5b:bc:5c:eb:69:3f: 48:ca:67:6c:6c:a3:5b:cb:70:c0:22:df:32:fd:f8: 89:38:6e:e1:12:f6:58:87:f0:ac:81:ed:28:01:cf: ae:6f:ed:50:ab:d4:7e:4c:bb:18:6d:c6:21:0c:50: 4b:07:3f:07:f8:93:22:f6:7c:3a:24:7d:0c:dc:83: 91:95:08:20:9b:45:33:79:52:e4:33:a6:6e:f1:96: c3:29:fe:ae:0b:ce:eb:fe:d9:1c:a1:13:a0:fe:4b: 86:8b:d8:95:7c:56:c6:c7:e2:07:ec:0f:34:06:87: 16:3f:b0:7c:2e:a5:58:b2:ac:9c:97:89:e6:fa:6d: f4:cc:21:4b:3b:c9:df:f5:ad:aa:a7:2c:fd:b0:ef: 12:b8:5a:1d:32:80:da:30:0d:cb:35:57:9f:e1:27: a4:79:b7:3a:38:20:cf:26:3b:b3:b3:c4:bc:c1:89: 87:fa:88:8a:6c:94:12:c1:6c:58:0e:d7:71:c2:3e: 51:4e:0f:d8:aa:fd:75:50:92:21:a1:68:c5:de:4c: a6:9b:6f:08:d9:75:7a:05:3b:47:e9:bc:3a:40:0a: aa:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BC:5E:94:B5:E8:13:A0:0A:1C:83:4E:6D:5C:8A:61:E2:0B:9A:ED X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:40:a4:92:1a:3d:02:72:5c:50:5c:a4:a8:82:70:ba:da:64: 6b:ef:9f:d3:69:bc:8c:0f:08:49:b3:b3:b3:cb:b1:67:a4:b4: 38:2f:0d:ae:fc:a1:d7:4e:ea:30:0a:50:77:ab:41:0f:3f:b8: 99:09:e7:0d:1d:29:ba:43:ef:d9:1b:47:06:6e:1a:9c:21:2e: 86:f2:45:b8:db:72:33:8d:00:f3:22:5d:db:77:6d:56:a0:e1: 92:58:ce:c6:9e:36:a3:87:25:1b:50:a7:76:62:e6:b4:27:79: 22:f0:08:8c:f5:65:7f:37:99:93:a9:1c:df:35:ed:0a:15:b2: 86:33:d5:b6:db:50:a3:65:72:94:70:e7:a5:81:4f:91:fe:9c: 74:82:d3:3e:31:a3:20:80:27:cd:7f:41:64:95:6d:b3:ac:c3: 06:0f:34:3f:53:02:63:94:27:92:62:02:6f:19:7f:dc:e8:a6: d0:9a:c5:7d:82:0d:53:6a:b8:5e:07:58:bc:ec:03:0e:58:c8: df:de:12:2a:53:64:ae:cf:a5:df:9f:99:ca:34:30:4d:b5:ad: b7:92:39:25:32:d6:45:8c:07:37:a5:57:cb:79:4b:fb:53:72: fd:ce:fd:1d:27:e9:e9:8f:2c:4c:7a:ab:83:c7:b5:14:2d:ce: db:7a:d5:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUxMDE4MjExMTE5WhcNMjUxMDI1MjExMTE5WjAYMRYwFAYD VQQDEw02OGY0MDI3Ny1iZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphfjpR9AnDkphpQo2Z8moMBMsGZqGwQ0qheFa7k/pxyRvaR7sWJbvFzraT9I ymdsbKNby3DAIt8y/fiJOG7hEvZYh/Csge0oAc+ub+1Qq9R+TLsYbcYhDFBLBz8H +JMi9nw6JH0M3IORlQggm0UzeVLkM6Zu8ZbDKf6uC87r/tkcoROg/kuGi9iVfFbG x+IH7A80BocWP7B8LqVYsqycl4nm+m30zCFLO8nf9a2qpyz9sO8SuFodMoDaMA3L NVef4Sekebc6OCDPJjuzs8S8wYmH+oiKbJQSwWxYDtdxwj5RTg/Yqv11UJIhoWjF 3kymm28I2XV6BTtH6bw6QAqqbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH68XpS1 6BOgChyDTm1cimHiC5rtMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMQKSSGj0CclxQXKSognC62mRr75/TabyMDwhJs7Ozy7FnpLQ4Lw2u /KHXTuowClB3q0EPP7iZCecNHSm6Q+/ZG0cGbhqcIS6G8kW423IzjQDzIl3bd21W oOGSWM7GnjajhyUbUKd2Yua0J3ki8AiM9WV/N5mTqRzfNe0KFbKGM9W221CjZXKU cOelgU+R/px0gtM+MaMggCfNf0FklW2zrMMGDzQ/UwJjlCeSYgJvGX/c6KbQmsV9 gg1TarheB1i87AMOWMjf3hIqU2Suz6Xfn5nKNDBNta23kjklMtZFjAc3pVfLeUv7 U3L9zv0dJ+npjyxMequDx7UULc7betUi -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:24 2025 by rpki-client