$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: CfAkJJNqM1M7DFDZkjqGwhiExHTzVS8tazdggNNqzw8= Subject key identifier: C1:C8:58:3D:43:A5:9F:DE:85:47:69:96:A9:A5:A7:25:1C:28:D2:FF Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 0955 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 094F Signing time: Fri 22 Aug 2025 20:19:14 +0000 Manifest this update: Fri 22 Aug 2025 20:19:14 +0000 Manifest next update: Fri 29 Aug 2025 20:19:14 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: eews9G8PfPZk8jhVjaA307HxiWlGKmB2diSAdAHlCso=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2389 (0x955) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Aug 22 20:19:14 2025 GMT Not After : Aug 29 20:19:14 2025 GMT Subject: CN=68a8d0c2-d94b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:c4:fc:1e:63:8a:58:9a:fd:fe:18:63:98: 4b:a5:94:42:c0:8a:e8:da:95:83:d6:f6:92:dd:b0: fb:b4:16:d0:40:40:21:37:89:c7:58:90:9d:d4:e3: 9d:62:c4:af:16:87:0b:b2:c1:c3:5f:7e:90:84:08: 19:fd:53:8b:ec:b0:8a:87:f0:cf:50:59:e5:d9:79: d9:fd:4d:de:24:c5:6e:50:43:c4:04:19:a5:6b:99: 1d:13:ef:e6:8f:20:06:c8:3a:cd:0b:89:6a:a6:06: ea:e9:29:8a:d9:17:d2:47:66:8c:b6:50:2f:89:d0: f6:dc:05:75:b8:60:f2:89:44:53:86:58:35:55:41: 26:37:8a:b4:9c:73:e2:bc:0e:40:a5:09:c5:6e:d6: 08:cf:c2:55:23:f6:71:e7:a7:fa:9d:3d:cc:03:b9: 4b:f5:fc:d4:93:05:51:9e:fe:b8:f8:40:1a:b7:95: e2:25:0e:a5:8b:4f:c8:dd:d0:24:b5:7b:54:bb:11: 3e:5d:f3:1a:9d:d3:5f:d3:57:9d:2d:71:9a:66:e8: 7d:59:47:10:1b:3f:e8:73:ec:72:13:cc:44:89:01: b5:ef:de:77:21:27:df:f4:6c:1f:31:86:36:78:45: f5:54:d9:b6:27:84:f7:df:79:ad:65:18:91:cf:ad: 49:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C8:58:3D:43:A5:9F:DE:85:47:69:96:A9:A5:A7:25:1C:28:D2:FF X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:12:6d:d1:e2:52:b1:73:fe:94:8b:f6:76:d8:f2:f6:61:47: a6:7f:28:3a:e7:2e:d6:bd:7d:e5:cd:c2:33:98:ea:f2:43:ee: db:6d:01:71:a6:2b:a1:0e:e5:c6:31:01:bd:55:e7:bf:e7:b9: 92:d2:7f:6a:c8:77:4b:71:bd:de:a9:6d:db:2d:51:f6:7e:a4: c3:3d:62:36:8f:d6:77:6d:04:14:d7:d0:79:8b:f2:96:1d:48: f0:7a:12:72:02:a2:ab:c6:46:fc:2b:4f:6c:89:0a:22:e4:61: f5:8e:ff:1d:57:93:1d:1c:c5:33:66:9e:e7:1b:21:44:50:01: 9b:b3:b1:fb:7f:56:49:33:21:d0:8f:4e:1d:81:49:23:20:8e: ee:20:c8:dc:8c:ff:17:79:55:91:79:e5:d5:1f:90:ac:31:90: 9d:ba:ee:52:d3:e1:e5:4f:0a:d7:10:ee:af:46:fb:b4:7f:57: b2:f9:e3:3e:6e:6d:25:99:23:22:8e:4c:94:b6:43:58:a4:d4: c9:41:3a:92:3b:c9:8a:86:93:02:6b:8c:d8:7e:e8:7e:be:dd: 4d:e6:fb:f0:6b:6b:5f:0e:f0:84:62:f5:1a:2b:ed:5b:b8:67: 0e:d8:e1:91:65:92:56:99:d2:88:b8:54:4c:1f:7c:aa:9c:8e: 1c:ab:f5:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUwODIyMjAxOTE0WhcNMjUwODI5MjAxOTE0WjAYMRYwFAYD VQQDEw02OGE4ZDBjMi1kOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOnE/B5jilia/f4YY5hLpZRCwIro2pWD1vaS3bD7tBbQQEAhN4nHWJCd1OOd YsSvFocLssHDX36QhAgZ/VOL7LCKh/DPUFnl2XnZ/U3eJMVuUEPEBBmla5kdE+/m jyAGyDrNC4lqpgbq6SmK2RfSR2aMtlAvidD23AV1uGDyiURThlg1VUEmN4q0nHPi vA5ApQnFbtYIz8JVI/Zx56f6nT3MA7lL9fzUkwVRnv64+EAat5XiJQ6li0/I3dAk tXtUuxE+XfMandNf01edLXGaZuh9WUcQGz/oc+xyE8xEiQG17953ISff9GwfMYY2 eEX1VNm2J4T333mtZRiRz61JowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHIWD1D pZ/ehUdplqmlpyUcKNL/MB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNEm3R4lKxc/6Ui/Z22PL2YUemfyg65y7WvX3lzcIzmOryQ+7bbQFx piuhDuXGMQG9Vee/57mS0n9qyHdLcb3eqW3bLVH2fqTDPWI2j9Z3bQQU19B5i/KW HUjwehJyAqKrxkb8K09siQoi5GH1jv8dV5MdHMUzZp7nGyFEUAGbs7H7f1ZJMyHQ j04dgUkjII7uIMjcjP8XeVWReeXVH5CsMZCduu5S0+HlTwrXEO6vRvu0f1ey+eM+ bm0lmSMijkyUtkNYpNTJQTqSO8mKhpMCa4zYfuh+vt1N5vvwa2tfDvCEYvUaK+1b uGcO2OGRZZJWmdKIuFRMH3yqnI4cq/VZ -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:42 2025 by rpki-client