$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: 2Pyv5HaoXr2J1DTRo1S9ab0tReEbjDRBnm6WM+4lk5M= Subject key identifier: 48:B4:E0:B4:A7:3E:02:07:E9:E9:65:DB:1A:5E:A9:FE:6C:F6:CF:81 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0B9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B94 Signing time: Tue 12 Aug 2025 19:12:25 +0000 Manifest this update: Tue 12 Aug 2025 19:12:25 +0000 Manifest next update: Tue 19 Aug 2025 19:12:25 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: 4Dt+LVZ4qZ0mnUs0sYm0wLxaDYQ+it9wVRz2dVQ99Lo=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2973 (0xb9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Aug 12 19:12:25 2025 GMT Not After : Aug 19 19:12:25 2025 GMT Subject: CN=689b9219-3316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c0:56:f6:cd:2a:ba:47:e5:60:3b:f8:bf:16: ad:28:a9:0d:ba:db:ed:6a:01:66:e6:8a:3c:a2:c7: c0:06:43:cc:a1:08:dd:d0:fb:ee:ad:55:1b:07:80: ee:7a:19:a1:9e:7b:46:a6:ba:c4:d2:8d:ac:af:be: a8:c2:7f:ed:f4:11:d8:23:a3:35:ba:5c:18:69:76: fc:fd:7f:ac:87:3a:21:43:bb:9d:5e:b2:ec:ff:b3: 56:ae:d7:b0:82:ec:7c:52:5f:b3:ff:d2:aa:2f:f1: 66:bc:ed:ae:cd:b1:ce:62:db:32:8b:5c:d6:67:22: 5a:23:aa:70:7e:ad:58:fc:8b:9e:7e:f6:2a:17:df: 2c:f9:8d:ca:72:fd:d1:2a:e9:62:c0:dd:be:3a:89: 69:a5:37:49:f8:9c:5d:c6:34:65:25:9a:95:75:dd: af:b5:e7:02:4f:ec:d3:4f:50:d5:8a:b7:d3:77:f0: c7:be:51:c9:ee:1b:cb:b4:92:8f:2d:0a:92:cb:a5: 09:1b:57:2f:9f:90:93:c9:90:80:32:3a:7c:86:76: 62:ed:f7:06:58:a0:fd:11:44:99:18:5a:2d:01:b7: 9e:11:0f:8c:9d:80:7a:11:30:52:96:1f:59:79:33: 9b:09:9c:2d:a8:69:26:8e:6e:d0:5b:d5:37:34:32: 51:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B4:E0:B4:A7:3E:02:07:E9:E9:65:DB:1A:5E:A9:FE:6C:F6:CF:81 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ef:09:83:06:6d:3a:86:1f:82:a5:71:7d:54:3a:f1:c5:c2: 2c:a2:38:0a:54:d4:34:d2:38:5a:74:81:f9:db:e3:37:3a:89: cb:55:3e:60:28:da:5c:e4:b4:30:c0:4f:28:bf:5e:d3:aa:93: 69:d5:fe:59:69:1d:58:7e:0d:6e:f0:4d:52:bf:cf:dc:58:d0: 49:a0:73:f3:4d:65:cc:26:2a:df:b8:dc:35:d3:f7:99:af:2c: 21:4e:ca:f6:26:ac:c6:e2:ae:c9:22:63:1a:4b:92:89:04:1a: 8b:fc:57:1d:fe:c2:d2:92:f9:da:79:1c:84:89:39:8f:e4:9e: 0e:e8:aa:34:fd:df:a9:b7:7b:75:12:36:f3:ac:0f:39:a4:58: bf:bf:b2:6b:07:a7:56:4d:46:09:87:b7:c0:6e:8b:ef:5c:0b: f7:d7:a6:e3:d2:3f:75:40:99:64:b8:a0:d0:c3:58:5b:fd:78: 12:57:95:3c:48:6a:00:15:70:3d:27:92:96:25:75:58:24:67: 91:ac:bb:4a:df:b1:b0:d7:e4:f9:6c:55:65:e9:ac:77:39:b2: 21:0b:24:60:4f:86:56:b5:c4:e6:0a:02:05:ae:5d:3b:31:3e: af:a1:7c:81:f7:0f:c9:c5:eb:29:cc:03:8f:86:7a:db:03:39: a1:15:c6:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUwODEyMTkxMjI1WhcNMjUwODE5MTkxMjI1WjAYMRYwFAYD VQQDEw02ODliOTIxOS0zMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78BW9s0qukflYDv4vxatKKkNutvtagFm5oo8osfABkPMoQjd0PvurVUbB4Du ehmhnntGprrE0o2sr76own/t9BHYI6M1ulwYaXb8/X+shzohQ7udXrLs/7NWrtew gux8Ul+z/9KqL/FmvO2uzbHOYtsyi1zWZyJaI6pwfq1Y/IuefvYqF98s+Y3Kcv3R KuliwN2+OolppTdJ+JxdxjRlJZqVdd2vtecCT+zTT1DVirfTd/DHvlHJ7hvLtJKP LQqSy6UJG1cvn5CTyZCAMjp8hnZi7fcGWKD9EUSZGFotAbeeEQ+MnYB6ETBSlh9Z eTObCZwtqGkmjm7QW9U3NDJRswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEi04LSn PgIH6ell2xpeqf5s9s+BMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA67wmDBm06hh+CpXF9VDrxxcIsojgKVNQ00jhadIH52+M3OonLVT5g KNpc5LQwwE8ov17TqpNp1f5ZaR1Yfg1u8E1Sv8/cWNBJoHPzTWXMJirfuNw10/eZ rywhTsr2JqzG4q7JImMaS5KJBBqL/Fcd/sLSkvnaeRyEiTmP5J4O6Ko0/d+pt3t1 EjbzrA85pFi/v7JrB6dWTUYJh7fAbovvXAv316bj0j91QJlkuKDQw1hb/XgSV5U8 SGoAFXA9J5KWJXVYJGeRrLtK37Gw1+T5bFVl6ax3ObIhCyRgT4ZWtcTmCgIFrl07 MT6voXyB9w/JxespzAOPhnrbAzmhFcZl -----END CERTIFICATE-----Generated at Wed Aug 13 06:01:16 2025 by rpki-client