$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: /uV9zSel/LjTAB9jvKsSDHUgWraYj9EIo8W9Y6LGlTk= Subject key identifier: 7C:32:01:02:56:10:1B:49:8F:BE:56:F1:41:A0:19:29:D9:DB:8C:AA Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0B66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B5D Signing time: Thu 24 Apr 2025 18:59:50 +0000 Manifest this update: Thu 24 Apr 2025 18:59:50 +0000 Manifest next update: Thu 01 May 2025 18:59:50 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: ZIgbV6TWxGsOWniUYq5W3FBj5GLDpI13nwUHnpWU8MA=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2918 (0xb66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Apr 24 18:59:50 2025 GMT Not After : May 1 18:59:50 2025 GMT Subject: CN=680a8a26-0a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:ce:ed:fd:8e:ac:3d:7d:76:fe:3b:00:54: f9:d2:aa:96:d3:48:72:cb:f4:98:62:93:6a:f8:43: 9e:70:48:72:32:9d:10:78:53:3b:de:20:71:78:3f: 2d:1e:25:0a:9f:90:01:7f:a6:c2:7c:6f:5c:2f:46: 9a:47:bb:95:b2:1d:9f:21:38:19:02:e0:10:4d:95: 72:0f:7b:db:14:33:18:26:24:cb:a7:d0:be:64:3a: 9b:0f:b1:fe:0f:3a:d3:27:33:e6:c5:9d:27:e4:3b: f4:f2:52:3a:65:7d:f1:9c:9b:49:90:b2:15:c6:2a: b8:1c:3d:93:b7:e2:4e:3f:de:c6:94:e2:f9:f5:a0: ec:81:58:98:ee:d3:b4:31:96:ed:51:c9:98:85:f3: 88:da:68:18:ab:9f:0a:09:fc:7f:2f:cf:9c:22:2b: 1b:23:04:4e:6c:ad:db:10:56:4b:8b:d1:bb:62:63: f4:7a:cc:7a:5d:66:cf:ae:2f:14:e5:82:a3:ae:b6: c9:ff:76:45:b0:f9:ba:41:f9:14:bc:14:42:99:18: 9b:f8:f4:bd:82:29:43:72:f3:a3:42:8c:8d:ed:1d: 36:6f:4e:73:7a:57:3a:0c:98:5c:2a:9a:ae:91:89: 83:0e:0c:fd:de:b1:aa:d2:1d:7e:d9:db:b3:9f:73: 66:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:32:01:02:56:10:1B:49:8F:BE:56:F1:41:A0:19:29:D9:DB:8C:AA X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e4:b0:84:dc:a9:50:53:ae:49:73:53:d5:48:1c:50:e0:c2: ed:87:fb:d9:ec:b4:4e:58:83:11:86:cd:e7:90:01:6e:b9:fe: f3:e3:fc:6d:a9:c9:92:cc:d0:b7:d6:b3:09:fe:b6:6b:62:8a: a2:34:e2:44:20:9d:b1:00:40:b3:cd:39:c0:0e:dc:86:d9:cc: b4:27:61:7f:cc:81:8e:df:e4:d3:37:f5:80:30:41:d3:2c:b4: da:0d:90:7b:ed:ff:b6:59:ed:37:5d:b4:ec:5e:95:0e:17:d8: 07:6a:2f:d5:67:34:b1:7f:92:57:18:f5:52:43:c0:88:88:33: 65:aa:e8:80:9a:10:5e:59:1a:6d:96:25:ce:b3:89:34:ad:ed: 36:b4:26:7b:ba:c5:be:60:0b:25:b6:7b:3e:f1:9e:b0:e9:42: 89:dd:fe:c0:d9:ca:23:2e:43:e1:89:9f:11:4a:a4:f0:5c:1c: d2:b3:66:22:df:81:28:a8:12:6b:fa:fc:c0:6b:fb:19:e6:02: 48:62:3b:80:59:15:ab:6f:ea:90:da:8a:bb:e2:f4:0e:e3:69: d1:50:14:e5:23:98:c5:00:9f:24:7b:5f:d0:0d:34:39:2f:bf: 73:22:2c:f3:35:6a:de:b7:84:69:df:ef:a5:be:da:0c:08:4d: 5b:be:d5:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUwNDI0MTg1OTUwWhcNMjUwNTAxMTg1OTUwWjAYMRYwFAYD VQQDEw02ODBhOGEyNi0wYTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuS7O7f2OrD19dv47AFT50qqW00hyy/SYYpNq+EOecEhyMp0QeFM73iBxeD8t HiUKn5ABf6bCfG9cL0aaR7uVsh2fITgZAuAQTZVyD3vbFDMYJiTLp9C+ZDqbD7H+ DzrTJzPmxZ0n5Dv08lI6ZX3xnJtJkLIVxiq4HD2Tt+JOP97GlOL59aDsgViY7tO0 MZbtUcmYhfOI2mgYq58KCfx/L8+cIisbIwRObK3bEFZLi9G7YmP0esx6XWbPri8U 5YKjrrbJ/3ZFsPm6QfkUvBRCmRib+PS9gilDcvOjQoyN7R02b05zelc6DJhcKpqu kYmDDgz93rGq0h1+2duzn3NmCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwyAQJW EBtJj75W8UGgGSnZ24yqMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP5LCE3KlQU65Jc1PVSBxQ4MLth/vZ7LROWIMRhs3nkAFuuf7z4/xt qcmSzNC31rMJ/rZrYoqiNOJEIJ2xAECzzTnADtyG2cy0J2F/zIGO3+TTN/WAMEHT LLTaDZB77f+2We03XbTsXpUOF9gHai/VZzSxf5JXGPVSQ8CIiDNlquiAmhBeWRpt liXOs4k0re02tCZ7usW+YAsltns+8Z6w6UKJ3f7A2cojLkPhiZ8RSqTwXBzSs2Yi 34EoqBJr+vzAa/sZ5gJIYjuAWRWrb+qQ2oq74vQO42nRUBTlI5jFAJ8ke1/QDTQ5 L79zIizzNWret4Rp3++lvtoMCE1bvtUD -----END CERTIFICATE-----Generated at Sat Apr 26 17:29:57 2025 by rpki-client