$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: 5PTD8okqTc5ZvgwP94zlciIQRqem5MZbtKqlWNipqt0= Subject key identifier: 6B:A7:40:E8:6A:EA:94:19:8A:C3:E2:85:10:B3:2B:2D:34:22:F2:D9 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0B7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B75 Signing time: Thu 12 Jun 2025 18:51:27 +0000 Manifest this update: Thu 12 Jun 2025 18:51:27 +0000 Manifest next update: Thu 19 Jun 2025 18:51:27 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: zYHhSLo1lDlQa8WqlcPZznu3SaiuwviWMxSYI7++bYs=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2942 (0xb7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Jun 12 18:51:27 2025 GMT Not After : Jun 19 18:51:27 2025 GMT Subject: CN=684b21af-eb6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:37:37:07:60:ff:e0:56:74:79:d8:ba:fe:d4: 8e:33:bf:95:56:04:82:e4:3d:ad:e5:bd:66:1f:de: af:96:88:a2:f9:a2:2e:bb:81:ec:75:31:eb:31:87: 97:c4:c5:73:8a:c4:1b:13:a4:20:e1:cb:3b:33:c7: 34:b8:46:9b:d3:67:f6:50:81:db:f3:70:fd:d3:2a: 12:da:e5:46:37:60:35:71:63:f7:77:48:24:a5:32: bb:89:da:56:b5:26:7c:c4:89:50:80:d0:08:d1:8b: ce:d4:9e:a9:21:37:f2:74:34:3a:21:ce:71:5b:08: c4:15:d5:84:60:88:57:b0:77:c1:3f:02:8f:80:b6: 4f:e0:2d:72:4e:c2:9c:fe:1c:5b:29:3d:cd:2b:32: f3:18:53:29:cc:fc:55:5e:c4:55:98:d8:e3:d6:a5: fb:68:9c:f7:f8:3e:7a:57:df:9f:0e:fc:06:cd:12: c7:44:a3:70:ee:25:e8:35:b4:8f:34:04:f8:fa:a5: 0f:ce:de:cf:e9:50:f1:06:11:aa:44:45:10:e3:51: cd:d4:70:78:84:a1:01:2c:87:61:b7:ae:a7:f8:71: 49:5a:71:d8:ac:0e:40:25:f4:31:4c:f1:05:ab:9d: 2a:72:dc:8c:6e:ff:dc:9b:9c:d4:bf:5b:41:a1:47: 5f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A7:40:E8:6A:EA:94:19:8A:C3:E2:85:10:B3:2B:2D:34:22:F2:D9 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:73:41:cb:08:44:4a:8e:f4:6a:f2:1e:95:c8:b2:a0:1c:35: 05:c5:75:e7:31:6b:5b:be:7b:b1:3b:1d:dc:f8:bc:bc:50:aa: 31:15:e9:7c:54:b2:0a:b1:a3:ae:f3:37:cc:e1:b4:63:9a:08: d4:c5:c2:ed:71:7b:01:98:84:65:60:25:2e:a3:2a:ab:59:3c: 77:20:4a:b0:7c:91:83:00:b7:7d:0a:2d:c6:77:87:10:25:06: 84:52:55:73:57:bc:95:79:ca:1e:88:f5:17:a3:6d:19:15:20: a1:2e:57:b8:e7:04:d3:e1:7b:37:37:8d:eb:71:e9:ce:94:fa: 5d:2e:af:99:67:8e:70:0d:dc:9d:a5:a0:4b:2b:1a:a8:c2:45: ac:52:77:05:f3:fe:2a:d7:c2:0f:7e:7d:0e:5e:c9:1d:f9:c6: fb:bd:35:d8:eb:dc:32:98:61:d7:29:82:55:55:5d:e9:ac:0f: 9e:18:1e:f2:78:b2:49:b8:cd:d4:37:e5:d1:50:9b:eb:2c:58: 0b:dc:ac:33:6e:0c:12:c8:ae:6d:5e:55:00:19:d2:b3:08:39: 46:09:b2:48:18:92:2e:70:ac:e5:48:13:c7:ad:48:d7:30:84: 5d:b7:8f:1d:d2:f1:d2:24:67:ee:64:d2:6a:7a:91:ec:e6:2a: 5d:db:1d:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUwNjEyMTg1MTI3WhcNMjUwNjE5MTg1MTI3WjAYMRYwFAYD VQQDEw02ODRiMjFhZi1lYjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTc3B2D/4FZ0edi6/tSOM7+VVgSC5D2t5b1mH96vloii+aIuu4HsdTHrMYeX xMVzisQbE6Qg4cs7M8c0uEab02f2UIHb83D90yoS2uVGN2A1cWP3d0gkpTK7idpW tSZ8xIlQgNAI0YvO1J6pITfydDQ6Ic5xWwjEFdWEYIhXsHfBPwKPgLZP4C1yTsKc /hxbKT3NKzLzGFMpzPxVXsRVmNjj1qX7aJz3+D56V9+fDvwGzRLHRKNw7iXoNbSP NAT4+qUPzt7P6VDxBhGqREUQ41HN1HB4hKEBLIdht66n+HFJWnHYrA5AJfQxTPEF q50qctyMbv/cm5zUv1tBoUdfuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGunQOhq 6pQZisPihRCzKy00IvLZMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJc0HLCERKjvRq8h6VyLKgHDUFxXXnMWtbvnuxOx3c+Ly8UKoxFel8 VLIKsaOu8zfM4bRjmgjUxcLtcXsBmIRlYCUuoyqrWTx3IEqwfJGDALd9Ci3Gd4cQ JQaEUlVzV7yVecoeiPUXo20ZFSChLle45wTT4Xs3N43rcenOlPpdLq+ZZ45wDdyd paBLKxqowkWsUncF8/4q18IPfn0OXskd+cb7vTXY69wymGHXKYJVVV3prA+eGB7y eLJJuM3UN+XRUJvrLFgL3KwzbgwSyK5tXlUAGdKzCDlGCbJIGJIucKzlSBPHrUjX MIRdt48d0vHSJGfuZNJqepHs5ipd2x0J -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:13 2025 by rpki-client