$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: tbNIgeKpRAS4u12+Iiwwwm4Do7r8HSQeGAaleY3qx68= Subject key identifier: FC:58:51:3A:17:E9:12:D1:A0:D2:D0:E0:40:B5:CB:FD:78:D9:DB:E9 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0B77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0B6E Signing time: Fri 30 May 2025 19:15:31 +0000 Manifest this update: Fri 30 May 2025 19:15:30 +0000 Manifest next update: Fri 06 Jun 2025 19:15:30 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: vmhgEYx02V1kqPvfdJ4/5/mElNas/mAxb6zvQ9MtOM4=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:15:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2935 (0xb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: May 30 19:15:30 2025 GMT Not After : Jun 6 19:15:30 2025 GMT Subject: CN=683a03d3-4240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:29:f9:fb:c9:0b:7e:44:57:2b:6c:0b:d9:7a: de:ed:88:4f:2f:fb:f0:38:05:63:67:5d:8f:b0:15: 5f:48:8a:ca:e2:86:9c:79:fd:65:3d:a3:18:b8:f4: 91:63:43:95:ba:5e:0a:84:83:d1:56:b6:41:91:e2: b7:82:4d:e3:52:06:4d:c9:55:2f:48:47:80:15:18: 63:ef:bf:13:0d:fa:f5:3d:39:6a:b7:1a:7f:7d:64: d4:e9:94:4e:09:f7:7c:39:ae:a3:83:24:26:22:85: a8:45:d0:32:ce:95:27:b8:df:be:97:b5:78:56:93: 0a:4b:e4:e5:99:ed:cd:44:54:d9:13:81:46:af:21: e9:76:75:b9:d9:05:10:70:67:95:77:24:63:07:71: da:52:7c:16:a1:1a:f1:7d:18:9a:1e:bf:e1:4e:b2: 3d:50:be:1f:86:88:be:a6:fb:6c:e3:41:29:31:58: 97:62:78:d4:09:eb:01:16:31:9e:ae:4d:5a:80:77: b0:e1:9d:0d:7a:5b:d9:72:f9:4d:53:b7:8b:30:c7: 99:3e:da:39:55:4b:8e:a7:26:97:4d:f9:ad:70:3b: 73:df:40:ca:4b:6c:2e:f7:22:6a:41:cb:e4:1e:2f: 45:48:7f:cd:b9:8b:7a:4d:5a:a0:48:8f:f4:5f:29: e4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:58:51:3A:17:E9:12:D1:A0:D2:D0:E0:40:B5:CB:FD:78:D9:DB:E9 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ca:63:5f:e6:52:44:ca:01:64:32:68:8e:a1:8b:e8:2e:c5: ce:cc:a4:c4:01:f9:07:d6:d2:d1:d7:05:3c:0d:ca:a7:5e:f3: 94:78:09:f3:13:f0:0c:56:6e:45:d8:e1:f9:71:59:38:be:b2: 7c:22:8a:7b:05:46:78:f3:d8:b1:d7:00:4a:b1:b9:5b:6f:e7: 75:ac:9f:a9:bf:b6:d1:da:ae:d6:60:b1:90:3f:69:bc:76:42: 7d:c5:6f:6a:93:a8:30:62:12:5a:aa:2f:b0:67:ca:7a:f2:e3: ae:c6:99:1b:97:03:42:fb:3f:f0:35:c8:73:21:77:81:c5:cd: 96:c6:42:da:fa:5e:01:e0:c7:24:81:bd:d7:91:3b:dc:70:9a: a1:85:2e:4a:a9:ba:cc:38:f3:37:6a:ed:85:f0:63:22:f5:d9: 21:c0:04:b3:25:d0:96:ec:91:e9:a4:97:56:f7:9f:a7:67:79: 1d:eb:b2:16:98:49:0d:0f:46:5f:02:bf:b0:b5:1c:3e:ac:3f: 86:7e:86:b4:24:42:12:71:2d:2e:e7:a1:54:a4:13:dd:2a:c5: 92:0b:e8:51:9f:c4:67:d0:a6:08:6d:ae:c1:ae:c2:02:23:22: 1a:da:45:0f:b3:bf:d7:59:36:c0:d1:72:cf:b2:e7:b9:d8:8e: 15:64:a2:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUwNTMwMTkxNTMwWhcNMjUwNjA2MTkxNTMwWjAYMRYwFAYD VQQDEw02ODNhMDNkMy00MjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySn5+8kLfkRXK2wL2Xre7YhPL/vwOAVjZ12PsBVfSIrK4oacef1lPaMYuPSR Y0OVul4KhIPRVrZBkeK3gk3jUgZNyVUvSEeAFRhj778TDfr1PTlqtxp/fWTU6ZRO Cfd8Oa6jgyQmIoWoRdAyzpUnuN++l7V4VpMKS+Tlme3NRFTZE4FGryHpdnW52QUQ cGeVdyRjB3HaUnwWoRrxfRiaHr/hTrI9UL4fhoi+pvts40EpMViXYnjUCesBFjGe rk1agHew4Z0NelvZcvlNU7eLMMeZPto5VUuOpyaXTfmtcDtz30DKS2wu9yJqQcvk Hi9FSH/NuYt6TVqgSI/0XynkxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxYUToX 6RLRoNLQ4EC1y/142dvpMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrymNf5lJEygFkMmiOoYvoLsXOzKTEAfkH1tLR1wU8DcqnXvOUeAnz E/AMVm5F2OH5cVk4vrJ8Iop7BUZ489ix1wBKsblbb+d1rJ+pv7bR2q7WYLGQP2m8 dkJ9xW9qk6gwYhJaqi+wZ8p68uOuxpkblwNC+z/wNchzIXeBxc2WxkLa+l4B4Mck gb3XkTvccJqhhS5KqbrMOPM3au2F8GMi9dkhwASzJdCW7JHppJdW95+nZ3kd67IW mEkND0ZfAr+wtRw+rD+Gfoa0JEIScS0u56FUpBPdKsWSC+hRn8Rn0KYIba7BrsIC IyIa2kUPs7/XWTbA0XLPsue52I4VZKKB -----END CERTIFICATE-----Generated at Sat May 31 17:58:50 2025 by rpki-client