$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft File: DOryj-6BLxzJfxyWvKZFLvcubUw.mft (raw, json) Hash identifier: sFP7LFhJtiuGiealTWx10vDERT+z+zC+To1+TMpuJEM= Subject key identifier: 81:BB:BF:E3:13:A0:0A:AE:F4:C6:B9:35:0E:8E:5E:C6:88:11:87:D9 Authority key identifier: 0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C Certificate issuer: /CN=A91B5732/serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Certificate serial: 0BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft Manifest number: 0BBF Signing time: Tue 04 Nov 2025 19:01:18 +0000 Manifest this update: Tue 04 Nov 2025 19:01:18 +0000 Manifest next update: Tue 11 Nov 2025 19:01:18 +0000 Files and hashes: 1: DOryj-6BLxzJfxyWvKZFLvcubUw.crl (hash: q+54986o2becM8aRKDPmV1HYZdpQ3jACa2CoJizblkQ=) 2: 707BA10E9DB211EAB3A85A19C4F9AE02.roa (hash: GS9APLnsd9N7vlTL0hOq7MNSzNO+PtSv7rLmtH3iPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5732, serialNumber=0CEAF28FEE812F1CC97F1C96BCA6452EF72E6D4C Validity Not Before: Nov 4 19:01:18 2025 GMT Not After : Nov 11 19:01:18 2025 GMT Subject: CN=690a4d7e-5754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6b:d4:f7:ab:ea:1c:3f:63:ea:5a:d8:41:ca: d6:7d:09:ee:77:08:73:83:69:4e:61:75:26:10:8a: ab:c7:4f:f2:2c:07:8b:f0:b5:a4:9c:77:9c:75:dd: a2:4e:85:03:8b:fe:6f:6d:88:0d:dd:c9:39:c9:9b: e8:fd:d9:ab:e5:cb:dd:1d:af:ea:a9:62:f0:ec:19: 1d:36:b9:33:ed:01:6e:35:97:76:16:16:97:da:8e: 55:e6:08:79:4c:b1:3a:71:9a:9c:3a:7a:87:66:37: a7:75:06:a2:f3:04:4f:2a:ea:9b:34:19:37:a5:a1: 86:ba:66:22:13:dd:57:0b:76:b7:40:ed:56:9a:6d: 50:c0:25:fe:78:f2:3f:07:2f:f6:4c:a8:4b:62:be: 9d:c8:71:3c:67:55:3e:2a:47:28:47:ef:03:98:0e: 96:48:b6:0b:6b:fb:b3:45:da:47:b5:52:65:4b:3d: 7d:d5:45:94:d1:fb:32:76:69:40:e5:91:77:34:7c: 47:91:e7:b1:90:4b:4c:82:27:b3:55:c7:c6:54:6d: 26:33:0c:de:47:f8:71:a7:46:11:13:dd:57:b7:6b: 97:c7:08:9f:31:1b:7c:c0:a2:2b:3c:c2:a5:ac:cf: 61:0b:ab:38:4d:25:d6:49:f8:8a:92:84:2a:14:63: 4f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BB:BF:E3:13:A0:0A:AE:F4:C6:B9:35:0E:8E:5E:C6:88:11:87:D9 X509v3 Authority Key Identifier: keyid:0C:EA:F2:8F:EE:81:2F:1C:C9:7F:1C:96:BC:A6:45:2E:F7:2E:6D:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOryj-6BLxzJfxyWvKZFLvcubUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5732/8A7E9E422F2311EA903C1439C4F9AE02/DOryj-6BLxzJfxyWvKZFLvcubUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:09:30:9f:dd:57:33:ef:21:dd:a7:e0:ec:7e:71:28:54:6a: 2f:ab:be:dc:ca:e8:d6:3e:17:de:2c:d0:52:81:fe:08:f7:8d: c5:e2:41:af:b1:3b:37:b5:8b:d5:df:2d:b3:2a:be:7d:1c:2a: 9f:b6:77:7b:83:ad:5f:4f:91:9a:80:23:0a:54:da:ac:b7:92: 02:db:d3:12:72:ae:29:41:b3:31:4a:56:c1:97:0c:62:3a:2f: 4b:be:94:ad:d4:42:4e:6f:a3:4e:43:cd:e4:8c:9d:0c:c6:ce: 50:4a:45:a7:a5:49:4b:b8:07:e1:b4:a5:2c:e5:ad:00:88:33: ae:d2:a0:9e:ae:e2:9a:9d:0b:ac:45:73:7d:13:d7:e9:03:75: 0a:bc:c1:70:d9:3d:5f:b7:0b:97:6b:81:97:34:e0:92:49:d7: 4d:41:c6:64:32:5a:4c:58:d2:0e:8d:f5:79:6b:de:92:75:82: ca:5d:5a:52:8e:19:f9:24:7b:25:59:81:95:8b:31:9d:71:df: f7:ae:c8:01:2e:e5:0a:d9:3d:9e:69:bd:9d:74:e5:9d:83:84: 5d:36:19:ab:f2:c4:85:ba:8d:47:d9:a7:e2:ea:47:a3:30:61: b5:d9:f1:75:de:6c:80:94:e6:c3:6d:bd:e5:1d:cb:5e:1a:8c: dd:6e:09:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU3MzIxMTAvBgNVBAUTKDBDRUFGMjhGRUU4MTJGMUNDOTdGMUM5NkJDQTY0NTJF RjcyRTZENEMwHhcNMjUxMTA0MTkwMTE4WhcNMjUxMTExMTkwMTE4WjAYMRYwFAYD VQQDEw02OTBhNGQ3ZS01NzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mvU96vqHD9j6lrYQcrWfQnudwhzg2lOYXUmEIqrx0/yLAeL8LWknHecdd2i ToUDi/5vbYgN3ck5yZvo/dmr5cvdHa/qqWLw7BkdNrkz7QFuNZd2FhaX2o5V5gh5 TLE6cZqcOnqHZjendQai8wRPKuqbNBk3paGGumYiE91XC3a3QO1Wmm1QwCX+ePI/ By/2TKhLYr6dyHE8Z1U+KkcoR+8DmA6WSLYLa/uzRdpHtVJlSz191UWU0fsydmlA 5ZF3NHxHkeexkEtMgiezVcfGVG0mMwzeR/hxp0YRE91Xt2uXxwifMRt8wKIrPMKl rM9hC6s4TSXWSfiKkoQqFGNPpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIG7v+MT oAqu9Ma5NQ6OXsaIEYfZMB8GA1UdIwQYMBaAFAzq8o/ugS8cyX8clrymRS73Lm1M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTczMi84QTdFOUU0MjJG MjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4ekpmeHlXdktaRkx2Y3Vi VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcnlqLTZCTHh6SmZ4eVd2S1pGTHZjdWJVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTczMi84QTdFOUU0MjJGMjMxMUVBOTAzQzE0MzlDNEY5QUUwMi9ET3J5ai02Qkx4 ekpmeHlXdktaRkx2Y3ViVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4CTCf3Vcz7yHdp+DsfnEoVGovq77cyujWPhfeLNBSgf4I943F4kGv sTs3tYvV3y2zKr59HCqftnd7g61fT5GagCMKVNqst5IC29MScq4pQbMxSlbBlwxi Oi9LvpSt1EJOb6NOQ83kjJ0Mxs5QSkWnpUlLuAfhtKUs5a0AiDOu0qCeruKanQus RXN9E9fpA3UKvMFw2T1ftwuXa4GXNOCSSddNQcZkMlpMWNIOjfV5a96SdYLKXVpS jhn5JHslWYGVizGdcd/3rsgBLuUK2T2eab2ddOWdg4RdNhmr8sSFuo1H2afi6kej MGG12fF13myAlObDbb3lHcteGozdbglQ -----END CERTIFICATE-----Generated at Wed Nov 5 05:30:09 2025 by rpki-client