$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: ma05K3rJMTRdjuD2CJqcPrXhyzGoc1ZnN19GZamU01E= Subject key identifier: A7:2B:7F:A7:A9:03:1F:4B:2E:3F:70:4C:9A:84:F9:C2:87:80:82:05 Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 092A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 0924 Signing time: Fri 30 May 2025 21:02:21 +0000 Manifest this update: Fri 30 May 2025 21:02:20 +0000 Manifest next update: Fri 06 Jun 2025 21:02:20 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: jGAlLMNOyeGzqie82IeSPS7NHOyzLWNxsErrQXnYySY=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2346 (0x92a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: May 30 21:02:20 2025 GMT Not After : Jun 6 21:02:20 2025 GMT Subject: CN=683a1cdd-0091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7d:e4:d4:a7:df:08:a5:ed:50:4e:8e:8a:19: de:e0:98:25:12:3e:99:91:e0:93:02:f8:b0:bf:9e: 83:c9:14:dd:01:44:ac:7d:0e:ad:52:51:01:7e:46: 3c:b1:e8:db:21:e4:a2:a6:fa:5f:47:97:65:20:f3: 81:5d:e1:d2:cd:82:e9:82:a1:23:c7:a8:f5:eb:8b: 77:ce:08:3d:48:9f:27:6b:dd:d2:30:75:e5:87:a7: ec:a8:6e:df:8b:2d:ec:45:13:ad:73:41:f9:be:ab: cb:0f:58:63:bd:02:62:fd:25:63:c1:86:ce:43:aa: 6d:9d:d1:2c:ba:c1:f4:7b:55:ad:4b:38:55:70:d0: 4d:18:b6:89:72:de:61:df:fd:e3:8c:fe:24:91:5f: 67:e3:78:3a:52:14:6c:f9:39:21:de:3c:ab:d1:5b: 12:3e:84:35:08:8c:19:44:ff:70:85:c4:7d:33:89: 67:92:b7:5c:63:57:0e:59:ab:17:3e:cc:74:19:bc: b1:ce:64:41:68:71:bc:52:14:1b:c0:55:13:bd:c7: 87:33:d6:10:5f:7e:57:b1:c5:29:3c:c5:d0:4a:11: 7a:66:98:4d:c5:15:51:06:85:8e:13:f6:fc:35:b2: 9a:03:c1:de:cb:d5:19:19:f2:66:2a:b6:83:34:e7: bc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2B:7F:A7:A9:03:1F:4B:2E:3F:70:4C:9A:84:F9:C2:87:80:82:05 X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c9:87:e5:d3:61:45:f7:9a:a0:33:f9:9b:d0:db:39:b5:2a: f5:6a:09:d0:7c:1a:bb:2b:fc:86:70:7c:ff:d5:66:5c:2d:48: 00:33:1b:5d:4d:f4:2a:15:61:e3:09:0d:a6:72:05:b8:e4:a5: c4:fe:b4:e6:b6:e5:0b:e9:1b:45:dc:c4:a8:9b:8a:33:62:cf: c7:a2:ab:b1:70:3f:14:bd:fd:36:74:ef:3c:c6:f0:7e:ce:8a: bc:c0:87:1a:72:dc:9a:30:8b:cf:66:5e:81:ec:a5:7c:dd:bf: 9c:d5:ae:fd:37:67:b5:4f:53:05:0f:7c:f3:7f:2e:a0:f9:37: 22:e6:99:45:f5:ee:7e:ec:ec:5d:21:7b:cc:db:f5:9c:a5:69: 2a:cf:f2:13:2c:0b:93:66:a6:5d:73:f5:59:82:88:33:5c:7c: f8:8b:57:76:4d:e5:62:74:7e:ce:29:99:4f:53:28:68:c8:78: 7f:7c:80:d5:3a:9f:7e:2a:3e:cb:f0:fb:ae:eb:72:70:5e:46: c4:38:87:18:cb:0f:76:43:1b:a7:dc:4d:45:70:cd:2a:63:47: 86:b5:b4:7f:7d:51:55:80:1e:d1:48:8b:cc:81:22:9b:a4:7a: c4:d9:33:39:49:59:a4:38:c3:90:6d:76:24:6b:ac:88:94:72: 3e:91:6d:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUwNTMwMjEwMjIwWhcNMjUwNjA2MjEwMjIwWjAYMRYwFAYD VQQDEw02ODNhMWNkZC0wMDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmX3k1KffCKXtUE6Oihne4JglEj6ZkeCTAviwv56DyRTdAUSsfQ6tUlEBfkY8 sejbIeSipvpfR5dlIPOBXeHSzYLpgqEjx6j164t3zgg9SJ8na93SMHXlh6fsqG7f iy3sRROtc0H5vqvLD1hjvQJi/SVjwYbOQ6ptndEsusH0e1WtSzhVcNBNGLaJct5h 3/3jjP4kkV9n43g6UhRs+Tkh3jyr0VsSPoQ1CIwZRP9whcR9M4lnkrdcY1cOWasX Psx0GbyxzmRBaHG8UhQbwFUTvceHM9YQX35XscUpPMXQShF6ZphNxRVRBoWOE/b8 NbKaA8Hey9UZGfJmKraDNOe8aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcrf6ep Ax9LLj9wTJqE+cKHgIIFMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBryYfl02FF95qgM/mb0Ns5tSr1agnQfBq7K/yGcHz/1WZcLUgAMxtd TfQqFWHjCQ2mcgW45KXE/rTmtuUL6RtF3MSom4ozYs/HoquxcD8Uvf02dO88xvB+ zoq8wIcactyaMIvPZl6B7KV83b+c1a79N2e1T1MFD3zzfy6g+Tci5plF9e5+7Oxd IXvM2/WcpWkqz/ITLAuTZqZdc/VZgogzXHz4i1d2TeVidH7OKZlPUyhoyHh/fIDV Op9+Kj7L8Puu63JwXkbEOIcYyw92Qxun3E1FcM0qY0eGtbR/fVFVgB7RSIvMgSKb pHrE2TM5SVmkOMOQbXYka6yIlHI+kW2A -----END CERTIFICATE-----Generated at Sat May 31 17:42:44 2025 by rpki-client