$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: 1YMHdCre7ICJuX0oYj5mJjop89Afs0ydrsWhzXmbC+I= Subject key identifier: D6:71:1D:58:DE:16:E2:CF:E1:B4:ED:EE:CF:EE:38:23:EA:39:DD:E1 Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 0956 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 0950 Signing time: Sun 24 Aug 2025 20:12:16 +0000 Manifest this update: Sun 24 Aug 2025 20:12:15 +0000 Manifest next update: Sun 31 Aug 2025 20:12:15 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: JWZ3RsYa4TcPsqCLso+hUuzaRL2M/sJ2OFLpQ6QYaP8=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2390 (0x956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Aug 24 20:12:15 2025 GMT Not After : Aug 31 20:12:15 2025 GMT Subject: CN=68ab7220-6e29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:78:99:ef:43:47:d5:7c:7c:c2:08:98:d9: f2:32:f1:b4:da:54:99:2f:97:c8:42:8c:83:c4:98: 47:1f:85:93:04:81:c2:82:7a:8a:88:a9:b2:89:cd: 45:dc:58:d3:ac:c5:28:00:72:a8:f2:82:45:48:dd: 37:c8:fe:a0:ae:22:c1:42:86:b5:9a:3b:47:a2:55: 91:d0:3b:c3:5c:db:f9:9a:13:3a:36:18:5b:b8:69: 2b:de:5f:4c:e1:4c:56:81:97:75:7f:49:6d:14:63: c3:bd:06:6b:5f:d0:a3:f7:ae:c5:14:16:5f:a2:95: 35:c7:98:05:68:52:29:f6:22:64:b0:fa:0b:0a:e7: f0:28:ef:c2:50:76:68:7c:0e:aa:13:55:5f:b5:a0: 30:99:06:af:af:f1:94:d4:4a:7e:1e:b8:79:5f:25: 25:fc:ec:cc:b2:04:ce:45:52:d0:b6:fa:87:da:f9: 02:f9:d6:e5:33:57:44:44:13:7d:09:c7:cd:a6:f3: 6e:78:23:71:ba:47:b6:a9:3a:d7:c5:85:84:1b:0e: ff:11:b4:a9:32:f5:0e:9c:3b:c4:99:88:ed:4c:65: 63:25:dc:9b:2c:d8:0c:6c:8d:62:9c:79:9e:3c:2b: eb:b4:67:dc:c8:1c:f6:8e:7f:74:0b:7c:92:98:b0: d6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:71:1D:58:DE:16:E2:CF:E1:B4:ED:EE:CF:EE:38:23:EA:39:DD:E1 X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:5a:57:33:cc:c0:51:82:36:cb:44:38:06:14:48:a9:0a:e9: f7:9f:dd:bc:cd:02:bd:1c:92:5a:ed:8b:4a:e7:96:ab:24:95: 6c:75:d0:5d:07:ce:41:cb:09:92:46:fb:36:cb:1a:41:a7:a2: 45:2b:6e:24:40:e4:0a:7c:a4:25:99:44:bc:d3:f0:5f:9c:1d: 21:eb:eb:eb:5f:6d:cc:83:ca:24:dd:6e:f3:33:52:c1:4d:42: 92:6f:53:2a:ef:1c:01:0f:da:25:e5:fe:e7:ad:dc:83:f5:c8: e7:b0:18:87:de:72:9e:5d:40:48:04:36:ca:5e:72:59:bd:d6: bd:3c:76:c3:2d:c5:c3:13:ce:56:18:ee:b8:7a:38:5f:41:d4: 84:18:cc:d3:f3:55:eb:e5:88:4e:fe:7d:4e:5a:f8:0a:ee:47: 3f:28:bd:d6:10:5a:fe:be:76:4f:73:2e:64:bc:83:a8:ba:61: 4c:2d:7d:ec:ea:23:b2:45:50:25:2a:63:37:03:75:4e:dc:83: 36:6a:ab:9b:7e:78:4b:02:90:a3:f0:2d:dc:4f:25:0d:24:e0: 5b:91:95:28:a9:b4:69:5a:ed:fa:ba:41:0c:9d:4c:b8:d5:cb: c1:91:d1:4b:6d:4c:ba:95:31:08:1b:f9:30:c4:97:f8:8f:87: 7d:b1:92:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUwODI0MjAxMjE1WhcNMjUwODMxMjAxMjE1WjAYMRYwFAYD VQQDEw02OGFiNzIyMC02ZTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXx4me9DR9V8fMIImNnyMvG02lSZL5fIQoyDxJhHH4WTBIHCgnqKiKmyic1F 3FjTrMUoAHKo8oJFSN03yP6griLBQoa1mjtHolWR0DvDXNv5mhM6NhhbuGkr3l9M 4UxWgZd1f0ltFGPDvQZrX9Cj967FFBZfopU1x5gFaFIp9iJksPoLCufwKO/CUHZo fA6qE1VftaAwmQavr/GU1Ep+Hrh5XyUl/OzMsgTORVLQtvqH2vkC+dblM1dERBN9 CcfNpvNueCNxuke2qTrXxYWEGw7/EbSpMvUOnDvEmYjtTGVjJdybLNgMbI1inHme PCvrtGfcyBz2jn90C3ySmLDWAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZxHVje FuLP4bTt7s/uOCPqOd3hMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMWlczzMBRgjbLRDgGFEipCun3n928zQK9HJJa7YtK55arJJVsddBd B85BywmSRvs2yxpBp6JFK24kQOQKfKQlmUS80/BfnB0h6+vrX23Mg8ok3W7zM1LB TUKSb1Mq7xwBD9ol5f7nrdyD9cjnsBiH3nKeXUBIBDbKXnJZvda9PHbDLcXDE85W GO64ejhfQdSEGMzT81Xr5YhO/n1OWvgK7kc/KL3WEFr+vnZPcy5kvIOoumFMLX3s 6iOyRVAlKmM3A3VO3IM2aqubfnhLApCj8C3cTyUNJOBbkZUoqbRpWu36ukEMnUy4 1cvBkdFLbUy6lTEIG/kwxJf4j4d9sZLF -----END CERTIFICATE-----Generated at Sun Aug 24 22:21:01 2025 by rpki-client