$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: aNKF76N2gIZ1RbK4VxpluTKm3oTbvKuDyYcHlAUFF+E= Subject key identifier: 13:1F:D3:10:CE:71:A3:17:BD:96:25:23:D1:17:A8:75:A0:EF:A7:47 Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: E1 Signing time: Fri 05 Sep 2025 05:51:19 +0000 Manifest this update: Fri 05 Sep 2025 05:51:19 +0000 Manifest next update: Fri 12 Sep 2025 05:51:19 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: 3zWx2QKM3B/PnGV6dwxDIrmsIRsavHg4hTderFl/BLw=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: EPqvpxlJgwQtY4nw1cFwMuEYfLLzI7V4J9A9JpW8gvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Sep 5 05:51:19 2025 GMT Not After : Sep 12 05:51:19 2025 GMT Subject: CN=68ba7a57-0391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:42:fa:6a:81:66:8a:62:28:8d:7a:3f:4f:bd: 20:91:7a:ca:63:42:bc:3e:5c:2f:3b:61:a0:12:f1: 71:35:42:a7:a5:f4:0e:0a:92:63:f0:b4:ac:7e:46: 3e:1d:4a:19:4c:4e:09:7f:be:85:53:5e:02:58:b5: d1:a9:13:d8:77:0d:90:95:ae:77:8c:e4:31:52:b8: 15:98:62:4d:69:ff:9a:2d:01:f7:a9:f6:61:8f:79: b8:ae:46:70:15:ac:fa:f7:d9:dc:62:90:24:26:83: 7d:3e:d0:8d:74:75:0e:39:a2:be:e5:7f:4e:c2:c6: 33:7e:a2:bd:06:8d:00:13:0b:3b:cb:a9:0f:a4:3c: 2d:5d:c5:35:34:f9:5d:a8:0b:ce:70:43:f4:eb:f9: 8e:3f:a7:43:cf:49:0c:ee:23:cb:3e:7d:b9:1c:56: 33:41:36:a1:6a:54:91:64:17:37:71:42:15:22:9a: 96:fe:f4:fa:0b:18:31:0b:c2:f7:3d:26:43:8a:65: a5:97:4b:ed:45:44:9e:cd:2f:79:73:2a:60:84:53: f7:d4:b4:32:06:08:e0:8d:88:63:2e:9d:ca:a2:42: 41:02:7c:b6:da:94:19:62:4e:1b:9b:91:dc:96:ae: 82:16:6a:6f:cc:aa:c8:7f:68:9f:32:03:f6:f0:70: 18:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1F:D3:10:CE:71:A3:17:BD:96:25:23:D1:17:A8:75:A0:EF:A7:47 X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:4b:0f:cd:34:0b:b0:96:e3:b0:ad:1d:35:f8:e8:5f:c6:07: 25:07:2c:23:5b:bc:f6:74:cb:85:36:aa:36:d3:33:dc:24:0f: e0:fd:0b:80:51:a1:81:2c:6e:c1:cc:75:07:2f:06:a6:d7:c8: 26:97:83:d6:d6:10:7f:65:92:38:be:aa:15:92:d0:9d:e7:41: e5:3d:59:14:75:4b:45:fa:ac:3a:95:76:8e:4c:02:bf:72:6c: d9:a3:14:c1:cd:9f:1b:c7:43:90:7f:29:46:63:f5:26:a6:0b: ab:ec:a3:69:bd:43:57:11:d0:5e:b5:20:a9:55:69:9f:ec:66: 05:c4:ad:b9:7e:24:4c:83:b5:31:41:c6:5c:83:81:ee:83:ee: 18:6a:bf:51:b9:f8:73:09:72:a1:22:7a:c0:d0:60:26:4e:c4: e6:31:e7:8c:a6:83:a0:f9:1f:0e:7a:70:00:51:49:b6:64:f2: 6b:10:fb:a9:db:b0:32:e2:e8:c5:bb:af:b4:63:df:e0:3c:a2: 2c:48:8b:6f:74:0b:c3:91:d7:de:e8:11:4b:d9:16:12:dc:9b: d3:54:4a:73:84:f4:17:92:91:7f:dd:83:d4:4f:90:c4:5d:8e: a5:1c:84:cf:84:c5:0c:dc:d8:35:e9:b3:59:e5:de:14:56:53: 2d:c2:70:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUwOTA1MDU1MTE5WhcNMjUwOTEyMDU1MTE5WjAYMRYwFAYD VQQDEw02OGJhN2E1Ny0wMzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kL6aoFmimIojXo/T70gkXrKY0K8PlwvO2GgEvFxNUKnpfQOCpJj8LSsfkY+ HUoZTE4Jf76FU14CWLXRqRPYdw2Qla53jOQxUrgVmGJNaf+aLQH3qfZhj3m4rkZw Faz699ncYpAkJoN9PtCNdHUOOaK+5X9OwsYzfqK9Bo0AEws7y6kPpDwtXcU1NPld qAvOcEP06/mOP6dDz0kM7iPLPn25HFYzQTahalSRZBc3cUIVIpqW/vT6CxgxC8L3 PSZDimWll0vtRUSezS95cypghFP31LQyBgjgjYhjLp3KokJBAny22pQZYk4bm5Hc lq6CFmpvzKrIf2ifMgP28HAYzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMf0xDO caMXvZYlI9EXqHWg76dHMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtSw/NNAuwluOwrR01+OhfxgclBywjW7z2dMuFNqo20zPcJA/g/QuA UaGBLG7BzHUHLwam18gml4PW1hB/ZZI4vqoVktCd50HlPVkUdUtF+qw6lXaOTAK/ cmzZoxTBzZ8bx0OQfylGY/Umpgur7KNpvUNXEdBetSCpVWmf7GYFxK25fiRMg7Ux QcZcg4Hug+4Yar9RufhzCXKhInrA0GAmTsTmMeeMpoOg+R8OenAAUUm2ZPJrEPup 27Ay4ujFu6+0Y9/gPKIsSItvdAvDkdfe6BFL2RYS3JvTVEpzhPQXkpF/3YPUT5DE XY6lHITPhMUM3Ng16bNZ5d4UVlMtwnDl -----END CERTIFICATE-----Generated at Sat Sep 6 20:58:20 2025 by rpki-client