$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: N/lUbSKtUZiV9MiJW+CKf+dTL/VJ0433tu3ZCLRQ+aE= Subject key identifier: C3:DF:46:0C:D1:46:2C:85:EE:A9:C0:76:F7:8B:B9:84:8C:1A:B6:9D Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: FE Signing time: Mon 03 Nov 2025 05:05:46 +0000 Manifest this update: Mon 03 Nov 2025 05:05:46 +0000 Manifest next update: Mon 10 Nov 2025 05:05:46 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: Cn6i556eHi4d2N3pgwm17AkNx6XNPe+F7eiqqL5xxss=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: EPqvpxlJgwQtY4nw1cFwMuEYfLLzI7V4J9A9JpW8gvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Nov 3 05:05:46 2025 GMT Not After : Nov 10 05:05:46 2025 GMT Subject: CN=6908382a-b402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9f:fb:74:cc:1b:71:8a:a0:38:e3:2a:a6:69: c7:89:d3:78:49:46:00:af:b2:36:56:81:bb:d9:f2: cb:88:67:bb:af:93:6f:8d:cb:1f:46:33:4d:0a:8c: 01:fe:58:91:cf:73:56:e6:0b:91:78:a2:ae:ef:46: 5b:11:d9:be:15:8d:6d:40:e1:66:63:46:a9:e0:cf: db:eb:d9:e7:54:a6:ac:a3:52:f5:2d:3a:b0:dd:a8: db:76:50:67:f6:5e:45:73:12:25:22:b2:ce:f8:b7: df:79:d5:62:65:4b:be:16:40:66:cc:e8:9c:b2:01: 06:53:26:e1:a0:4c:f8:10:de:81:ee:21:92:7c:f3: 22:39:09:08:2a:d6:9a:78:65:73:9e:2e:fa:81:fb: 32:ff:4f:76:04:ab:62:d1:bd:3c:78:61:23:61:f8: 19:14:33:c8:cc:e7:e2:ad:b2:b7:c4:17:ed:e8:43: b0:9a:61:12:68:2d:0f:c4:3a:92:4d:48:bc:df:d1: ed:ee:6d:09:b3:f8:f2:21:d7:b4:f2:5d:37:05:32: c8:8f:c4:3a:8d:13:cd:b4:4b:40:87:b3:85:f6:5c: 8f:3f:81:f3:b3:8c:0d:20:c0:60:7e:b3:56:87:12: 80:9a:2f:6a:5f:70:7d:8e:ec:72:29:b5:73:b3:74: 20:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:DF:46:0C:D1:46:2C:85:EE:A9:C0:76:F7:8B:B9:84:8C:1A:B6:9D X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e3:a4:27:2e:13:3e:f6:ba:0a:91:89:fe:de:01:ee:80:98: 9a:ad:c4:8d:24:e6:a4:df:98:6f:37:11:f2:16:d6:2e:67:21: 70:da:88:39:7f:19:ec:cd:60:2f:ee:ae:c5:fc:67:a4:dd:eb: e9:47:97:12:9d:99:c6:ca:30:9a:24:b3:3e:f5:28:29:64:19: 71:47:00:80:77:1b:c6:7f:88:0f:2b:44:fd:5d:23:55:7a:b0: 9b:7a:f1:5e:2d:0a:bb:96:a3:f5:62:bf:f2:3c:a7:1b:1d:39: 85:d3:65:ea:b3:91:3d:99:32:6e:ba:71:ce:03:52:59:39:0b: 2d:6f:78:d6:23:77:6b:a8:0e:6e:a7:ca:28:84:12:22:80:8b: 92:55:db:3d:4a:57:57:76:86:2a:75:2b:87:9e:98:ba:af:e4: 5c:24:a2:33:09:b7:8b:1d:66:17:d9:1b:61:bb:a9:06:11:08: f8:4f:a2:2e:5d:9f:f3:73:51:97:27:59:4c:aa:43:f4:5d:03: 43:09:7e:d2:13:ea:a9:f7:97:05:cd:d8:25:a7:d3:31:dc:1d: 34:e9:58:75:d2:1b:a8:a4:9f:63:5f:78:1a:5b:ff:61:2c:43: 67:45:ad:d4:dc:0e:a4:5a:af:3b:85:3c:c0:87:06:21:f3:14: 83:eb:65:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUxMTAzMDUwNTQ2WhcNMjUxMTEwMDUwNTQ2WjAYMRYwFAYD VQQDEw02OTA4MzgyYS1iNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvp/7dMwbcYqgOOMqpmnHidN4SUYAr7I2VoG72fLLiGe7r5NvjcsfRjNNCowB /liRz3NW5guReKKu70ZbEdm+FY1tQOFmY0ap4M/b69nnVKaso1L1LTqw3ajbdlBn 9l5FcxIlIrLO+LffedViZUu+FkBmzOicsgEGUybhoEz4EN6B7iGSfPMiOQkIKtaa eGVzni76gfsy/092BKti0b08eGEjYfgZFDPIzOfirbK3xBft6EOwmmESaC0PxDqS TUi839Ht7m0Js/jyIde08l03BTLIj8Q6jRPNtEtAh7OF9lyPP4Hzs4wNIMBgfrNW hxKAmi9qX3B9juxyKbVzs3QgvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPfRgzR RiyF7qnAdveLuYSMGradMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC46QnLhM+9roKkYn+3gHugJiarcSNJOak35hvNxHyFtYuZyFw2og5 fxnszWAv7q7F/Gek3evpR5cSnZnGyjCaJLM+9SgpZBlxRwCAdxvGf4gPK0T9XSNV erCbevFeLQq7lqP1Yr/yPKcbHTmF02Xqs5E9mTJuunHOA1JZOQstb3jWI3drqA5u p8oohBIigIuSVds9SldXdoYqdSuHnpi6r+RcJKIzCbeLHWYX2Rthu6kGEQj4T6Iu XZ/zc1GXJ1lMqkP0XQNDCX7SE+qp95cFzdglp9Mx3B006Vh10huopJ9jX3gaW/9h LENnRa3U3A6kWq87hTzAhwYh8xSD62U9 -----END CERTIFICATE-----Generated at Tue Nov 4 13:18:11 2025 by rpki-client