$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: bbpE8X5MEB7sWvwu8UqULOZAONXoYfNBIsGQNrm8JTE= Subject key identifier: A0:BA:2E:67:C5:4F:18:2B:59:BA:8F:9A:D2:C5:3C:77:3E:85:88:4F Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: AF Signing time: Tue 03 Jun 2025 05:48:58 +0000 Manifest this update: Tue 03 Jun 2025 05:48:58 +0000 Manifest next update: Tue 10 Jun 2025 05:48:58 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: 0PS8Wnuem6LXH1N1GAoM2rpsTeUIRZYl1lzmcyvFAKg=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: lY5HgP2b+DiZvOALHw+tr2ZxBjEGaK357GqXMmb0Brk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Jun 3 05:48:58 2025 GMT Not After : Jun 10 05:48:58 2025 GMT Subject: CN=683e8cca-e640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0a:37:ee:b6:45:2e:22:1f:10:15:66:9e:6a: bd:f1:33:69:76:9d:37:cd:9d:33:4f:96:46:65:5e: af:aa:21:35:f2:4f:b5:da:00:5f:30:da:15:56:c3: dc:4b:6b:86:f9:de:3e:18:42:02:5f:d6:c9:20:9d: 10:8f:e7:bf:b1:f2:fc:62:81:7f:62:59:ba:1c:c8: a3:ae:be:2e:7e:8d:9e:3e:15:34:ea:b3:bd:24:cf: 37:d3:34:7b:ef:8a:27:55:e2:4a:2d:76:a9:73:f8: 28:7c:05:86:ce:45:65:c8:6d:eb:43:bf:a7:e6:37: 5d:d8:aa:ba:f5:52:93:27:f9:7d:c6:be:06:a3:2f: 1c:9c:45:a4:3e:9d:61:5e:ad:ea:7b:3f:c9:39:11: d5:6a:be:55:36:90:98:98:63:ce:14:a1:e6:86:36: 24:4f:9d:7c:ca:94:44:e4:d8:21:52:46:12:b3:b2: c7:c6:2e:87:d4:e0:04:a0:5f:57:5f:19:58:65:1e: 90:58:8d:d0:1a:68:80:df:a6:5f:a6:ac:1e:6e:0a: e9:79:f0:dc:d9:d1:6d:cd:ab:e6:de:19:d7:ea:81: 5e:0e:f0:6e:98:f5:82:89:c6:81:92:df:d2:a4:14: 78:79:9f:41:1d:23:c6:e9:e1:68:8a:33:e4:b0:39: 2a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:BA:2E:67:C5:4F:18:2B:59:BA:8F:9A:D2:C5:3C:77:3E:85:88:4F X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8a:16:14:8d:f8:6e:96:84:a2:b7:64:ef:7f:dc:2e:f6:35: 07:00:7b:36:62:7a:2b:b7:46:26:f5:ac:b1:fc:79:a0:e5:be: 16:79:78:e3:6c:cb:4b:5c:27:74:40:42:e2:f4:f1:ee:5f:f4: 86:e7:fb:95:e5:65:8a:88:4e:6e:a6:4f:a3:82:b5:a2:b9:2e: a7:ba:59:fe:6f:56:63:8a:a4:3d:6f:65:1e:43:21:4d:be:3d: fc:cf:96:72:66:65:c4:15:9e:bc:3f:82:f9:65:dd:37:4a:82: b0:ff:c1:91:f1:f1:d4:bc:13:b1:28:c2:e5:5d:75:5d:cb:27: 8b:6a:df:ec:45:e2:ce:c1:2c:c8:fe:d5:bb:7d:83:df:be:97: df:00:a7:2a:15:9d:26:01:c1:4d:89:b0:87:7a:e3:cd:fe:e0: 1f:68:75:7e:98:fd:2b:15:d4:cc:54:ec:b5:a7:c6:37:fa:24: d7:3a:81:04:2b:99:f2:bc:3c:59:8e:bc:3d:99:d7:a4:98:5a: 7f:5e:19:09:97:99:0a:42:c9:be:56:55:a6:15:7a:a8:06:3d: 9f:f4:dc:bf:6c:50:b0:f4:4a:2a:e6:a5:7c:b0:49:13:20:9c: 5b:bb:c3:4a:04:6b:d0:df:9c:f5:28:6c:c0:8a:82:41:0a:bf: 41:f5:f6:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUwNjAzMDU0ODU4WhcNMjUwNjEwMDU0ODU4WjAYMRYwFAYD VQQDEw02ODNlOGNjYS1lNjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0go37rZFLiIfEBVmnmq98TNpdp03zZ0zT5ZGZV6vqiE18k+12gBfMNoVVsPc S2uG+d4+GEICX9bJIJ0Qj+e/sfL8YoF/Ylm6HMijrr4ufo2ePhU06rO9JM830zR7 74onVeJKLXapc/gofAWGzkVlyG3rQ7+n5jdd2Kq69VKTJ/l9xr4Goy8cnEWkPp1h Xq3qez/JORHVar5VNpCYmGPOFKHmhjYkT518ypRE5NghUkYSs7LHxi6H1OAEoF9X XxlYZR6QWI3QGmiA36ZfpqwebgrpefDc2dFtzavm3hnX6oFeDvBumPWCicaBkt/S pBR4eZ9BHSPG6eFoijPksDkqJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKC6LmfF TxgrWbqPmtLFPHc+hYhPMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ihYUjfhuloSit2Tvf9wu9jUHAHs2Ynort0Ym9ayx/Hmg5b4WeXjj bMtLXCd0QELi9PHuX/SG5/uV5WWKiE5upk+jgrWiuS6nuln+b1ZjiqQ9b2UeQyFN vj38z5ZyZmXEFZ68P4L5Zd03SoKw/8GR8fHUvBOxKMLlXXVdyyeLat/sReLOwSzI /tW7fYPfvpffAKcqFZ0mAcFNibCHeuPN/uAfaHV+mP0rFdTMVOy1p8Y3+iTXOoEE K5nyvDxZjrw9mdekmFp/XhkJl5kKQsm+VlWmFXqoBj2f9Ny/bFCw9Eoq5qV8sEkT IJxbu8NKBGvQ35z1KGzAioJBCr9B9fZK -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:54 2025 by rpki-client