$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: /3XZBOXSLzbk+BOQkEz6M38eumTJKW4OmsAOCnduwX8= Subject key identifier: 18:04:74:38:AC:67:0D:31:2B:30:19:69:93:05:47:23:0B:87:BA:F2 Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: 0148 Signing time: Wed 25 Mar 2026 04:26:02 +0000 Manifest this update: Wed 25 Mar 2026 04:26:01 +0000 Manifest next update: Wed 01 Apr 2026 04:26:01 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: 7DaAPvV21jzxJWow7aC/0bAkUHQ1LZiT0yMrnn1CdNA=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: pj9aUMZT0p0mxgs9aMMBAdtewJzXJebkeL4JCQr84hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Mar 25 04:26:01 2026 GMT Not After : Apr 1 04:26:01 2026 GMT Subject: CN=69c363da-0ec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:96:d7:5c:fd:e4:c9:92:44:73:e8:32:77:7e: 37:11:46:38:ea:17:8d:bc:f1:3d:36:d9:01:1a:3a: 50:12:7e:30:af:a8:7d:f6:3a:94:f4:5f:db:1e:cc: eb:36:18:55:bc:99:c2:05:04:de:e2:b8:54:1e:c8: d0:be:e7:b3:65:cf:81:e3:23:09:e6:f9:36:d7:43: b5:00:5f:e8:ac:7b:9a:fe:66:d2:09:86:9b:65:89: 42:2f:d3:8e:4b:df:f6:b7:58:ab:b8:cf:f5:39:6c: d1:c8:6e:55:5f:6d:c6:89:00:70:03:87:1e:e5:11: a6:56:78:3a:3c:ff:ed:ac:cd:e0:8c:c7:8a:da:8a: 1b:fd:23:25:c7:bf:a9:03:40:fc:d2:c8:70:30:fd: 85:c3:ba:f4:ea:62:f2:77:57:f9:f2:2f:08:20:8b: 1c:21:cd:09:98:54:4b:d0:53:a5:34:41:08:5a:0b: af:4e:70:4e:1f:a4:5e:4a:31:ab:e5:c7:59:d9:95: 44:9b:64:5c:6e:26:e3:7e:e3:df:d7:1d:e3:e1:77: 87:d0:cf:1a:ab:31:3a:22:f8:98:70:01:c2:a8:dc: 7a:72:af:cb:78:30:5d:4c:c5:3f:92:d2:1a:84:d5: c0:ae:6a:59:95:1c:ac:ad:b0:14:ef:d8:d8:60:ae: 0e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:04:74:38:AC:67:0D:31:2B:30:19:69:93:05:47:23:0B:87:BA:F2 X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:9a:a5:bd:f5:8e:7a:bb:d6:4f:9b:dc:c8:65:06:a2:dc:9f: 11:e2:e0:27:63:49:1c:5c:c2:5c:79:ff:6f:c5:f1:6c:36:98: 2d:3f:d3:ef:d9:5d:25:3f:35:ea:3c:6a:0c:ab:b1:dd:98:41: c5:50:eb:a3:8e:2a:bb:13:5e:5a:22:25:71:1d:b7:f4:2c:29: 0c:42:d3:19:e4:2f:49:d1:dd:a3:21:73:c0:35:d0:bd:29:23: 17:ba:22:17:de:85:37:21:01:b4:9f:8f:a2:5d:5a:18:37:7c: 36:b7:da:ed:95:37:78:da:b2:0a:9e:94:5b:4c:dc:64:8f:4d: 73:ae:7c:5c:e3:ea:14:96:3d:4b:ef:4d:6a:eb:85:53:21:59: aa:3e:0f:e5:79:75:18:ef:48:3d:b8:15:01:8c:e5:dd:b2:57: a8:cd:9e:a5:d9:24:33:e2:e1:93:eb:21:34:55:58:3f:54:81: e7:e0:f9:ce:86:fe:1a:bb:f9:eb:ff:41:62:60:29:24:d1:a1: 08:8e:ce:7c:35:b0:d3:0f:61:07:d6:db:d9:e8:1d:b3:23:b5: f7:16:67:a1:0b:2d:70:9e:4a:77:8f:34:20:52:e9:f2:8a:8b: 2c:b1:8f:e6:c5:dc:8f:59:89:b8:27:1c:c3:51:ce:98:20:b6: 11:6a:8b:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjYwMzI1MDQyNjAxWhcNMjYwNDAxMDQyNjAxWjAYMRYwFAYD VQQDEw02OWMzNjNkYS0wZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJbXXP3kyZJEc+gyd343EUY46heNvPE9NtkBGjpQEn4wr6h99jqU9F/bHszr NhhVvJnCBQTe4rhUHsjQvuezZc+B4yMJ5vk210O1AF/orHua/mbSCYabZYlCL9OO S9/2t1iruM/1OWzRyG5VX23GiQBwA4ce5RGmVng6PP/trM3gjMeK2oob/SMlx7+p A0D80shwMP2Fw7r06mLyd1f58i8IIIscIc0JmFRL0FOlNEEIWguvTnBOH6ReSjGr 5cdZ2ZVEm2RcbibjfuPf1x3j4XeH0M8aqzE6IviYcAHCqNx6cq/LeDBdTMU/ktIa hNXArmpZlRysrbAU79jYYK4OcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBgEdDis Zw0xKzAZaZMFRyMLh7ryMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK5qlvfWOervWT5vcyGUGotyfEeLgJ2NJHFzCXHn/b8XxbDaYLT/T79ldJT81 6jxqDKux3ZhBxVDro44quxNeWiIlcR239CwpDELTGeQvSdHdoyFzwDXQvSkjF7oi F96FNyEBtJ+Pol1aGDd8Nrfa7ZU3eNqyCp6UW0zcZI9Nc658XOPqFJY9S+9NauuF UyFZqj4P5Xl1GO9IPbgVAYzl3bJXqM2epdkkM+Lhk+shNFVYP1SB5+D5zob+Grv5 6/9BYmApJNGhCI7OfDWw0w9hB9bb2egdsyO19xZnoQstcJ5Kd480IFLp8oqLLLGP 5sXcj1mJuCccw1HOmCC2EWqLaw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:46:53 2026 by rpki-client