$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: I37U2aOsNUyJ4Qkcexkj7VA8UzkCTPNCUbBaZ/q0Uw0= Subject key identifier: 8E:20:54:ED:6C:46:3F:65:54:E4:FF:C5:99:BE:6A:CC:C4:A1:EB:46 Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: BE Signing time: Thu 03 Jul 2025 06:01:25 +0000 Manifest this update: Thu 03 Jul 2025 06:01:24 +0000 Manifest next update: Thu 10 Jul 2025 06:01:24 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: pRyFJhOBE5PBazUZN/Jcy0uTJiPUzPOQZRhsHC861kY=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: lY5HgP2b+DiZvOALHw+tr2ZxBjEGaK357GqXMmb0Brk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Jul 3 06:01:24 2025 GMT Not After : Jul 10 06:01:24 2025 GMT Subject: CN=68661cb5-b4f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:f9:fa:18:1b:95:65:62:1e:95:77:f8:fb:8e: 09:6a:ea:e5:24:cd:af:fb:e8:02:66:be:f0:f1:eb: 41:52:71:83:fd:08:fd:ab:94:10:27:75:65:5b:91: 78:84:ae:33:b4:2a:ca:61:ee:b5:9d:56:64:79:91: d9:c0:b0:78:e2:d0:8e:e8:81:fe:c5:4b:d1:1f:f5: fb:f3:0e:3b:0d:ed:ed:a0:57:65:25:ce:60:ce:d8: fc:33:96:f4:bc:af:60:00:cf:ff:1b:14:c2:59:66: 4d:8b:c7:38:a9:31:0d:e8:fc:8d:71:a2:05:de:13: 4c:96:07:3f:4a:84:f3:de:9d:9d:11:4e:b1:68:29: 93:9e:3c:2f:e3:f4:67:7e:f8:59:38:c4:fa:79:1f: 5b:6d:2f:33:9b:8f:59:88:86:32:dc:aa:d2:b7:e6: 94:2d:91:de:b4:9f:b0:64:46:94:2f:7d:06:e5:66: 1a:12:ba:81:97:7a:63:af:f1:53:fa:48:c4:b8:02: 67:e2:82:61:bd:c9:6c:0d:15:8b:01:36:75:00:09: f1:61:76:e5:94:49:10:4a:d0:6e:11:84:86:25:4c: c8:04:33:16:5c:b7:04:91:5f:ba:08:e1:11:13:31: d6:e1:33:4f:67:d0:ff:a3:7d:8e:31:53:b9:a8:01: 14:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:20:54:ED:6C:46:3F:65:54:E4:FF:C5:99:BE:6A:CC:C4:A1:EB:46 X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:79:39:a7:a0:11:cd:03:6f:b0:2a:aa:f1:94:46:cc:71:65: 0a:37:6c:60:37:9f:56:50:31:8f:a5:94:84:77:ab:f2:21:1f: 8c:e2:ec:65:00:bc:5e:15:ad:3c:55:17:68:32:0f:b8:77:d1: 74:68:99:c6:5d:5f:1e:03:d1:99:44:83:1c:7e:e8:e8:f5:3c: 10:fc:c6:ba:4a:1e:85:39:3d:f8:ca:e9:33:15:5c:0b:fa:e4: d0:dc:e4:dc:79:20:2d:0e:e4:76:db:e9:12:3a:ae:2f:1a:d8: c4:dd:a0:aa:81:c0:ac:78:33:73:5f:35:dd:2c:74:5d:d1:e5: 97:5f:45:0e:6e:82:f8:f8:10:46:0e:8d:18:d7:be:ef:63:1c: 29:9d:12:ac:be:57:74:5b:d2:39:73:e9:f2:2e:3a:4f:ef:ff: 3a:ba:bd:15:06:1c:73:4e:96:58:68:72:31:b9:23:74:6d:76: 36:5a:5a:85:14:47:1c:4d:35:27:81:a1:3a:22:a4:a7:1a:43: 12:55:08:25:e2:6f:1d:da:68:26:09:17:27:af:5d:cd:ba:2d: 4c:7d:a6:ce:c8:da:b2:9a:a2:0f:a6:9b:a3:7b:85:0a:12:d0: 85:66:d7:fa:d5:f5:7e:94:a6:60:ca:aa:67:54:46:d9:94:72: 05:aa:ce:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUwNzAzMDYwMTI0WhcNMjUwNzEwMDYwMTI0WjAYMRYwFAYD VQQDEw02ODY2MWNiNS1iNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Pn6GBuVZWIelXf4+44JaurlJM2v++gCZr7w8etBUnGD/Qj9q5QQJ3VlW5F4 hK4ztCrKYe61nVZkeZHZwLB44tCO6IH+xUvRH/X78w47De3toFdlJc5gztj8M5b0 vK9gAM//GxTCWWZNi8c4qTEN6PyNcaIF3hNMlgc/SoTz3p2dEU6xaCmTnjwv4/Rn fvhZOMT6eR9bbS8zm49ZiIYy3KrSt+aULZHetJ+wZEaUL30G5WYaErqBl3pjr/FT +kjEuAJn4oJhvclsDRWLATZ1AAnxYXbllEkQStBuEYSGJUzIBDMWXLcEkV+6COER EzHW4TNPZ9D/o32OMVO5qAEUMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4gVO1s Rj9lVOT/xZm+aszEoetGMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1eTmnoBHNA2+wKqrxlEbMcWUKN2xgN59WUDGPpZSEd6vyIR+M4uxl ALxeFa08VRdoMg+4d9F0aJnGXV8eA9GZRIMcfujo9TwQ/Ma6Sh6FOT34yukzFVwL +uTQ3OTceSAtDuR22+kSOq4vGtjE3aCqgcCseDNzXzXdLHRd0eWXX0UOboL4+BBG Do0Y177vYxwpnRKsvld0W9I5c+nyLjpP7/86ur0VBhxzTpZYaHIxuSN0bXY2WlqF FEccTTUngaE6IqSnGkMSVQgl4m8d2mgmCRcnr13Nui1MfabOyNqymqIPppuje4UK EtCFZtf61fV+lKZgyqpnVEbZlHIFqs5c -----END CERTIFICATE-----Generated at Thu Jul 3 23:24:38 2025 by rpki-client