$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: kvDdL5tQNBg0lBrIu7wyfWG4PhJQQ4pOOufruxISyzo= Subject key identifier: 53:9B:BA:8E:86:DC:B7:D5:11:4B:89:E2:B3:F4:15:99:13:41:DC:EE Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: F7 Signing time: Sun 19 Oct 2025 08:08:12 +0000 Manifest this update: Sun 19 Oct 2025 08:08:12 +0000 Manifest next update: Sun 26 Oct 2025 08:08:12 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: CBUTNTMjsRhrAbGHUKIoNQOYCVHdNSFnCF1/LGHoX/k=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: EPqvpxlJgwQtY4nw1cFwMuEYfLLzI7V4J9A9JpW8gvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Oct 19 08:08:12 2025 GMT Not After : Oct 26 08:08:12 2025 GMT Subject: CN=68f49c6c-53e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a1:d7:d9:ad:19:bc:bd:c8:51:20:46:87:26: aa:15:d1:0b:8a:5e:61:42:53:70:6c:80:75:78:66: ba:8c:b2:ca:45:83:0b:13:19:c6:2a:bf:df:df:8a: 58:10:e6:98:fb:ae:28:94:40:51:12:b5:07:0c:4e: 8b:c7:4c:ee:2c:23:f4:32:b8:6d:37:2b:15:e3:bf: c6:35:ac:b8:85:5c:5d:d5:75:10:84:53:d0:c7:e6: dc:fd:45:dc:c7:48:39:9a:b3:dc:8d:90:61:51:c9: c6:e7:b5:61:39:e1:a1:c6:90:76:6c:b5:19:8a:01: 1e:ef:c9:78:ae:2d:4c:a3:68:15:a2:ff:97:8b:45: 7f:cf:57:d0:1e:7a:25:77:ff:2f:29:86:fe:96:08: 20:98:e7:61:7b:b8:b2:7f:de:2e:7e:a1:41:7a:ef: 3b:db:41:99:7a:ba:c8:de:e8:f4:3a:06:55:66:fd: f1:6a:fb:80:36:f3:69:a0:db:14:82:c9:b1:a8:ea: ff:48:ce:55:3c:d5:79:c2:6e:e7:31:6c:8a:52:dc: b0:e9:aa:f6:da:d1:36:bb:60:39:35:ae:61:75:16: e0:56:f5:45:57:ef:49:5d:7d:7e:47:bf:9e:64:0a: de:ad:ae:cc:1c:0d:60:18:11:6e:ba:74:ee:0f:6b: 3e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9B:BA:8E:86:DC:B7:D5:11:4B:89:E2:B3:F4:15:99:13:41:DC:EE X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:0b:ad:57:a6:89:f8:77:59:b6:77:a0:79:db:e7:59:6d:3c: b0:ff:f7:c0:ce:40:10:0f:6b:6a:81:50:ed:6e:1d:e2:e4:fd: 04:9d:d5:b2:04:1a:1e:a8:d1:07:0f:8b:51:6a:1c:73:c8:88: 07:24:33:4d:f2:df:28:fc:85:0a:28:87:9b:74:b4:e6:29:d1: 02:33:82:c5:1f:34:6c:59:f8:d7:71:26:c6:78:21:c1:83:54: 3b:7d:97:29:04:bd:cb:dd:ee:84:87:0d:98:16:5a:31:9e:62: 1f:27:47:98:d4:18:99:f7:85:45:70:bd:c3:16:4f:83:6e:45: 9e:f2:5a:d9:1b:9b:37:69:fc:b2:b9:dd:5b:3f:2a:4f:e4:d9: fb:12:d1:32:67:4d:e0:3a:17:fa:68:7c:5f:8c:02:22:23:4b: 93:3f:eb:db:57:6f:20:67:30:2f:55:e4:3a:42:12:59:8a:3c: ae:3d:5d:8a:d4:1b:ec:eb:bc:33:30:69:ad:e0:73:5e:02:35: 31:3b:d7:6d:fc:a2:7e:af:0e:f6:ca:0a:fa:7d:6d:62:89:fe: ed:79:b1:2c:00:6d:02:9b:76:6d:fe:bd:b7:0d:50:52:af:ea: d2:8f:3a:1e:03:3f:5e:4e:1f:53:65:44:05:63:3e:22:64:ce: 4a:2c:5c:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUxMDE5MDgwODEyWhcNMjUxMDI2MDgwODEyWjAYMRYwFAYD VQQDEw02OGY0OWM2Yy01M2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKHX2a0ZvL3IUSBGhyaqFdELil5hQlNwbIB1eGa6jLLKRYMLExnGKr/f34pY EOaY+64olEBRErUHDE6Lx0zuLCP0MrhtNysV47/GNay4hVxd1XUQhFPQx+bc/UXc x0g5mrPcjZBhUcnG57VhOeGhxpB2bLUZigEe78l4ri1Mo2gVov+Xi0V/z1fQHnol d/8vKYb+lgggmOdhe7iyf94ufqFBeu8720GZerrI3uj0OgZVZv3xavuANvNpoNsU gsmxqOr/SM5VPNV5wm7nMWyKUtyw6ar22tE2u2A5Na5hdRbgVvVFV+9JXX1+R7+e ZArera7MHA1gGBFuunTuD2s+VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFObuo6G 3LfVEUuJ4rP0FZkTQdzuMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQC61Xpon4d1m2d6B52+dZbTyw//fAzkAQD2tqgVDtbh3i5P0EndWy BBoeqNEHD4tRahxzyIgHJDNN8t8o/IUKKIebdLTmKdECM4LFHzRsWfjXcSbGeCHB g1Q7fZcpBL3L3e6Ehw2YFloxnmIfJ0eY1BiZ94VFcL3DFk+DbkWe8lrZG5s3afyy ud1bPypP5Nn7EtEyZ03gOhf6aHxfjAIiI0uTP+vbV28gZzAvVeQ6QhJZijyuPV2K 1Bvs67wzMGmt4HNeAjUxO9dt/KJ+rw72ygr6fW1iif7tebEsAG0Cm3Zt/r23DVBS r+rSjzoeAz9eTh9TZUQFYz4iZM5KLFwk -----END CERTIFICATE-----Generated at Tue Oct 21 05:14:01 2025 by rpki-client