$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: s0BYUq5YnpUBzje5ziHF8uiKqGVQN7qE52uqT38I5mM= Subject key identifier: A8:CC:AC:A6:8B:E2:00:6B:CF:F4:78:92:8A:5F:13:0B:15:0E:6B:C6 Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: A5 Signing time: Tue 13 May 2025 05:19:56 +0000 Manifest this update: Tue 13 May 2025 05:19:56 +0000 Manifest next update: Tue 20 May 2025 05:19:56 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: kaT0efJgGgZwuXiLO06guzmVh19s/8Uyr4aId1l/7RQ=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: lY5HgP2b+DiZvOALHw+tr2ZxBjEGaK357GqXMmb0Brk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: May 13 05:19:56 2025 GMT Not After : May 20 05:19:56 2025 GMT Subject: CN=6822d67c-f7d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:4f:8f:e2:a1:3d:cf:a6:71:25:37:1a:46: c8:77:30:6a:30:0a:b6:2a:0a:87:57:10:7c:91:28: f8:e5:8c:a2:02:29:dc:f3:5d:3e:58:c0:8a:55:55: e7:3d:da:7a:f3:53:c1:0f:2b:d6:0e:0e:b1:81:b0: 05:06:50:a9:48:05:5f:e5:65:1f:15:26:d7:2c:2b: 42:92:06:56:55:db:af:4a:26:fa:94:26:8e:98:17: 71:dc:c9:40:6f:0b:d0:3d:04:55:ac:e7:42:ac:44: 1d:d2:46:61:61:65:d8:b2:cf:a3:13:60:98:35:84: 7a:9e:e1:f7:42:25:c0:d5:48:84:e1:f4:a7:5b:91: 22:05:cc:bd:65:99:b8:bf:ac:49:4e:0d:a2:af:ea: 4d:de:f3:15:4c:74:17:86:10:67:0b:d6:78:31:c6: a5:20:54:3c:9c:84:ac:b7:ac:ca:58:04:21:f5:37: b2:2a:5a:d3:c8:47:de:b3:74:62:f4:5e:86:87:fa: ae:1b:a6:89:19:a7:f8:71:f3:fa:7c:03:03:3b:88: fe:f5:2a:63:04:4f:34:fd:92:db:75:fd:38:9a:31: 94:34:2b:ab:70:b3:33:90:77:82:d6:83:e9:fc:33: 36:1b:fb:87:85:4c:ae:d3:ae:24:4d:1b:5f:f7:58: 05:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CC:AC:A6:8B:E2:00:6B:CF:F4:78:92:8A:5F:13:0B:15:0E:6B:C6 X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:3d:a5:17:bb:a6:d9:78:46:a6:0d:3a:68:59:dd:2f:70:71: 9c:5c:23:da:26:99:b7:47:95:91:b0:89:e0:f6:80:93:21:fc: 5d:b0:cd:ac:f3:cd:a5:c1:38:75:a1:7b:bb:c6:c4:c1:a6:8a: 5e:82:34:5e:fa:05:00:d8:e4:e5:df:40:d3:a7:f9:22:0a:d4: 18:33:c8:b6:a9:35:a8:54:0e:a4:9b:42:13:e8:20:87:b3:f2: b5:7b:1a:30:e9:11:23:45:72:e0:01:73:e2:36:b4:e7:c8:2d: 58:1a:8f:a7:e3:eb:e5:19:fb:2e:5a:fe:e9:d7:8d:3d:0b:69: 13:36:a7:e1:86:dc:10:4a:25:8b:03:0e:93:60:05:6e:c8:d5: 13:88:96:b4:fe:49:bb:65:54:56:82:ee:22:6c:59:fe:42:99: e3:5f:46:9a:5a:7d:8e:50:e1:33:ae:8e:c0:4b:b6:1f:70:80: 55:8a:56:bb:90:3c:f1:e2:0b:f0:e7:27:aa:75:6a:2f:f8:ca: d2:6c:18:64:18:70:f9:ca:8c:ff:79:f2:36:96:97:0f:da:1b: 85:bb:03:4e:b7:94:92:34:be:fe:1d:f1:ec:95:1e:4c:19:dc: b6:c7:ed:1e:ef:6c:e6:7e:48:93:2d:aa:d3:60:b6:68:37:67: c5:1f:b5:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUwNTEzMDUxOTU2WhcNMjUwNTIwMDUxOTU2WjAYMRYwFAYD VQQDEw02ODIyZDY3Yy1mN2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzApPj+KhPc+mcSU3GkbIdzBqMAq2KgqHVxB8kSj45YyiAinc810+WMCKVVXn Pdp681PBDyvWDg6xgbAFBlCpSAVf5WUfFSbXLCtCkgZWVduvSib6lCaOmBdx3MlA bwvQPQRVrOdCrEQd0kZhYWXYss+jE2CYNYR6nuH3QiXA1UiE4fSnW5EiBcy9ZZm4 v6xJTg2ir+pN3vMVTHQXhhBnC9Z4McalIFQ8nISst6zKWAQh9TeyKlrTyEfes3Ri 9F6Gh/quG6aJGaf4cfP6fAMDO4j+9SpjBE80/ZLbdf04mjGUNCurcLMzkHeC1oPp /DM2G/uHhUyu064kTRtf91gFPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjMrKaL 4gBrz/R4kopfEwsVDmvGMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6PaUXu6bZeEamDTpoWd0vcHGcXCPaJpm3R5WRsIng9oCTIfxdsM2s 882lwTh1oXu7xsTBpopegjRe+gUA2OTl30DTp/kiCtQYM8i2qTWoVA6km0IT6CCH s/K1exow6REjRXLgAXPiNrTnyC1YGo+n4+vlGfsuWv7p1409C2kTNqfhhtwQSiWL Aw6TYAVuyNUTiJa0/km7ZVRWgu4ibFn+QpnjX0aaWn2OUOEzro7AS7YfcIBVila7 kDzx4gvw5yeqdWov+MrSbBhkGHD5yoz/efI2lpcP2huFuwNOt5SSNL7+HfHslR5M Gdy2x+0e72zmfkiTLarTYLZoN2fFH7UR -----END CERTIFICATE-----Generated at Tue May 13 08:23:45 2025 by rpki-client