
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json)
Hash identifier: UHq4sxjMvUE/uv2HLMbh5m9jXjPrGS3A/ujqcu6nS/M=
Subject key identifier: C7:F8:E8:5C:C1:4F:2B:E7:2C:84:16:CA:D7:1E:03:CE:D5:B8:5C:E3
Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9
Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9
Certificate serial: C6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
Manifest number: C4
Signing time: Fri 17 Jul 2026 08:04:41 +0000
Manifest this update: Fri 17 Jul 2026 08:04:40 +0000
Manifest next update: Fri 24 Jul 2026 08:04:40 +0000
Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: s5Ofd2CS92y4VzyCneCvQY9JxmnNFaFwelCGCCD3nJs=)
2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: GVEpvnEFQk1r8mTWmBDvESje+/1MN9Uk5AtUa2pXkUI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl
rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:04:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198 (0xc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9
Validity
Not Before: Jul 17 08:04:40 2026 GMT
Not After : Jul 24 08:04:40 2026 GMT
Subject: CN=6a59e218-0c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d0:08:fc:9d:63:97:55:1d:cd:c1:e2:61:3e:
8c:a5:26:0e:a4:31:7f:1e:75:62:b6:a2:85:29:50:
ec:67:e6:8a:53:23:14:f8:27:ec:a4:e5:82:bc:c0:
f8:a5:5a:59:75:00:90:92:c5:a0:d1:8a:3f:93:58:
6d:ad:c9:bb:62:2e:75:18:81:39:c9:1c:d3:38:de:
ec:34:c1:78:9b:12:a8:a6:f7:22:5e:5c:0e:3e:24:
2a:f1:68:31:e1:8e:24:29:1a:1f:9a:e9:f9:18:21:
73:90:e7:06:ec:5e:55:98:11:f1:ff:b9:06:82:94:
12:ee:54:5f:84:1f:c9:61:71:06:e1:4d:a7:6d:a4:
01:4e:0f:aa:e5:8e:01:26:60:b4:fe:e7:ba:f8:9d:
ac:c5:e8:b6:00:34:c9:18:8f:fa:00:c4:b1:13:65:
60:7c:29:11:cd:a1:8d:5c:3b:4e:6f:0b:1d:50:ca:
a9:95:5b:da:28:39:7f:aa:6a:58:66:c0:42:25:df:
85:75:74:0c:dd:11:d6:56:ab:37:e2:bc:c1:b2:40:
96:f6:b2:bf:22:55:10:a8:1a:09:0c:97:48:ec:03:
68:66:d2:22:07:7f:ee:49:1c:10:9e:8c:a9:ed:67:
97:e1:f0:fd:c4:e3:ad:bb:11:dc:0c:8f:99:14:92:
50:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F8:E8:5C:C1:4F:2B:E7:2C:84:16:CA:D7:1E:03:CE:D5:B8:5C:E3
X509v3 Authority Key Identifier:
keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5a:fa:69:73:34:c6:34:f8:17:41:ce:5c:83:cc:86:b8:ac:c0:
5c:a4:55:1a:2e:69:50:0e:54:8a:6f:e9:27:94:a8:6a:5b:0f:
b6:df:6f:c7:94:ae:b1:eb:bc:ce:26:5c:62:65:93:ba:3c:ba:
3d:a9:c5:fe:2c:dd:cf:b8:8d:8c:a0:d4:ca:05:f5:20:4c:ef:
e5:4b:39:c9:96:66:c2:8c:c2:df:a3:2d:3b:a7:b4:a2:79:92:
cc:ef:a4:43:6c:32:5e:37:49:7c:86:18:6e:04:16:7f:65:06:
0b:2e:60:dd:fe:f0:37:c4:42:7b:2d:48:2d:63:6f:af:b7:56:
3c:18:c3:4f:63:26:df:25:15:80:61:9e:e5:00:db:02:c7:aa:
7e:2b:46:d5:7f:33:ab:ba:f5:5e:b3:62:e5:3b:45:e5:31:b3:
24:de:7a:10:56:45:8f:e0:22:c5:f9:d9:c5:fb:0d:0f:63:6a:
47:e9:13:8c:3e:80:99:10:0f:7e:ca:02:22:6c:3a:b9:5f:04:
a5:b3:24:f6:4b:54:aa:ef:91:24:9e:70:1f:2a:a6:e9:a1:fe:
06:39:96:69:e5:72:a1:fe:88:4a:0d:b6:98:b0:90:df:a1:15:
ac:b7:fb:a2:f7:aa:40:e9:cd:85:ab:2b:82:fe:8e:a0:34:52:
f4:7e:9f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:11:31 2026 by rpki-client