$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: ZNbg/ceuVGk0DPzT6hxHXr8s1lzYnFoKJ7TtIdjGwyw= Subject key identifier: 98:00:1B:C6:7E:C7:FB:9C:FC:E1:7D:E9:80:AF:EE:26:43:91:F0:58 Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 04 Signing time: Sat 05 Jul 2025 08:32:11 +0000 Manifest this update: Sat 05 Jul 2025 08:32:11 +0000 Manifest next update: Sat 12 Jul 2025 08:32:11 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: DiX8HLAScAoyr+z9sasuxziWs/VZQr0BeoszXAeJuYc=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: Ntdzzur1e7UcFcIFXVyf4NefmktAA4cSP3KFPUhWals=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Jul 2025 08:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Jul 5 08:32:11 2025 GMT Not After : Jul 12 08:32:11 2025 GMT Subject: CN=6868e30b-c6e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:38:02:5c:64:63:8f:41:bf:6f:e0:1e:b7:5d: c4:9e:3d:22:04:b3:58:ea:d6:0e:b0:0d:3a:b2:13: 80:32:d1:8e:a3:b0:23:65:ad:0a:4e:96:5c:d5:6a: 6b:32:20:94:ad:ea:00:4f:1c:da:3d:c4:32:6b:8c: 51:58:79:82:9a:48:3a:32:4d:c9:63:51:a4:e4:d0: f3:f5:20:ef:d9:35:24:b0:df:23:d6:bb:39:8d:ba: d2:87:c7:e9:31:2c:c8:45:fc:b1:e9:6d:8c:fd:6c: 52:97:00:88:11:98:eb:e2:e9:52:cb:ba:b4:00:18: 80:06:14:16:b9:b4:d1:e4:ae:be:f3:17:7c:b1:70: d1:05:ed:a8:41:d1:8a:dc:89:12:c3:06:6f:a1:82: 82:97:00:08:12:9b:82:37:ce:15:2b:02:68:c3:17: a6:a4:95:6c:a1:18:39:a3:8d:b1:5e:8e:9f:af:f7: 2a:45:d0:4b:f1:82:d0:3d:7b:48:8d:b9:12:44:a6: 25:3d:b6:de:c2:ab:73:31:55:02:71:a0:61:b9:2e: 17:18:4e:23:a9:1b:18:84:1c:a5:29:dc:5f:7c:9a: 99:38:d6:9e:75:26:31:d9:63:ff:9d:71:43:de:e6: 15:dd:e2:b9:9a:ce:50:3c:ee:bc:57:cf:de:b9:7b: ea:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:00:1B:C6:7E:C7:FB:9C:FC:E1:7D:E9:80:AF:EE:26:43:91:F0:58 X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:00:84:2c:81:6f:72:78:7c:a1:81:4d:64:cd:21:12:5e:ec: 5f:c5:d4:40:18:4d:26:64:f5:85:03:e1:4c:77:cb:0a:b7:f9: fd:33:8d:93:46:d3:29:1a:ad:0b:fd:1b:9c:84:c3:ce:cf:ae: 62:f0:66:a0:dc:c3:af:09:13:eb:d1:f6:22:ab:34:8b:e1:d7: b7:e6:d7:40:e6:c4:88:5a:61:c7:8d:1e:9b:a4:7d:ba:ff:71: 91:a9:61:3a:c0:98:42:06:14:f7:bf:f6:0b:4f:e1:e2:ed:d5: af:43:4c:cd:55:00:08:04:f0:6b:06:61:4c:e9:13:67:32:6d: e1:c2:ae:81:28:08:bc:c1:73:7f:7a:ab:15:ed:d7:56:b8:28: 75:0c:81:61:ac:e9:8b:3f:82:d3:5c:e4:53:82:7f:f5:a6:c0: 71:d0:5a:b7:df:57:b4:1d:b8:53:da:c0:21:e4:33:92:98:3b: 04:41:e9:f4:e9:c6:1f:d3:76:17:41:37:b5:34:2f:0d:95:41: 51:50:d5:ed:79:b6:f0:0e:a3:c2:01:28:db:08:3a:d6:b2:04: 26:02:ef:29:43:59:b9:47:70:ea:4f:38:ac:6a:42:b8:3f:72: f1:fa:b8:6d:cc:cd:90:ab:e2:4c:cd:d6:c2:e0:e8:50:50:18: 27:65:d5:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoM0VDN0IxQTZEQTIxQTFBNzc1ODE1RDFDQkZFNzIzMTRC OEE5NUREOTAeFw0yNTA3MDUwODMyMTFaFw0yNTA3MTIwODMyMTFaMBgxFjAUBgNV BAMTDTY4NjhlMzBiLWM2ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsOAJcZGOPQb9v4B63XcSePSIEs1jq1g6wDTqyE4Ay0Y6jsCNlrQpOllzVamsy IJSt6gBPHNo9xDJrjFFYeYKaSDoyTcljUaTk0PP1IO/ZNSSw3yPWuzmNutKHx+kx LMhF/LHpbYz9bFKXAIgRmOvi6VLLurQAGIAGFBa5tNHkrr7zF3yxcNEF7ahB0Yrc iRLDBm+hgoKXAAgSm4I3zhUrAmjDF6aklWyhGDmjjbFejp+v9ypF0EvxgtA9e0iN uRJEpiU9tt7Cq3MxVQJxoGG5LhcYTiOpGxiEHKUp3F98mpk41p51JjHZY/+dcUPe 5hXd4rmazlA87rxXz965e+rtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmAAbxn7H +5z84X3pgK/uJkOR8FgwHwYDVR0jBBgwFoAUPsexptohoad1gV0cv+cjFLipXdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0NFMEVEQTI2NTcx QTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHNleHB0b2hvYWQxZ1YwY3YtY2pGTGlwWGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0NFMEVEQTI2NTcxQTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2Fk MWdWMGN2LWNqRkxpcFhkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFgAhCyBb3J4fKGBTWTNIRJe7F/F1EAYTSZk9YUD4Ux3ywq3+f0zjZNG 0ykarQv9G5yEw87PrmLwZqDcw68JE+vR9iKrNIvh17fm10DmxIhaYceNHpukfbr/ cZGpYTrAmEIGFPe/9gtP4eLt1a9DTM1VAAgE8GsGYUzpE2cybeHCroEoCLzBc396 qxXt11a4KHUMgWGs6Ys/gtNc5FOCf/WmwHHQWrffV7QduFPawCHkM5KYOwRB6fTp xh/TdhdBN7U0Lw2VQVFQ1e15tvAOo8IBKNsIOtayBCYC7ylDWblHcOpPOKxqQrg/ cvH6uG3MzZCr4kzN1sLg6FBQGCdl1Ts= -----END CERTIFICATE-----Generated at Mon Jul 7 08:57:38 2025 by rpki-client