$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: ee2pg1OZm2IR/0iwe63q0e6/JNRa3/CD6e/qGSYCG50= Subject key identifier: 8E:A8:4E:AD:6D:50:82:9D:3C:E8:CA:DE:98:71:73:D9:57:FA:CA:3C Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 14 Signing time: Tue 05 Aug 2025 08:41:00 +0000 Manifest this update: Tue 05 Aug 2025 08:40:59 +0000 Manifest next update: Tue 12 Aug 2025 08:40:59 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: /aa1BX+Wk9Pu2oxOg7Iobed7OAIGUGvtXfrKAenjpG4=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: Ntdzzur1e7UcFcIFXVyf4NefmktAA4cSP3KFPUhWals=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Aug 5 08:40:59 2025 GMT Not After : Aug 12 08:40:59 2025 GMT Subject: CN=6891c39b-d7ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9a:43:2d:86:bb:29:5c:fa:be:d2:de:03:fe: a6:4e:6e:26:05:59:55:88:bc:ce:dd:8d:d3:ce:89: e5:4c:c4:1c:f5:a8:d7:bc:04:0a:bc:25:76:54:f1: 34:b2:83:52:fc:aa:e5:25:27:7b:68:a3:64:07:e4: 33:48:b6:3f:62:94:9d:53:98:69:d2:88:a3:3e:9c: ac:ef:35:37:48:a6:f5:43:82:0d:52:d1:8a:19:bc: ca:2b:10:f7:4c:c4:a3:4c:ac:8c:5e:3e:33:76:11: b5:fe:c1:5f:6a:b6:e2:8e:3f:c5:5c:4d:23:2a:48: b9:99:c2:4b:05:10:48:16:70:4a:d1:6a:56:1a:be: ed:1b:f7:12:8c:3f:55:ef:28:71:3e:0c:e0:82:f5: 5c:78:62:7f:fb:d7:62:5b:ba:58:1a:24:c1:a3:6f: 46:8b:d6:ab:dc:ba:5f:19:fb:b3:bb:c0:f2:52:c8: 95:44:95:04:f6:4b:9d:ac:69:8b:37:63:7f:b6:72: f5:33:29:f8:18:ae:cd:32:38:8b:36:f6:f3:de:a5: f7:59:aa:54:7e:ab:be:30:d6:a3:eb:a4:70:c9:a2: 28:f5:41:c6:64:d1:29:fe:53:bf:ab:d2:df:16:68: be:93:e6:1d:e9:85:00:80:44:39:27:8f:60:e1:c0: 6f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A8:4E:AD:6D:50:82:9D:3C:E8:CA:DE:98:71:73:D9:57:FA:CA:3C X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:29:04:24:52:57:70:51:1f:87:f6:90:f4:0e:08:64:93:8e: 60:24:96:ae:c2:59:33:14:81:ad:11:0d:e9:cb:36:fa:05:2d: ec:63:ab:e4:83:f4:ef:1e:cd:19:23:94:63:84:6b:95:c7:7f: 0c:40:fb:29:dc:b4:d0:6c:bd:64:8e:35:04:55:95:0f:74:12: ad:8d:0d:ba:71:44:22:31:3f:ba:fd:1c:9e:76:f6:14:c5:f6: 2f:18:dd:a0:50:ca:51:fa:d9:52:a8:5b:38:22:f1:e5:65:5c: 95:93:9c:a2:60:bc:84:59:82:19:84:af:7e:74:6d:af:62:26: 51:86:53:1c:1d:63:d5:0c:38:ff:b8:84:29:91:2a:6b:e7:3a: 98:69:a9:5c:44:41:12:c3:b6:0d:8b:ae:88:fb:61:56:3b:d2: a3:e5:12:90:49:7c:e4:cb:b4:4a:d4:f8:3a:bf:82:34:e4:84: 24:b8:76:69:a4:d1:6f:e8:4a:58:d1:9b:36:7b:c4:ad:76:fe: 9b:2e:cd:ce:4d:9e:e0:5a:02:d3:f8:52:7f:ed:b1:74:b6:49: 10:35:d2:2e:9e:9a:b0:c9:b1:d8:f2:92:6e:22:f2:6e:8a:3d: 11:73:2a:b2:d2:7e:ba:28:fb:ad:aa:d0:0d:30:d8:c5:c0:c8: f4:bb:ca:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoM0VDN0IxQTZEQTIxQTFBNzc1ODE1RDFDQkZFNzIzMTRC OEE5NUREOTAeFw0yNTA4MDUwODQwNTlaFw0yNTA4MTIwODQwNTlaMBgxFjAUBgNV BAMTDTY4OTFjMzliLWQ3ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRmkMthrspXPq+0t4D/qZObiYFWVWIvM7djdPOieVMxBz1qNe8BAq8JXZU8TSy g1L8quUlJ3too2QH5DNItj9ilJ1TmGnSiKM+nKzvNTdIpvVDgg1S0YoZvMorEPdM xKNMrIxePjN2EbX+wV9qtuKOP8VcTSMqSLmZwksFEEgWcErRalYavu0b9xKMP1Xv KHE+DOCC9Vx4Yn/712JbulgaJMGjb0aL1qvcul8Z+7O7wPJSyJVElQT2S52saYs3 Y3+2cvUzKfgYrs0yOIs29vPepfdZqlR+q74w1qPrpHDJoij1QcZk0Sn+U7+r0t8W aL6T5h3phQCARDknj2DhwG85AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjqhOrW1Q gp086MremHFz2Vf6yjwwHwYDVR0jBBgwFoAUPsexptohoad1gV0cv+cjFLipXdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0NFMEVEQTI2NTcx QTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHNleHB0b2hvYWQxZ1YwY3YtY2pGTGlwWGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0NFMEVEQTI2NTcxQTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2Fk MWdWMGN2LWNqRkxpcFhkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUpBCRSV3BRH4f2kPQOCGSTjmAklq7CWTMUga0RDenLNvoFLexjq+SD 9O8ezRkjlGOEa5XHfwxA+ynctNBsvWSONQRVlQ90Eq2NDbpxRCIxP7r9HJ529hTF 9i8Y3aBQylH62VKoWzgi8eVlXJWTnKJgvIRZghmEr350ba9iJlGGUxwdY9UMOP+4 hCmRKmvnOphpqVxEQRLDtg2Lroj7YVY70qPlEpBJfOTLtErU+Dq/gjTkhCS4dmmk 0W/oSljRmzZ7xK12/psuzc5NnuBaAtP4Un/tsXS2SRA10i6emrDJsdjykm4i8m6K PRFzKrLSfroo+62q0A0w2MXAyPS7yuo= -----END CERTIFICATE-----Generated at Thu Aug 7 05:08:56 2025 by rpki-client