$ rpki-client -vvf rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft File: Ps7q_orHtLE44oRfeGEtk9XFMMY.mft (raw, json) Hash identifier: 3AElj6RohRMXW71eainzhKnYk8Pl9KPX4czli7Mbuo8= Subject key identifier: 39:62:D1:7A:3E:95:B0:10:19:55:9F:D8:C8:BD:1F:3B:74:87:7E:CA Authority key identifier: 3E:CE:EA:FE:8A:C7:B4:B1:38:E2:84:5F:78:61:2D:93:D5:C5:30:C6 Certificate issuer: /CN=A9186537/serialNumber=3ECEEAFE8AC7B4B138E2845F78612D93D5C530C6 Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft Manifest number: 0A43 Signing time: Wed 02 Jul 2025 19:57:28 +0000 Manifest this update: Wed 02 Jul 2025 19:57:28 +0000 Manifest next update: Wed 09 Jul 2025 19:57:28 +0000 Files and hashes: 1: Ps7q_orHtLE44oRfeGEtk9XFMMY.crl (hash: tXj2oSNNCjBotXWH9yPHvkm1HNvQT/PKzPqsPNhaQBY=) 2: C50E0D60B31F11EF9044054FC4F9AE02.roa (hash: 1XQOV4wSru0rmXvpwZfW5uyJwqkmGZ4/nFxMyl/NDpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.crl rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186537, serialNumber=3ECEEAFE8AC7B4B138E2845F78612D93D5C530C6 Validity Not Before: Jul 2 19:57:28 2025 GMT Not After : Jul 9 19:57:28 2025 GMT Subject: CN=68658f28-7aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:be:ad:6c:b6:18:0d:91:72:98:23:a3:42: f6:e6:98:65:9f:68:e9:3d:4b:77:3c:9b:e5:9c:92: b1:d6:9b:66:b3:60:39:d8:05:f2:4a:7b:4a:47:63: ad:74:d6:21:d7:10:6c:e3:e8:75:33:16:34:62:8b: 72:eb:19:22:ba:9c:c5:1a:d2:ad:52:a0:e8:da:51: 81:83:87:e4:9e:32:7a:04:0f:74:fb:c2:e0:2a:e1: 36:b0:0d:47:c5:e7:93:ba:7c:0c:7c:a2:c6:53:7d: 83:7e:2b:98:b1:34:4a:12:3d:67:56:57:65:03:c1: 06:dc:d3:9b:c8:72:c9:4b:9e:76:19:69:a5:ae:e5: 3f:b1:5a:90:7a:0d:e4:43:33:7b:b1:34:e5:d0:df: b0:97:30:fe:50:ec:8b:3b:88:7c:8d:ce:73:95:2e: 07:7b:fd:68:f3:d0:cd:dd:1a:75:eb:80:8e:08:fd: 51:d2:65:09:65:19:80:44:a0:24:a6:66:9b:b5:f7: 82:64:0c:1e:bb:b7:d1:15:35:84:cd:5a:4b:d7:01: 85:7b:61:c0:7a:91:fa:bd:cf:e0:4b:de:62:10:f1: 14:f4:a7:d5:79:5d:10:b9:cf:32:38:92:d4:5b:8b: 09:ba:5e:c1:4d:35:61:69:f0:29:58:57:b5:0f:73: 6f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:62:D1:7A:3E:95:B0:10:19:55:9F:D8:C8:BD:1F:3B:74:87:7E:CA X509v3 Authority Key Identifier: keyid:3E:CE:EA:FE:8A:C7:B4:B1:38:E2:84:5F:78:61:2D:93:D5:C5:30:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:26:78:e2:32:89:d8:1b:23:34:82:82:d7:bb:66:03:63:3b: ca:b4:85:41:39:a2:15:56:19:49:04:41:25:f9:81:92:bb:19: 1a:26:0e:68:6f:ad:1c:d4:19:7a:7b:55:91:24:54:66:46:f0: 4b:b6:db:ee:05:c0:76:79:6a:d2:87:82:b2:d9:06:91:b7:62: 27:82:46:d9:ca:57:15:89:aa:2b:38:92:03:de:a9:00:78:cf: cb:8f:89:36:0a:b5:b9:16:e8:44:f6:f5:12:05:44:7c:17:ea: 0e:c6:ce:bf:c4:11:0e:c3:e8:5b:54:e7:1f:06:00:2a:a9:42: 13:71:83:d7:0a:db:47:c8:4d:b5:a9:2b:9b:b7:da:83:e1:26: b0:c7:58:40:c3:9c:f4:65:2b:88:fb:07:57:b0:4f:69:61:b5: ee:70:7c:64:1b:15:f3:12:bc:f2:73:da:92:84:8e:1f:7e:15: 10:50:0d:ca:88:94:34:dc:3c:06:fe:00:2b:d3:2f:30:c8:f4: 32:1b:ca:78:d8:e7:ca:1b:f8:8c:35:9d:47:9d:84:44:b7:5e: 65:8f:7d:c9:5d:1c:a5:19:63:a8:a1:02:54:77:97:22:93:fc: 8e:4c:80:39:b6:75:4b:11:e1:87:12:d3:99:c7:ac:9e:c1:e3: 3c:6e:d2:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY1MzcxMTAvBgNVBAUTKDNFQ0VFQUZFOEFDN0I0QjEzOEUyODQ1Rjc4NjEyRDkz RDVDNTMwQzYwHhcNMjUwNzAyMTk1NzI4WhcNMjUwNzA5MTk1NzI4WjAYMRYwFAYD VQQDEw02ODY1OGYyOC03YWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLm+rWy2GA2Rcpgjo0L25phln2jpPUt3PJvlnJKx1ptms2A52AXySntKR2Ot dNYh1xBs4+h1MxY0Yoty6xkiupzFGtKtUqDo2lGBg4fknjJ6BA90+8LgKuE2sA1H xeeTunwMfKLGU32DfiuYsTRKEj1nVldlA8EG3NObyHLJS552GWmlruU/sVqQeg3k QzN7sTTl0N+wlzD+UOyLO4h8jc5zlS4He/1o89DN3Rp164COCP1R0mUJZRmARKAk pmabtfeCZAweu7fRFTWEzVpL1wGFe2HAepH6vc/gS95iEPEU9KfVeV0Quc8yOJLU W4sJul7BTTVhafApWFe1D3NvIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDli0Xo+ lbAQGVWf2Mi9Hzt0h37KMB8GA1UdIwQYMBaAFD7O6v6Kx7SxOOKEX3hhLZPVxTDG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjUzNy9CRUIwRDkxQTZE OUQxMUVBOUE1RjI4MDlDNEY5QUUwMi9QczdxX29ySHRMRTQ0b1JmZUdFdGs5WEZN TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzN3Ffb3JIdExFNDRvUmZlR0V0azlYRk1NWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjUzNy9CRUIwRDkxQTZEOUQxMUVBOUE1RjI4MDlDNEY5QUUwMi9QczdxX29ySHRM RTQ0b1JmZUdFdGs5WEZNTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUJnjiMonYGyM0goLXu2YDYzvKtIVBOaIVVhlJBEEl+YGSuxkaJg5o b60c1Bl6e1WRJFRmRvBLttvuBcB2eWrSh4Ky2QaRt2IngkbZylcViaorOJID3qkA eM/Lj4k2CrW5FuhE9vUSBUR8F+oOxs6/xBEOw+hbVOcfBgAqqUITcYPXCttHyE21 qSubt9qD4Sawx1hAw5z0ZSuI+wdXsE9pYbXucHxkGxXzErzyc9qShI4ffhUQUA3K iJQ03DwG/gAr0y8wyPQyG8p42OfKG/iMNZ1HnYREt15lj33JXRylGWOooQJUd5ci k/yOTIA5tnVLEeGHEtOZx6yeweM8btII -----END CERTIFICATE-----Generated at Thu Jul 3 01:16:42 2025 by rpki-client