
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json)
Hash identifier: PXtEPjW1iu4N0dH7wzSgcYzjO7nkdQGljfStl7Gh6Ok=
Subject key identifier: 84:BA:6A:6C:67:95:2E:0D:C5:A3:CF:0D:EB:D3:42:4B:F4:85:DC:C5
Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6
Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6
Certificate serial: 198F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
Manifest number: 1976
Signing time: Fri 10 Jul 2026 16:30:30 +0000
Manifest this update: Fri 10 Jul 2026 16:30:29 +0000
Manifest next update: Fri 17 Jul 2026 16:30:29 +0000
Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: y1CNPO8aAVooPnaypMCW/4MJjSbjq3ztXTWcI/tvYQk=)
2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: d+TSvpxly3k8El4+pV6d2wdav1wdXrK2Z6zZMFeDKxk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl
rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 16:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6543 (0x198f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6
Validity
Not Before: Jul 10 16:30:29 2026 GMT
Not After : Jul 17 16:30:29 2026 GMT
Subject: CN=6a511e25-fb1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6c:5b:6f:f1:bd:5f:4a:19:ee:ee:75:d5:d6:
ea:9d:09:1c:f0:64:63:a5:96:0e:62:c2:e2:90:fb:
6d:8b:9a:3b:84:9d:c1:14:84:35:0e:e7:06:c0:42:
b0:18:ef:0e:a8:37:59:1e:bb:7c:74:e4:ce:bd:b1:
c0:12:b4:28:d8:db:45:4a:64:1b:ec:f2:32:25:19:
39:ff:2b:56:5b:35:cb:d9:c1:86:5a:d9:c9:8b:b9:
85:3a:b9:c6:6f:7c:10:bc:c7:61:e1:9b:06:37:f9:
be:6a:d9:45:c5:e2:a6:31:3b:7a:de:ed:77:cc:de:
ed:b6:0d:4a:02:c8:37:d5:53:86:b6:33:10:2c:ff:
81:fc:b2:dd:e4:51:82:80:49:aa:b5:41:7f:bb:83:
28:a7:d8:b8:7c:45:2c:26:0d:c6:e2:38:3c:3c:f5:
79:15:fe:37:7c:60:3f:72:2b:90:be:29:f2:eb:9b:
81:e6:53:e1:44:e7:85:31:a2:96:a1:d0:7e:60:47:
5b:b9:ae:70:4e:f9:56:e2:a2:5b:89:4e:dc:50:57:
77:c7:40:6a:54:27:02:33:b2:1b:db:ec:fe:8c:a2:
04:ce:5b:33:23:25:5a:16:54:03:4f:d2:f8:ef:83:
65:b3:7d:d2:72:ca:58:6f:e4:0a:cc:70:3b:9d:69:
46:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BA:6A:6C:67:95:2E:0D:C5:A3:CF:0D:EB:D3:42:4B:F4:85:DC:C5
X509v3 Authority Key Identifier:
keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9a:fe:7a:e8:3d:5b:a2:d8:6e:fd:8d:ec:16:9c:28:b4:26:3d:
17:f6:91:b2:08:30:b2:b0:98:82:98:7a:fe:bc:6b:de:59:cc:
c8:cd:6b:5a:28:1d:31:8d:01:de:f3:72:88:f5:e4:c3:15:6d:
1d:3b:1c:81:29:42:c1:14:97:ab:2a:0c:07:f8:f4:cc:3a:07:
9a:20:d7:59:f4:0b:8c:cb:92:c9:77:cd:73:5f:c6:fe:a0:4b:
35:ec:25:47:a9:4c:0b:b1:34:27:f5:c5:aa:be:14:bc:d6:14:
1c:b2:d1:79:c0:ae:77:48:33:64:34:ac:f8:15:99:e6:86:3b:
45:de:91:bb:51:48:ac:be:03:58:8f:fa:7e:e5:9f:d7:bf:1c:
b6:76:56:52:fb:41:e2:c6:33:ff:bb:b5:51:47:d0:5b:52:81:
f0:c0:e7:0d:2b:05:cc:0c:ab:3f:62:4f:f5:ab:2f:ec:35:10:
ba:1a:d2:71:15:21:f8:da:94:07:45:df:9e:e1:fb:6b:02:8d:
71:4e:0e:73:92:56:62:47:64:3b:bc:4d:b6:5f:95:6c:e4:3b:
7c:86:2b:71:6a:26:07:55:8e:18:d0:2b:b2:e7:13:b2:1f:74:
26:f3:2c:d5:b7:25:71:cc:7a:32:d9:c5:97:4e:b4:60:2e:5a:
37:52:31:86
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICGY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4
QTgwMjY0RTYwHhcNMjYwNzEwMTYzMDI5WhcNMjYwNzE3MTYzMDI5WjAYMRYwFAYD
VQQDEw02YTUxMWUyNS1mYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAomxbb/G9X0oZ7u511dbqnQkc8GRjpZYOYsLikPtti5o7hJ3BFIQ1DucGwEKw
GO8OqDdZHrt8dOTOvbHAErQo2NtFSmQb7PIyJRk5/ytWWzXL2cGGWtnJi7mFOrnG
b3wQvMdh4ZsGN/m+atlFxeKmMTt63u13zN7ttg1KAsg31VOGtjMQLP+B/LLd5FGC
gEmqtUF/u4Mop9i4fEUsJg3G4jg8PPV5Ff43fGA/ciuQviny65uB5lPhROeFMaKW
odB+YEdbua5wTvlW4qJbiU7cUFd3x0BqVCcCM7Ib2+z+jKIEzlszIyVaFlQDT9L4
74Nls33ScspYb+QKzHA7nWlGGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIS6amxn
lS4NxaPPDevTQkv0hdzFMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4
RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na
T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr
UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAmv566D1bothu/Y3sFpwotCY9F/aRsggwsrCYgph6/rxr3lnMyM1rWigdMY0B
3vNyiPXkwxVtHTscgSlCwRSXqyoMB/j0zDoHmiDXWfQLjMuSyXfNc1/G/qBLNewl
R6lMC7E0J/XFqr4UvNYUHLLRecCud0gzZDSs+BWZ5oY7Rd6Ru1FIrL4DWI/6fuWf
178ctnZWUvtB4sYz/7u1UUfQW1KB8MDnDSsFzAyrP2JP9asv7DUQuhrScRUh+NqU
B0XfnuH7awKNcU4Oc5JWYkdkO7xNtl+VbOQ7fIYrcWomB1WOGNArsucTsh90JvMs
1bclccx6MtnFl060YC5aN1Ixhg==
-----END CERTIFICATE-----
Generated at Sun Jul 12 16:51:55 2026 by rpki-client