
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft
File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json)
Hash identifier: gvWgAKaAwjSuEsP5LT+fpL8FxJ0TKSIj0/agJuRuocM=
Subject key identifier: BE:8A:59:E1:B3:23:C2:36:FE:96:2A:57:8C:43:F5:02:C3:1E:BB:1E
Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA
Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA
Certificate serial: 02A8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft
Manifest number: 02A2
Signing time: Fri 17 Jul 2026 02:22:51 +0000
Manifest this update: Fri 17 Jul 2026 02:22:51 +0000
Manifest next update: Fri 24 Jul 2026 02:22:51 +0000
Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: z9FmM6x4w1TMoO300fHPt2W6IjPXFV5Kla+gSCxcbNE=)
2: CA181F42791211ED9D926781C4F9AE02.roa (hash: yfzx4N8e3wjfsr320pF+EFitreK6BjvCPZ0wmG/4y/g=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl
rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:22:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680 (0x2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA
Validity
Not Before: Jul 17 02:22:51 2026 GMT
Not After : Jul 24 02:22:51 2026 GMT
Subject: CN=6a5991fb-30c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d1:4f:23:3d:2d:82:23:01:a1:a0:05:44:4b:
56:6a:d2:be:be:05:96:46:5e:b4:3b:e0:e3:26:d1:
1b:18:89:4d:c9:77:70:f8:12:47:b5:b2:e3:b3:df:
35:82:5e:eb:fd:79:fb:14:16:6a:76:6b:78:fd:82:
2b:33:9a:93:b5:42:77:6a:55:59:e2:14:53:d4:24:
17:60:4c:11:b6:75:43:21:80:96:06:dc:d1:2b:a7:
d3:50:5b:0f:ca:6d:21:0b:31:4b:19:2f:af:79:97:
ba:4f:b6:07:a9:80:5f:c6:f7:6c:74:11:39:59:01:
d4:f0:c8:8b:e9:0d:c4:94:e7:93:14:66:dc:fc:55:
8b:e8:f2:f5:7e:ad:f2:56:d3:12:1c:bf:d2:23:13:
2c:b4:ed:8c:0c:80:31:7a:ed:b2:8c:d9:bb:af:b1:
56:51:05:0e:37:bc:2b:6d:02:14:09:d0:42:5e:ab:
88:54:1c:90:67:57:6a:c0:38:c5:1b:91:74:55:82:
92:a1:15:58:ef:1d:75:70:fb:78:5d:4d:c7:f4:44:
c2:ff:30:1a:bb:95:fe:7a:53:a0:4f:46:b0:fb:13:
83:bb:bc:d6:07:36:aa:15:f8:18:8f:03:4c:13:89:
d9:84:22:9b:20:6c:7f:58:fb:24:c8:1d:13:8c:5a:
49:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8A:59:E1:B3:23:C2:36:FE:96:2A:57:8C:43:F5:02:C3:1E:BB:1E
X509v3 Authority Key Identifier:
keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
36:24:a0:f3:6b:e3:72:0c:47:5f:27:21:d0:a7:9f:be:a9:3d:
0b:e5:41:3e:5c:d0:9b:49:fa:05:e0:16:4d:15:47:3e:4d:ec:
22:c8:86:35:c9:f1:ce:cf:1d:f4:29:53:6c:e2:72:5d:62:32:
89:14:5a:6c:01:c1:e4:62:f6:2d:14:a4:07:c7:f2:b0:39:2f:
49:7b:62:25:bb:9e:d6:b6:f3:12:1d:57:1a:4a:ae:71:8c:de:
35:b0:4e:fa:65:21:c9:c6:e8:1a:e7:a1:ea:d6:c9:eb:0d:a4:
d3:5b:21:61:19:71:99:3e:09:33:9e:b0:b1:57:4a:04:9c:93:
57:ba:3d:96:49:1d:72:32:17:65:dc:78:04:6a:f0:71:af:7b:
bc:6e:7e:e3:67:0d:84:c6:5e:f8:0e:2f:f8:70:53:27:77:d4:
d7:0c:b0:6e:a7:e5:05:67:f4:85:ce:f7:75:b6:14:81:b7:b5:
99:d0:56:d3:ca:d2:5d:2a:38:9b:35:1e:f4:5e:0f:7f:78:60:
0f:9e:b0:e3:c4:8f:3c:7a:85:cb:31:3b:2d:84:07:ab:03:3c:
0f:6f:1c:9b:85:f5:5b:2f:39:dd:29:42:3e:3f:15:86:bb:19:
17:dd:57:26:9e:9e:b1:8e:fa:0c:c2:b2:93:04:a0:9b:66:03:
76:81:01:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:20:21 2026 by rpki-client