
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json)
Hash identifier: 0mWTK+2nNdjAxedAzqZz8xLcz5uaAcQ9BQaBiuKWYrU=
Subject key identifier: F4:3B:5E:F2:7E:56:DC:2B:22:A1:4E:E5:4B:02:75:D8:B8:22:F4:7B
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0DF7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
Manifest number: 0D92
Signing time: Sun 12 Jul 2026 18:13:14 +0000
Manifest this update: Sun 12 Jul 2026 18:13:13 +0000
Manifest next update: Sun 19 Jul 2026 18:13:13 +0000
Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: 9t/dv1kp6R3aQx4E5Yx+hWCSLKmq6jorm7+b+rPw5Uk=)
2: 14AD087E635711F1A8C1BFBC9B47A888.roa (hash: /xu/u+3n4gHsOINUiGMqVZ+4o2jYPP8AqjTqfATumMY=)
3: D56F7FF2635611F1B3748DBC9B47A888.roa (hash: dsJg18m5mrxYhkg7yugi1O9ZuT6p9PFj0K0zE1hSxQU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 Jul 2026 18:13:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3575 (0xdf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Jul 12 18:13:13 2026 GMT
Not After : Jul 19 18:13:13 2026 GMT
Subject: CN=6a53d93a-f669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4c:e4:83:83:7a:ea:eb:44:c1:cf:ad:9a:11:
6d:29:2b:fe:70:d4:a1:17:7b:1f:a1:f7:05:32:28:
26:c1:94:80:7d:f7:7e:1c:de:29:fc:bb:92:80:f1:
65:c7:23:9a:ea:9e:f1:d6:cd:08:87:a7:5c:20:9f:
58:1b:fa:fd:f4:e5:2c:23:7d:44:52:65:47:73:60:
92:67:5f:6f:17:ba:74:cd:27:ff:68:99:b6:38:2e:
c2:99:f1:1d:0b:4b:50:c9:ea:ed:58:86:70:d7:6b:
64:b0:5a:bc:4f:0d:78:37:c2:d1:da:10:e1:65:eb:
03:c6:5b:f6:97:d4:f9:08:82:4b:e7:09:a8:4e:c8:
c7:5c:2e:cd:20:6b:6a:3a:b5:d0:85:7f:5d:49:9b:
68:b7:b9:be:75:df:fe:44:0d:b5:22:42:42:18:8a:
03:15:f6:62:62:3e:e9:dc:35:07:9f:aa:af:6a:bc:
db:71:66:99:39:9e:01:87:63:24:54:e4:38:80:8f:
af:24:0f:a4:1d:9d:ef:5f:78:c2:f5:95:68:a6:e3:
47:67:a9:7f:52:d1:11:c2:07:2c:bb:b2:c8:aa:a3:
71:0b:4f:32:78:fa:2c:85:9c:44:42:4d:2e:a7:fc:
4d:d0:6d:ce:d6:19:b6:0e:27:69:7b:9e:40:99:44:
c7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:3B:5E:F2:7E:56:DC:2B:22:A1:4E:E5:4B:02:75:D8:B8:22:F4:7B
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:44:4f:38:58:50:19:e4:43:11:b1:50:a6:6c:81:b6:cc:3c:
7c:6c:fc:ea:a9:95:77:a7:1e:f7:2e:e0:68:2d:a4:eb:b6:4a:
ac:43:79:9e:ce:82:66:5f:72:e7:60:82:92:7b:2b:61:62:63:
74:5a:21:37:3e:cf:30:33:24:16:2e:db:17:fc:45:ec:92:8d:
72:39:aa:46:f6:99:ed:09:23:ba:d5:d6:8f:8d:0e:f6:16:54:
15:f5:4f:8b:4d:96:3a:58:c4:ef:06:12:1a:40:7c:b1:a9:79:
eb:99:08:8d:b2:d4:53:b7:1b:0e:5e:dd:c7:e2:02:6f:66:9d:
b2:29:54:58:0b:50:32:a3:db:58:93:55:8c:c6:60:69:18:28:
17:70:94:4b:f6:10:54:c2:fe:3b:9a:b0:0c:23:2b:fb:07:8a:
1f:b9:65:55:e7:24:7f:0f:b3:2b:95:f8:7d:a0:6b:ea:e1:f1:
9d:4c:f2:4f:89:c2:5b:7c:5e:fa:d5:d1:1a:d3:9c:d4:98:f7:
98:7c:85:f2:69:f1:35:25:0d:73:84:eb:ae:da:ee:97:13:de:
7e:a5:b5:46:df:92:a1:1e:fb:3f:65:ab:09:aa:21:2e:8c:6f:
72:6e:71:97:1c:ae:58:27:29:ab:9f:7b:5d:87:b4:f7:f6:df:
42:7b:09:3a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB
RjYyREVGRkQwHhcNMjYwNzEyMTgxMzEzWhcNMjYwNzE5MTgxMzEzWjAYMRYwFAYD
VQQDEw02YTUzZDkzYS1mNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtUzkg4N66utEwc+tmhFtKSv+cNShF3sfofcFMigmwZSAffd+HN4p/LuSgPFl
xyOa6p7x1s0Ih6dcIJ9YG/r99OUsI31EUmVHc2CSZ19vF7p0zSf/aJm2OC7CmfEd
C0tQyertWIZw12tksFq8Tw14N8LR2hDhZesDxlv2l9T5CIJL5wmoTsjHXC7NIGtq
OrXQhX9dSZtot7m+dd/+RA21IkJCGIoDFfZiYj7p3DUHn6qvarzbcWaZOZ4Bh2Mk
VOQ4gI+vJA+kHZ3vX3jC9ZVopuNHZ6l/UtERwgcsu7LIqqNxC08yePoshZxEQk0u
p/xN0G3O1hm2Didpe55AmUTHGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPQ7XvJ+
VtwrIqFO5UsCddi4IvR7MB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2
QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3
XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE
Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAE0RPOFhQGeRDEbFQpmyBtsw8fGz86qmVd6ce9y7gaC2k67ZKrEN5ns6CZl9y
52CCknsrYWJjdFohNz7PMDMkFi7bF/xF7JKNcjmqRvaZ7QkjutXWj40O9hZUFfVP
i02WOljE7wYSGkB8sal565kIjbLUU7cbDl7dx+ICb2adsilUWAtQMqPbWJNVjMZg
aRgoF3CUS/YQVML+O5qwDCMr+weKH7llVeckfw+zK5X4faBr6uHxnUzyT4nCW3xe
+tXRGtOc1Jj3mHyF8mnxNSUNc4TrrtrulxPefqW1Rt+SoR77P2WrCaohLoxvcm5x
lxyuWCcpq597XYe09/bfQnsJOg==
-----END CERTIFICATE-----
Generated at Sun Jul 12 23:52:57 2026 by rpki-client