
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json)
Hash identifier: cC+nU389eXZnODmU4a/AhOFsWT9BNzHX4RXKS3NeUC8=
Subject key identifier: A3:2E:1C:9D:97:90:36:8C:27:A7:5D:22:C4:9D:DC:64:D9:FE:90:1C
Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3
Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3
Certificate serial: 013A
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
Manifest number: 0134
Signing time: Fri 17 Jul 2026 06:43:32 +0000
Manifest this update: Fri 17 Jul 2026 06:43:32 +0000
Manifest next update: Fri 24 Jul 2026 06:43:32 +0000
Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: gs66D7hJo/5QVZsZm0eWacTdPpADJSUwKAy1beItzlY=)
2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: oDbq8aHQpmwpTVbKMN5yg6duwCoRhyPVojQ6jr19VtY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl
rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314 (0x13a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3
Validity
Not Before: Jul 17 06:43:32 2026 GMT
Not After : Jul 24 06:43:32 2026 GMT
Subject: CN=6a59cf14-31c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:b7:c6:e4:2f:aa:e4:d1:7e:70:68:86:25:
0e:c7:9a:1e:24:79:85:62:00:85:9a:7e:ac:b6:33:
df:8e:26:cc:14:a5:b3:9a:ac:4f:76:c8:c7:bc:62:
67:11:4b:e9:f2:cf:94:58:e7:45:4e:88:64:3f:34:
bd:95:3e:3d:f1:da:56:dd:3c:7b:ac:8e:1b:0c:4a:
62:0d:50:c0:f2:4a:a8:70:fa:2b:df:1b:96:40:5e:
cd:23:73:9b:8b:e7:26:11:0e:c3:77:41:ab:40:69:
46:8e:db:bf:a7:eb:97:b0:99:4b:65:07:37:b9:38:
e1:fe:78:78:4c:34:e6:bf:fa:92:e6:75:76:0c:78:
da:d1:38:4b:a5:47:a3:7f:fa:b0:47:24:2b:43:99:
c2:d9:e1:7c:36:71:64:18:c0:e6:a6:04:5c:b3:b9:
b0:30:1c:66:c2:38:58:3f:08:b0:d5:cb:0f:80:a7:
cd:47:a0:11:0e:7d:47:03:75:d9:9d:de:f3:9f:f7:
12:e2:d0:15:67:20:61:da:02:e6:1a:ba:90:5b:31:
eb:e3:55:3b:7e:3f:ac:0f:f4:21:d0:aa:05:50:89:
b0:f1:44:85:81:82:62:bf:87:40:70:aa:7a:2d:fd:
4a:7c:e9:66:48:cb:48:aa:f5:b9:44:c2:8c:db:9f:
d2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2E:1C:9D:97:90:36:8C:27:A7:5D:22:C4:9D:DC:64:D9:FE:90:1C
X509v3 Authority Key Identifier:
keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
42:c6:6e:d1:bf:16:5c:9a:7b:8b:37:c4:a9:7a:b2:59:1c:74:
fa:80:78:7a:db:1b:ab:2e:ef:6f:9e:b5:72:54:49:79:8e:6e:
89:c1:87:af:36:c5:30:4f:b2:3b:1c:cc:19:bc:03:9b:d5:a8:
37:3d:f9:0c:4f:ff:01:65:7d:64:82:87:bc:7b:f2:d1:be:01:
91:84:d3:27:39:c1:6e:d8:33:66:05:87:1a:fb:5b:a0:c7:65:
c0:b9:59:d4:79:2c:6c:60:66:ed:77:da:bc:86:1a:6f:82:5c:
ab:c8:4c:6d:2d:86:a8:05:ec:e6:1e:64:12:96:d7:9b:42:08:
e3:ff:82:60:50:9f:3c:8a:73:08:f8:04:53:10:8f:04:30:49:
83:79:db:d7:06:86:e7:8b:a7:51:cb:e9:ca:d6:1f:44:9a:d3:
e7:92:68:06:00:be:5a:9e:a7:d6:fa:84:5f:20:b0:25:e5:15:
1b:e1:81:a1:84:e0:60:f9:a1:7b:bc:66:26:36:3f:6c:34:64:
0b:07:70:16:1e:ba:71:65:5a:d5:40:ab:11:6a:e8:df:38:38:
ec:31:98:f7:d4:8d:20:15:44:84:49:f4:a2:08:71:89:1c:53:
fb:ba:cc:1e:ba:e3:8f:b6:a3:03:04:25:4d:85:59:04:d5:4d:
8e:20:83:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:20 2026 by rpki-client