
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
File: GiOYaENWXf_IAPgP8pa6sa03FOw.mft (raw, json)
Hash identifier: HRvFRH6h1ZP+Wq+thOTZaGBJEC6QXkD2vmWVBLUqLlM=
Subject key identifier: 39:79:AF:AC:EA:C5:ED:65:66:A0:3F:F0:E6:72:E8:D9:51:23:C5:9A
Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC
Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC
Certificate serial: 042E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
Manifest number: 0420
Signing time: Sun 05 Jul 2026 00:43:37 +0000
Manifest this update: Sun 05 Jul 2026 00:43:36 +0000
Manifest next update: Sun 12 Jul 2026 00:43:36 +0000
Files and hashes: 1: GiOYaENWXf_IAPgP8pa6sa03FOw.crl (hash: U7QCPwZw5GRdj477qzqI1Y9bjO2hGyW4xiCGemsEXVY=)
2: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (hash: OdmIKnh99XTg8Hh9/TQirH8XV5FGfwwJr9IPq/Zw7no=)
3: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (hash: IasGAzFc+l1gsAHfpGxVMa7FoIjlAPF1GzUpALF/028=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl
rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:43:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1070 (0x42e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911F55D, serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC
Validity
Not Before: Jul 5 00:43:36 2026 GMT
Not After : Jul 12 00:43:36 2026 GMT
Subject: CN=6a49a8b9-902a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e2:13:51:3d:e3:dc:be:45:c9:21:ef:de:df:
4a:4c:87:38:03:07:85:ee:60:e1:ee:86:ff:4d:4f:
5b:b9:77:63:78:09:80:5f:8c:6a:b5:de:37:23:16:
1b:a0:04:6b:24:a4:aa:2c:a0:b0:2d:f2:4a:18:d1:
58:72:a9:87:63:cf:59:10:a8:a9:40:9e:c4:a2:be:
5b:ac:62:71:8a:4a:fd:63:2a:4f:f3:06:33:63:0c:
a2:6f:14:b3:fd:79:f7:b6:b4:51:f6:45:3f:1c:b1:
95:39:19:74:71:78:e7:54:2c:37:78:aa:d8:97:c8:
35:c3:42:2e:7f:3b:fe:90:e6:90:25:9d:d1:4a:ed:
d3:e0:b9:7f:e5:0f:40:f3:40:44:cc:e3:89:8b:6b:
16:f1:ac:d1:de:b2:f0:43:9c:96:b8:54:34:e5:bc:
7a:06:9c:10:14:01:7b:af:c9:d4:fa:d7:6c:f1:65:
0e:93:4c:15:44:72:c0:b4:8e:e2:39:37:69:d9:00:
d2:03:c6:c1:65:e2:c8:e4:dc:0b:f8:41:57:5a:a9:
60:10:a9:9d:de:f0:b8:31:30:53:9b:54:ee:cd:0e:
a5:ce:72:ba:bf:59:b4:29:38:99:87:2b:83:7b:dc:
30:a8:82:24:49:c0:06:44:e3:d0:45:36:55:19:0c:
9e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:79:AF:AC:EA:C5:ED:65:66:A0:3F:F0:E6:72:E8:D9:51:23:C5:9A
X509v3 Authority Key Identifier:
keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:d5:3e:48:e6:52:48:20:bd:f0:08:26:f5:1b:10:2e:80:42:
88:80:c6:7d:4d:fd:19:d8:63:5e:4a:88:4d:92:25:88:0b:9d:
99:aa:f0:e3:f9:ee:71:fe:6a:45:58:e8:7d:b1:04:ae:0f:6a:
a7:65:80:d0:00:47:c6:6f:6a:ab:92:9d:3d:17:e7:37:ee:78:
f2:ed:4d:3c:57:dc:ec:2a:03:e0:84:5d:e8:c4:48:c4:59:d4:
7e:40:96:7c:57:9a:92:24:a8:e4:d6:6f:5e:53:ba:1a:ba:b5:
b1:92:c9:ce:28:68:85:91:67:76:d1:3d:2b:ac:71:43:43:2c:
69:94:8f:d0:1f:f7:99:d2:8d:1f:14:37:ef:77:92:6f:b7:24:
48:4a:d2:8f:c7:b8:36:fc:cc:c5:07:2a:c0:ff:86:4b:70:12:
bc:68:5e:d3:aa:86:35:10:e1:ef:11:c4:76:eb:bb:86:a6:ba:
78:2a:40:d5:87:87:90:de:6e:d6:3e:d6:78:9a:26:5a:93:a7:
6b:1f:64:cc:cd:db:28:21:09:84:41:6e:a4:cc:28:d1:20:78:
4f:58:8f:de:01:d7:49:6a:9e:45:ad:51:7e:1a:df:e6:a4:45:
c7:dc:a3:4c:09:80:48:37:8d:2e:75:7c:17:88:fc:21:a7:83:
f3:8b:82:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:06:52 2026 by rpki-client