
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json)
Hash identifier: 4u1jLJefHUP+aQFC69AVLUiTXnaKH9kFvLZOHJKK2uA=
Subject key identifier: 6E:1D:E4:4D:26:49:0E:4C:4D:49:35:41:7F:7F:80:52:69:4D:6C:F2
Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14
Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14
Certificate serial: 059B
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
Manifest number: 0587
Signing time: Thu 16 Jul 2026 23:47:31 +0000
Manifest this update: Thu 16 Jul 2026 23:47:30 +0000
Manifest next update: Thu 23 Jul 2026 23:47:30 +0000
Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: owx7yqPC3v9PN58hA+u0ac0TTgnJTfejMrYIsxO4BjI=)
2: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xL18VcZ56ntQg06dxu8mPMsho0DT/fe8AiSvaUT/7NM=)
3: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: Z6zpJNeDiRoumvX5lCIDf2X6SZzpmpEYlhnAJ6yadjo=)
4: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: yeDD3azucqTXwa0Gdb8W5tD9O2qrp+zwpH6Y+zEBWbM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl
rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:47:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1435 (0x59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14
Validity
Not Before: Jul 16 23:47:30 2026 GMT
Not After : Jul 23 23:47:30 2026 GMT
Subject: CN=6a596d93-b9fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:1d:ff:10:05:14:ac:ec:4e:65:dc:cc:29:
f1:cd:17:6a:c6:3b:10:23:10:41:1f:7c:79:d0:fa:
fa:c9:96:25:ff:22:c1:f4:4d:06:86:2c:94:74:77:
1f:c6:07:05:a8:a5:36:f5:5c:50:ea:4b:d3:1b:ee:
e4:21:42:57:af:bc:3b:06:6f:a7:96:00:80:5f:b2:
44:a3:b8:bb:ba:17:48:76:05:de:c6:ee:03:f6:52:
41:66:21:4c:67:9c:ca:b1:83:31:1a:76:b4:30:3f:
92:23:48:ed:95:cc:62:7b:7d:3d:d2:d3:b3:1a:ff:
8a:55:33:4d:7e:61:78:67:ec:80:da:80:40:8b:1e:
1f:87:23:28:29:72:1d:17:98:c0:15:36:51:c3:08:
a3:8e:7e:38:65:be:c4:a3:0c:2e:08:38:4f:46:b3:
d6:58:1e:81:d0:dd:39:c2:b4:cd:23:ca:e1:86:e8:
27:74:e5:92:4b:8b:99:f3:63:7b:3b:a9:4a:76:dc:
1f:c5:5c:55:fa:e8:45:6f:95:69:2a:55:8e:be:66:
7c:bd:31:c6:39:09:30:db:76:a9:03:f4:09:f2:e0:
05:bc:1f:71:4d:18:61:ae:ae:38:b5:3f:4c:aa:a4:
61:4f:ca:6d:47:54:a8:b9:11:7f:22:7f:56:7f:f7:
96:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1D:E4:4D:26:49:0E:4C:4D:49:35:41:7F:7F:80:52:69:4D:6C:F2
X509v3 Authority Key Identifier:
keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
63:5d:c5:ab:84:8e:d5:7a:4c:92:34:5a:2e:04:16:25:c1:4a:
bf:02:01:3c:15:cf:83:98:4e:df:6d:e5:ff:72:25:6b:b4:19:
35:7f:f0:1a:e7:72:58:26:de:84:1f:31:54:d7:88:c5:87:51:
10:a1:93:8f:0c:60:2f:7a:c8:24:c8:40:bf:da:05:2a:84:48:
62:93:9a:27:cb:82:ef:51:c5:da:3b:7b:6d:c1:70:85:2d:99:
b8:0a:c0:e4:2e:2d:d1:c3:a7:dc:54:46:cb:6b:51:c3:ff:22:
f8:a8:89:4b:b6:33:77:ca:e0:34:25:3f:12:87:9e:3e:b9:c7:
32:26:14:54:31:1b:84:79:fd:d3:2d:bb:9b:3d:ce:da:96:2a:
2e:83:aa:1b:58:a8:54:a6:4e:6d:56:12:4e:d1:fb:fe:d0:f7:
a7:71:ec:07:a4:ad:a3:b7:5b:24:4c:0c:53:b2:b2:e0:80:87:
6a:e0:ad:84:90:e4:17:03:b5:1d:ac:37:a7:6e:e3:9e:cb:87:
c4:fd:41:64:95:36:33:1d:9d:48:87:30:ce:1a:98:5b:9c:80:
d1:6a:26:10:0a:18:91:cf:55:9f:7c:d1:37:89:e4:d9:a1:35:
51:80:fa:fe:ef:cb:50:05:0b:af:f5:b9:22:3d:67:47:0a:ef:
58:7e:29:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:16:07 2026 by rpki-client