
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json)
Hash identifier: 08xDMi8oYaLyT90BY5w/vFHIIXfmo3NBvAzXLT7L2Sk=
Subject key identifier: 0B:44:74:C4:1B:A7:4B:59:8C:97:FC:BF:42:B5:83:6F:DE:ED:09:B2
Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08
Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08
Certificate serial: 059F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
Manifest number: 058B
Signing time: Thu 16 Jul 2026 23:47:34 +0000
Manifest this update: Thu 16 Jul 2026 23:47:33 +0000
Manifest next update: Thu 23 Jul 2026 23:47:33 +0000
Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: 9qTVWGXOnbYDYQ6cid0OnVUxkMVXK7ui1bFo2trHYGY=)
2: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s=)
3: 94AB76D86DE711F196A4F1FD5BA30FBC.roa (hash: kx05g5sFc7i3wM9cZ3d4c4kpJCzSjVmmtIWjZ9lyY9U=)
4: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl
rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:47:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1439 (0x59f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08
Validity
Not Before: Jul 16 23:47:33 2026 GMT
Not After : Jul 23 23:47:33 2026 GMT
Subject: CN=6a596d95-dfb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a4:3b:69:02:e6:cf:1d:03:68:27:4c:be:11:
a1:1c:b7:b6:94:92:a5:fd:fd:66:a7:01:c2:3a:64:
60:b1:9b:f1:2e:ff:27:d5:32:02:92:b5:52:76:0d:
e6:b7:89:33:49:13:b2:66:bb:5c:0e:f1:58:c8:98:
43:d3:bb:d5:c2:4b:85:ed:da:ed:1b:2c:da:0d:64:
af:98:1d:c5:23:83:33:d8:a9:33:dc:fe:f0:65:39:
8a:28:64:da:83:42:50:15:61:c2:75:d1:db:db:85:
47:cb:75:fb:ac:61:e3:83:b2:bf:2b:a1:cf:7e:79:
12:b9:0d:fc:da:88:58:0e:11:13:99:94:80:8c:f9:
58:45:a8:05:d4:9f:36:ad:c7:fe:fb:b3:af:7b:e1:
a4:b5:fa:ad:f3:30:e3:44:6d:87:20:04:7e:31:c4:
3d:41:05:e8:a2:6c:23:5d:0c:cb:e6:94:5a:3c:53:
f1:fd:37:94:bc:82:ab:80:79:71:f1:0c:95:12:c0:
e8:06:46:e1:ad:a1:f7:cd:44:3c:bc:54:95:95:33:
ed:e2:36:fe:15:42:20:80:a7:74:74:27:09:59:ba:
be:64:b4:c9:a2:49:2e:fb:27:97:c4:94:ab:c4:ef:
dd:eb:4c:1b:fd:4f:fc:ae:ae:2e:49:49:7a:e4:97:
76:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:44:74:C4:1B:A7:4B:59:8C:97:FC:BF:42:B5:83:6F:DE:ED:09:B2
X509v3 Authority Key Identifier:
keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
34:b6:6f:ca:8d:f8:1e:e2:53:c2:48:c9:69:fc:56:06:3b:7b:
a5:ca:55:6b:b8:16:fe:30:b8:dd:4b:7f:9e:ed:c2:23:c2:88:
cc:e6:cd:20:8a:61:01:fb:a1:fc:d8:fb:bf:ca:7c:25:f8:f5:
a9:fa:44:cb:e8:6f:87:a1:fb:b1:77:1b:82:bc:8b:2c:2d:c8:
11:d5:fc:aa:a3:49:95:12:85:63:ce:79:ac:b4:41:b0:a6:da:
61:55:22:29:dd:5f:5d:62:af:00:1b:f8:0a:ff:f5:aa:fb:08:
f3:a3:91:9c:da:3c:37:b1:4b:b6:e8:38:e8:62:da:63:88:f5:
f4:01:55:41:da:a7:26:91:20:0a:83:40:42:5c:75:fa:86:61:
3f:5c:bf:d6:6a:3d:b9:38:c6:33:48:98:18:06:6f:b4:a5:cd:
d5:c9:d6:4d:49:66:ca:05:10:e1:7c:6a:06:a7:b3:fd:b8:a5:
03:31:f9:a9:9c:18:50:1e:5f:f9:fd:59:69:25:c7:38:eb:85:
88:25:0c:a0:52:72:66:06:70:52:3d:3c:38:7a:f1:e9:3a:a7:
ef:0c:c2:78:a1:d9:6a:25:d8:3e:97:9d:62:20:dd:01:a6:b7:
2c:45:4b:38:fd:29:28:a8:1d:49:b9:80:a4:d7:ce:34:ad:20:
f9:04:47:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:00 2026 by rpki-client