
$ rpki-client -vvf rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft
File: 4jfSzTuh8bknVF8kSZKHKtCvwwU.mft (raw, json)
Hash identifier: p0g90zLC4x7R9hnKEsyA88ZXqAFs2QhzsJe9RHHRArw=
Subject key identifier: 53:74:02:DF:A3:FD:93:90:63:8E:25:75:19:BF:46:46:E2:DE:07:5E
Authority key identifier: E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05
Certificate issuer: /CN=A912512F/serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305
Certificate serial: 09C6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft
Manifest number: 09A4
Signing time: Sat 04 Jul 2026 20:08:46 +0000
Manifest this update: Sat 04 Jul 2026 20:08:46 +0000
Manifest next update: Sat 11 Jul 2026 20:08:46 +0000
Files and hashes: 1: 4jfSzTuh8bknVF8kSZKHKtCvwwU.crl (hash: TLCpbFN9jOeuh7GFxlY9ahFYp+8cwjs269jiyoUmD9E=)
2: 4B3A4250B46A11EAB5A01176C4F9AE02.roa (hash: 2QiWBnPaUCTJvdNP0zBmyWdyn7oHyts1Ul70IjP2j6Q=)
3: 4C5CCE6EB46A11EAB5A01176C4F9AE02.roa (hash: bij0GPc4q/HmqyQVEL/k0toCpN5+LlxlDW2eG5CFpnk=)
4: 9FCAD654781E11EB808A544BC4F9AE02.roa (hash: gVcn2SvZaK2nbxle9CZzKz71vAlE+GFSMyND+4DCZiA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl
rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 20:08:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2502 (0x9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912512F, serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305
Validity
Not Before: Jul 4 20:08:46 2026 GMT
Not After : Jul 11 20:08:46 2026 GMT
Subject: CN=6a49684e-166e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:92:59:f8:61:82:03:52:20:d9:58:c1:35:
18:b8:12:41:58:c6:a0:c7:aa:07:b0:23:dd:c9:74:
66:d5:d0:4a:8d:68:43:54:40:1b:a0:52:49:4d:2b:
50:44:86:48:c9:bb:98:55:db:67:eb:25:e9:c9:5a:
d0:b6:3c:74:7a:f7:93:e1:38:5a:50:1f:27:2c:c7:
aa:09:f5:96:df:6f:3e:64:91:c5:ca:ee:2a:41:2c:
d2:23:47:a6:26:42:50:1f:66:23:8f:f3:11:c8:8d:
ba:b4:bb:1f:04:ef:64:21:d0:bd:fa:36:9b:4f:a8:
1d:ec:dd:fd:a4:f9:3a:8d:84:d6:e3:21:c9:7e:34:
d9:fb:fe:31:2d:c6:3d:a9:40:90:b4:8a:6b:62:10:
fe:8e:af:86:92:67:22:6d:30:bb:09:c0:ab:3c:25:
1c:4f:b4:28:37:a3:30:66:04:82:ef:d9:ac:84:9f:
c1:1f:7b:73:3b:2d:5b:a8:a6:14:30:ef:07:81:d0:
57:7f:00:43:a3:95:2d:d6:2a:73:78:24:6a:1c:31:
44:80:cf:e3:6f:bf:7d:f4:50:b3:3c:e6:73:c9:07:
9f:ed:7e:1b:6f:55:1a:a1:a8:ae:57:fa:c8:e4:58:
3f:63:5d:98:98:2c:e2:5b:9b:f8:b4:2e:4b:08:6c:
b7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:74:02:DF:A3:FD:93:90:63:8E:25:75:19:BF:46:46:E2:DE:07:5E
X509v3 Authority Key Identifier:
keyid:E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:18:c8:23:cc:bf:7c:93:c6:79:0e:f8:37:e1:ed:8b:ec:52:
b7:47:89:a4:17:0c:57:12:fe:bb:93:14:08:7d:99:d4:10:35:
9c:56:10:6a:16:b2:71:21:36:7e:94:57:52:35:22:4e:e8:6e:
a1:d9:92:af:ea:2c:1b:0c:cd:c0:78:27:b6:89:66:7d:e2:41:
1d:3b:4e:c4:bb:f9:8d:c5:e4:bf:db:f8:00:5d:0b:34:52:7b:
fc:fd:bb:49:75:67:6a:de:b5:4c:2c:e9:50:d9:59:1a:ff:56:
a0:f2:cc:c8:dc:14:7c:86:4f:b7:8a:89:a0:76:29:3b:46:ab:
e5:40:2c:54:54:f8:67:68:a3:c1:c4:50:08:c8:53:7d:dd:dc:
30:92:7c:42:fa:83:51:64:88:fa:38:7d:35:7d:d0:fd:39:c4:
11:1f:d3:4c:20:bd:14:62:c6:7b:e8:8f:93:60:0d:21:fd:ed:
18:a4:28:f1:01:f2:45:5e:a7:dd:1c:49:1b:c8:3a:9e:56:89:
1d:34:04:d8:58:fd:e9:af:ea:db:30:3a:96:aa:6f:76:6e:ce:
b0:55:a8:61:0e:77:6c:52:19:be:5e:81:3c:3d:8f:49:22:5c:
a6:c1:58:66:88:cc:82:61:ef:32:ca:f1:aa:ea:0b:5d:2b:c4:
ac:dc:17:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 11:35:12 2026 by rpki-client