
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json)
Hash identifier: xUjcwH1Fg2g+d/uh9o7gglGyfIpJC9u2b+V2XuLh5YE=
Subject key identifier: A7:0D:23:8C:33:93:F7:A7:C1:FF:8A:45:C4:F8:A4:D9:D0:C6:4A:B4
Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E
Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E
Certificate serial: 0745
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
Manifest number: 073E
Signing time: Thu 16 Jul 2026 22:13:13 +0000
Manifest this update: Thu 16 Jul 2026 22:13:13 +0000
Manifest next update: Thu 23 Jul 2026 22:13:13 +0000
Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: R2Hkrbh4LhZ/HMFBGWMQubBF2k8k/5SO9TPENYuc+Jc=)
2: 485D694A454911EEB8718378C4F9AE02.roa (hash: Y8iJThI3UQs6h5LHq/2D1bpcHDn8+qLI7yAh/AJOyS8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl
rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:13:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1861 (0x745)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E
Validity
Not Before: Jul 16 22:13:13 2026 GMT
Not After : Jul 23 22:13:13 2026 GMT
Subject: CN=6a595779-33fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9d:e2:58:02:7a:70:35:d0:8f:84:d3:ab:c7:
f8:d6:85:82:02:df:88:b9:fe:82:8c:13:81:6f:3d:
a9:42:db:62:b9:03:21:91:b7:c0:a8:b6:0e:47:4f:
37:c3:28:2d:a3:c8:fa:84:da:20:26:73:a4:19:86:
e9:f3:f3:66:88:8c:be:10:e4:3d:8e:e8:97:05:28:
48:d6:b7:a8:b1:ba:6e:37:6c:31:af:01:7c:8b:03:
5a:bb:2d:72:4f:9b:e6:0f:85:dd:d0:91:79:15:b1:
36:8f:a8:78:1b:3f:b2:ef:1f:41:6a:4b:a6:90:1f:
62:41:b8:1a:a0:99:cf:d2:b8:3c:68:cb:70:93:c9:
77:2d:a5:d1:4c:c6:22:f9:09:7a:eb:92:bc:a4:6c:
49:d0:6d:cb:69:da:85:20:28:8d:a9:25:ab:58:8a:
1a:d0:55:95:08:e4:20:70:ee:83:e6:93:24:f4:50:
a6:e2:aa:7e:5e:af:de:08:c2:6a:f5:14:b5:93:b5:
5e:78:f7:84:dd:51:22:4a:1a:0f:dc:f9:80:75:de:
fd:0d:2e:a6:3f:dc:48:15:86:39:05:fd:fa:4f:12:
75:17:c8:a9:a4:79:49:80:a7:44:6f:33:22:6c:f0:
32:07:db:17:ea:7a:21:1e:e0:67:ea:65:a0:54:05:
2a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0D:23:8C:33:93:F7:A7:C1:FF:8A:45:C4:F8:A4:D9:D0:C6:4A:B4
X509v3 Authority Key Identifier:
keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
26:71:1c:8a:5a:37:d1:db:e9:f7:41:85:91:d9:2b:b2:b5:dc:
9b:cb:b2:34:0b:7a:79:94:f5:c4:c6:81:2f:8a:dd:d7:c9:9e:
d3:7e:49:63:66:91:05:58:5b:cc:40:9f:15:d5:f0:cb:e8:ac:
65:fa:d9:7e:3a:17:42:a3:87:ba:ec:69:26:17:3f:f2:73:ee:
ee:f9:a1:81:55:97:85:e8:ee:48:4d:4a:3e:b4:49:13:b0:8a:
cb:54:b8:2b:1b:bf:99:69:4c:af:71:f2:e7:dc:98:88:9b:9e:
3d:4f:7e:66:06:33:66:ba:8f:4c:2e:3c:d1:d3:f8:84:63:ec:
f1:ff:ad:6a:42:6d:f3:35:e8:c5:36:84:23:f7:05:84:55:ba:
e0:5e:0a:81:c9:5f:26:5c:76:77:f6:d9:a9:28:68:60:42:fc:
72:9d:33:a7:e6:15:90:22:5f:d2:6a:ce:4f:0c:a8:43:75:1c:
d9:84:df:02:93:22:6a:e4:18:85:13:2f:8c:0d:7d:2c:72:4e:
23:23:48:78:ab:8b:ed:21:55:3c:c2:c3:2d:27:f9:fc:1b:5b:
69:41:aa:7c:35:52:45:43:19:25:c1:49:cc:de:4b:20:7f:f9:
80:b6:0b:c1:28:4e:45:3f:56:c7:3f:5e:fd:ef:bb:73:53:34:
31:31:1f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:13 2026 by rpki-client