
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json)
Hash identifier: dUkOyiBetPWp2RZpxI/30JKX3fiPHfZKpibJZ9kyZyU=
Subject key identifier: 09:AC:0F:E9:7D:15:DB:41:3D:E2:C7:75:8B:99:16:F9:F6:7C:7E:C9
Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E
Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E
Certificate serial: 0212
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
Manifest number: 01EC
Signing time: Sat 11 Jul 2026 04:12:12 +0000
Manifest this update: Sat 11 Jul 2026 04:12:12 +0000
Manifest next update: Sat 18 Jul 2026 04:12:12 +0000
Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: +DWl6G8WRsCVXk3NBAtOMVt2oWAyS/Ct9lVmjrNO8ZI=)
2: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: u48zpmX4MX32BsS3SWmiT1sLqFE6P1rFb2rRJj5ZiBw=)
3: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: MD6k5wA0AqG/dEECYzynxqcMbFFUqeKVXvzHIx4QFZQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl
rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 04:12:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 530 (0x212)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E
Validity
Not Before: Jul 11 04:12:12 2026 GMT
Not After : Jul 18 04:12:12 2026 GMT
Subject: CN=6a51c29c-c0be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:18:9d:e1:df:a2:3c:56:dc:09:3d:cc:0f:cd:
f7:4f:24:2a:b5:35:7c:bf:bc:7b:e0:f1:87:72:ef:
c6:d6:b1:eb:c0:a5:1e:cd:98:22:79:2a:dd:11:ab:
12:c9:17:ef:0e:6f:31:b1:8f:28:2a:7a:2f:bb:7c:
31:70:6b:28:5f:ee:fb:06:74:81:5a:20:e9:ba:9a:
84:fe:e4:a8:e8:98:6f:1a:54:de:b9:de:79:6c:fe:
58:4c:d4:fa:71:ea:55:77:90:63:cf:ab:6b:ba:57:
dc:c1:9b:fa:8c:22:5e:ba:4b:98:fa:5b:ce:3f:c0:
b4:2e:27:30:32:3a:f6:ae:e4:41:a9:81:43:c1:12:
9d:e0:3a:f4:a1:60:dd:4b:4a:88:91:2f:b2:70:65:
5b:6d:1a:d2:34:25:63:57:ac:5b:a2:21:26:a3:93:
8c:d0:be:db:41:09:2f:48:c6:5f:28:a7:43:4d:42:
6b:ea:f2:3d:58:8b:b2:28:17:1c:61:f4:e1:95:b1:
75:f4:69:6a:0b:b5:f1:9f:f9:10:71:f5:5a:a6:e4:
0d:a5:14:46:9d:14:0f:20:c7:89:ca:a1:e5:56:74:
44:22:b1:95:2a:bc:c2:77:94:f3:62:54:6e:18:a6:
3d:5a:93:a4:ac:e2:ea:71:58:50:27:73:09:a5:9f:
ae:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:AC:0F:E9:7D:15:DB:41:3D:E2:C7:75:8B:99:16:F9:F6:7C:7E:C9
X509v3 Authority Key Identifier:
keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
91:0e:71:49:11:7a:c6:4f:d4:e4:38:c7:b3:c0:60:7c:d6:22:
93:49:4d:55:ec:8e:16:f3:53:05:aa:1d:2a:16:72:6b:63:0c:
4d:63:e8:20:e2:c3:98:4f:06:11:c6:86:c7:19:9f:33:3f:14:
f8:c9:f2:12:09:12:de:0b:1d:af:2b:37:49:4e:4c:1b:49:f1:
2d:1b:9c:7f:3e:7e:bd:7c:cc:fc:88:7f:5e:1f:48:39:59:da:
03:89:0a:ea:a0:3c:f0:6c:9d:54:21:38:e9:2c:9e:e9:3d:2a:
d8:4a:0c:ad:fe:11:34:7b:83:e4:45:00:a9:98:e5:3e:b8:68:
82:f5:81:26:bc:46:a7:72:bd:23:5c:08:ea:96:7c:0e:86:48:
5b:49:3e:cd:5d:88:36:b0:aa:55:38:b6:77:5a:c0:37:1a:7a:
fb:e1:0a:d4:75:0c:de:ce:6b:29:b6:9a:40:0c:e8:6f:39:0b:
06:09:7a:66:75:aa:24:65:70:32:3f:bf:44:fc:55:21:85:85:
33:74:21:08:a4:4b:c5:d0:88:bf:34:70:ad:ce:16:af:35:b3:
b9:fc:d7:22:9c:0a:5d:7b:d9:40:13:e2:a5:45:4d:05:f7:84:
c5:e4:86:0a:7c:bc:5b:ef:ee:92:8d:ac:73:28:19:56:52:8f:
a4:77:88:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 04:16:55 2026 by rpki-client