
$ rpki-client -vvf rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft
File: M3tFD93J_HAiHaXKCXhYhbHRt8w.mft (raw, json)
Hash identifier: mVd6I8D1CDw7MJogLW1/ym7eMJql68SNBlmlvshipL4=
Subject key identifier: E9:5A:EE:25:F2:7E:D7:22:52:35:10:26:88:13:36:61:14:38:AD:2F
Authority key identifier: 33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC
Certificate issuer: /CN=A912981B/serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC
Certificate serial: 01E9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft
Manifest number: 01D6
Signing time: Fri 17 Jul 2026 04:47:13 +0000
Manifest this update: Fri 17 Jul 2026 04:47:12 +0000
Manifest next update: Fri 24 Jul 2026 04:47:12 +0000
Files and hashes: 1: M3tFD93J_HAiHaXKCXhYhbHRt8w.crl (hash: ZVTvYiKTNxAUiKgm7vcVFG5pddLZyCMGcI6gPtd9D7w=)
2: 9DD56C2A3FD311F08A76B677C4F9AE02.roa (hash: 0apNe0l5FgQvHElgMHv4f+0Whu9gEz8dqP8QgQpe1fU=)
3: B62EB8B8810311F19140D3D06AA30FBC.roa (hash: yrlm89UITOQeEQb//8fs853uuFCWdfVzgxpgMA+QA4o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl
rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:47:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489 (0x1e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912981B, serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC
Validity
Not Before: Jul 17 04:47:12 2026 GMT
Not After : Jul 24 04:47:12 2026 GMT
Subject: CN=6a59b3d1-74c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2c:c1:95:4f:a4:b8:19:3b:c6:e8:ae:7e:2e:
2d:d9:65:e6:a7:ef:1c:89:28:d9:24:63:bd:0d:61:
ba:3a:6a:6d:e4:48:a5:fe:c8:00:0b:3f:59:f8:b7:
ec:eb:1c:f7:7c:3e:ab:c3:09:bd:89:36:52:f6:9c:
26:fc:72:46:b4:53:2d:a4:47:e2:d9:e4:94:34:46:
3e:24:de:b3:7a:2e:3b:df:6c:0c:37:b2:d0:c9:48:
c7:29:14:a4:e5:45:69:6d:d2:8a:4e:32:23:be:1c:
30:cd:b7:75:24:a9:7a:e2:23:a8:9e:7c:32:39:5c:
59:f3:de:2b:19:00:a7:03:d2:c7:92:45:44:84:50:
a9:53:e6:69:30:12:3b:78:88:14:1f:d1:ce:a5:a8:
3f:07:6b:6a:6d:33:4e:be:61:01:03:2c:06:a3:be:
72:7a:0a:38:ef:f4:51:c2:64:f2:4c:2a:6f:60:b6:
bb:56:0e:3c:71:e1:5c:9c:4e:05:88:61:5b:3a:09:
38:b3:b3:10:01:13:1e:23:cc:35:b2:b9:6a:32:16:
a9:3f:a2:d5:2f:4c:a3:4d:b8:c9:e3:c6:9d:87:07:
ef:4c:f7:dd:79:95:b8:5e:3c:87:60:bc:49:6c:b7:
1e:54:c5:65:87:8e:db:bb:b9:bb:04:3d:23:05:ed:
f5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5A:EE:25:F2:7E:D7:22:52:35:10:26:88:13:36:61:14:38:AD:2F
X509v3 Authority Key Identifier:
keyid:33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
67:f0:19:c4:76:cb:22:e9:8e:77:09:2d:e6:d6:7b:59:de:ed:
df:65:d9:1e:ca:9d:b1:45:eb:83:ea:35:b5:e5:98:89:9c:46:
27:df:4a:8d:e0:2c:bf:ac:e9:cf:2a:3b:3e:f1:36:51:89:0d:
40:1e:f5:4e:be:4a:84:14:b5:6b:67:ae:e9:f5:4e:19:f0:bf:
87:62:41:53:1f:cc:15:ed:e4:b2:1a:a5:a0:5b:f4:bc:32:14:
1b:78:f9:e5:e7:79:7b:84:84:38:4a:21:23:54:44:96:0e:4c:
3a:56:e4:ff:0d:6f:a8:87:c2:81:30:52:3c:cc:19:9b:26:8d:
92:68:55:d8:fd:60:da:4c:7c:6c:ed:15:c6:e2:56:43:c7:ef:
3c:66:cf:06:18:ff:9c:ff:73:73:a5:58:f9:bf:72:5c:04:e0:
b0:31:76:e2:19:0c:a6:f5:04:19:fc:8a:f8:53:a7:26:e7:13:
20:f7:32:74:1c:20:6d:01:98:5e:86:c0:47:09:d0:34:06:93:
92:22:7b:43:4d:f8:db:b8:f8:ca:65:07:7a:35:5b:55:3c:4c:
9c:5a:06:e4:29:0e:fd:79:62:15:05:69:d5:91:bc:75:88:e3:
f1:57:61:99:21:98:e4:a2:14:65:e6:df:18:5a:38:09:8d:9a:
9e:f6:66:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:42 2026 by rpki-client