
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft
File: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft (raw, json)
Hash identifier: e2PKi18gJb3MFcyDPiyMhxCBqsyFR5sJAWXThbTOhvo=
Subject key identifier: D6:B5:05:FC:67:61:03:5E:4C:E9:4D:65:D6:FB:32:60:F7:36:82:30
Authority key identifier: 2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3
Certificate issuer: /CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3
Certificate serial: 0161
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft
Manifest number: 0161
Signing time: Sun 05 Jul 2026 05:32:14 +0000
Manifest this update: Sun 05 Jul 2026 05:32:14 +0000
Manifest next update: Sun 12 Jul 2026 05:32:14 +0000
Files and hashes: 1: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl (hash: aQISEzvqjAs/AaTdeMyVIGhopn65zx5lh0Mf2eC9//Q=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl
rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 05:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353 (0x161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912B75A, serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3
Validity
Not Before: Jul 5 05:32:14 2026 GMT
Not After : Jul 12 05:32:14 2026 GMT
Subject: CN=6a49ec5e-093b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:90:de:28:af:f2:e4:5b:6e:dc:4b:00:ad:84:
58:85:dc:ba:73:f0:4d:e0:df:33:f9:57:4b:b4:f8:
e5:2d:ec:69:59:bb:aa:34:bb:5b:02:c9:fe:73:bc:
b0:f3:92:f3:15:c4:dd:f8:4e:8d:4c:8b:4f:0f:98:
ea:23:70:e3:52:96:8f:a5:ba:30:ee:25:d4:12:3e:
ff:59:08:5f:78:b7:e7:c1:fa:93:54:a1:43:d8:b3:
df:aa:3f:87:04:e6:39:92:39:d4:57:bb:22:41:01:
27:b8:ff:4f:48:df:44:55:34:8c:17:f9:b0:c2:32:
27:dc:a3:2a:26:d6:45:79:2b:88:5d:76:09:59:ce:
81:72:52:cc:c5:02:76:9b:0a:f1:a3:74:27:21:25:
2c:4f:8d:f4:d0:3a:b4:52:f0:76:2c:88:1c:c5:3c:
1c:47:09:2f:fe:4a:e9:c7:d5:2c:f8:ce:f0:ca:a4:
85:51:b0:d5:5d:8c:59:d3:bd:b2:ee:67:2d:c1:0e:
f7:e3:d3:24:d9:ac:8b:78:95:d8:53:0c:0f:0f:3b:
fe:1c:e1:e9:ba:56:50:10:12:3d:57:63:5f:55:5b:
1a:ce:90:67:ea:d2:38:fb:30:e5:78:ac:49:8c:e2:
aa:6e:5b:3b:fa:b7:58:05:f6:49:d7:bd:a1:ba:1b:
e2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B5:05:FC:67:61:03:5E:4C:E9:4D:65:D6:FB:32:60:F7:36:82:30
X509v3 Authority Key Identifier:
keyid:2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a5:82:8d:7f:cc:17:a5:71:a0:23:00:cd:e5:ef:00:d5:c4:04:
b1:e0:07:e3:c1:b8:91:42:3e:e9:51:82:dd:0c:e2:ac:e0:2c:
70:00:93:25:7b:93:fb:0e:54:82:2c:29:80:7d:b6:4a:d5:0e:
86:e8:b1:ac:e6:fd:de:67:da:a7:1f:e3:0e:96:ac:64:5b:79:
f8:80:02:80:31:af:c6:cd:3b:2b:f0:01:78:85:b5:41:6b:98:
0c:e5:5d:e1:7a:f0:e2:c7:8b:3b:6f:81:a4:84:1d:47:84:3b:
10:b0:4b:94:be:63:20:1b:7b:22:2f:94:59:38:b9:d8:fc:c1:
aa:f2:84:72:05:7d:a3:34:91:76:de:04:5d:35:55:59:84:b6:
0a:95:0e:22:48:c8:e4:1f:f0:88:b8:f9:cb:4a:09:4f:27:b3:
97:01:5a:71:ba:80:c3:e8:b4:2f:c3:91:05:c0:97:8a:7c:4b:
82:83:8f:b5:93:66:e3:17:c9:16:34:d5:2f:6b:2d:75:de:3f:
ae:28:1e:b7:ba:87:b8:3b:83:de:e9:28:e2:01:a1:88:75:e8:
6b:e6:3f:53:8c:6e:6a:81:af:58:5e:b8:ae:29:e3:0c:0e:6d:
a1:8a:69:ca:f9:9c:88:ae:73:49:6c:d2:82:2c:a2:3c:5b:3e:
d1:7a:6e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 08:59:43 2026 by rpki-client