
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json)
Hash identifier: NsX+ARqSnE72PkS27DMJw3TXRYwM/M8s/KVQyPVkKeI=
Subject key identifier: 78:92:8A:AD:5F:5D:C8:00:6B:7E:A1:98:F5:8F:DA:B5:01:3A:8C:0F
Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8
Certificate serial: 0747
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
Manifest number: 073F
Signing time: Thu 16 Jul 2026 22:15:04 +0000
Manifest this update: Thu 16 Jul 2026 22:15:03 +0000
Manifest next update: Thu 23 Jul 2026 22:15:03 +0000
Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: cPegYU9qst0JlfHBuiZVteMVrmTp/XuG05WVmmQhMjY=)
2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: oGpaoJnN0XSnyU8TN0NZVM9McHxZfbUaTEUnM8LnSNk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl
rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:15:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1863 (0x747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8
Validity
Not Before: Jul 16 22:15:03 2026 GMT
Not After : Jul 23 22:15:03 2026 GMT
Subject: CN=6a5957e8-e755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dd:95:a1:84:d0:df:2a:e3:e0:e0:43:0c:46:
12:98:80:7b:59:3f:4f:22:1c:4b:8f:de:bf:e8:c0:
e5:90:2b:c6:74:e3:c6:7b:0d:76:8f:6a:83:2f:60:
60:81:a1:8a:38:05:8a:1c:20:92:1d:9b:17:b6:65:
ea:b4:65:0b:dd:bc:71:a8:9a:ea:80:be:55:9a:94:
3b:45:ac:a2:90:d9:df:7a:b4:01:f9:01:2b:9f:fc:
32:5e:3a:7a:e5:6f:e2:66:26:3e:26:3b:b3:b5:5c:
ba:f4:ce:a3:1e:ee:1c:f7:34:b1:19:f5:c5:30:3e:
4a:7d:80:97:76:17:09:9b:42:1d:f9:4f:18:90:12:
b1:47:58:96:a1:df:8a:17:d4:b0:a9:0e:de:77:0a:
47:b3:5a:09:35:02:9c:10:d7:27:32:f7:a0:b1:c4:
a5:62:f3:4d:fa:2d:e4:f5:78:fe:74:e2:c2:85:a5:
f3:8e:60:6e:a5:8c:19:98:27:9e:96:98:95:c0:b0:
cf:7b:73:ed:75:09:af:26:02:09:45:cc:55:43:09:
71:28:1a:fd:49:8f:5a:7e:92:15:17:d2:b5:73:20:
16:ca:13:cb:5b:32:88:92:00:f8:ba:e8:72:4f:8e:
6b:98:0b:c5:bb:a9:85:45:fa:70:4c:10:f2:96:8d:
d0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:92:8A:AD:5F:5D:C8:00:6B:7E:A1:98:F5:8F:DA:B5:01:3A:8C:0F
X509v3 Authority Key Identifier:
keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
19:b6:0c:b7:30:6a:4a:83:71:46:7c:0b:4e:af:d9:b5:71:b5:
45:35:22:6b:a9:e6:1f:ad:42:9e:e5:01:d9:7e:a5:80:43:68:
be:4f:38:f7:9e:35:ae:3d:c9:84:28:92:63:55:59:24:4e:62:
96:c8:9a:03:d4:98:02:b2:19:e2:c2:fe:d4:2c:45:ba:3e:5e:
63:31:98:f2:5a:88:84:8f:62:dc:c3:83:50:cb:1c:af:53:27:
d6:b5:1e:aa:ba:8d:8f:32:e8:48:81:3e:f3:c3:c6:01:0a:d5:
ce:24:e8:e3:d0:10:34:ca:ae:83:f7:be:3f:16:e8:b4:0d:3f:
2d:5f:39:28:42:9d:bf:75:42:2a:eb:ce:97:0f:8a:a7:49:3d:
29:da:70:3e:5f:df:dc:14:9d:e4:f3:46:4c:9e:70:88:f7:f8:
58:8f:c1:02:25:df:0c:a3:a3:ec:9c:0d:64:dd:d4:e7:1c:f3:
9f:c1:c5:c6:da:0b:9f:c7:2f:5b:ec:c3:bf:e8:56:4c:42:76:
18:34:92:2e:32:03:6a:96:6f:5d:a6:b2:48:52:a0:9d:4b:fe:
0c:19:1f:85:49:1c:17:9e:96:02:7f:bf:94:de:5a:db:46:c0:
c2:7d:7e:ba:da:69:26:c1:f5:50:ba:2e:6a:eb:ec:c7:ad:0f:
7d:ff:fe:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:54 2026 by rpki-client