
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft
File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json)
Hash identifier: DUQW8ZWoyKnoI8AkPTmF5P3l/6o5YpPUZUnUOrteURQ=
Subject key identifier: EE:28:03:D4:09:D7:D8:62:A3:E6:6A:5A:A6:6E:5B:40:1E:92:17:D5
Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A
Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A
Certificate serial: 0440
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft
Manifest number: 041E
Signing time: Fri 17 Jul 2026 01:00:42 +0000
Manifest this update: Fri 17 Jul 2026 01:00:41 +0000
Manifest next update: Fri 24 Jul 2026 01:00:41 +0000
Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: QoTL2vzHXbNK61WYX8lmYMpvo+LGqZFtpFDZ+MLEsug=)
2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: Ta8P8ZlJNRZOOFxGWrA6sGVXlUCQZKAEPu0o6UyWhpE=)
3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: X3lbzZGPgotkq76L6mKpw9+PljAruzWQzmyb0blRPVs=)
4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: H4XlQT8YJyI/+h2ZQgxbC5lWcfJk5rnOXu02XWl3y7o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl
rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1088 (0x440)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130138, serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A
Validity
Not Before: Jul 17 01:00:41 2026 GMT
Not After : Jul 24 01:00:41 2026 GMT
Subject: CN=6a597eb9-61a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:b7:e8:73:71:9d:3c:f7:53:60:fa:91:6c:
3a:1f:16:06:53:c7:bc:f7:7e:52:b1:a6:24:8b:37:
d7:f2:fe:48:14:7f:8d:77:aa:50:62:28:98:7c:c9:
9e:c7:7b:bd:30:2f:10:12:c1:98:ac:ae:f5:c3:99:
c5:20:b6:43:e4:43:11:04:53:f0:b9:b8:be:65:f1:
e7:67:ce:48:cd:0c:1b:c5:89:31:36:1d:20:60:2d:
9e:94:d8:2d:84:ab:be:f3:95:27:0a:99:59:c2:bd:
1f:ce:43:c4:6e:fb:02:72:d9:ab:23:5a:dc:28:b7:
28:ef:17:d4:ba:f5:0f:71:51:c5:d2:6d:b3:bb:05:
11:47:4e:a4:fa:12:21:9b:2f:c2:5a:27:97:63:93:
4b:6a:f6:31:8b:5d:91:aa:a5:3f:d9:07:cd:30:61:
b9:63:6b:09:7a:a0:71:7f:76:0b:42:4e:e7:b6:9a:
ff:2d:46:00:3e:a3:f2:15:f4:d4:94:70:40:f5:01:
8b:7e:8c:94:04:df:71:74:f2:22:2a:03:ee:1f:16:
f4:e6:9c:83:7d:6b:6d:da:b5:a8:27:8b:74:60:de:
da:6c:f3:e3:6c:46:4a:15:db:fa:e2:57:46:17:73:
8e:af:ce:26:f4:7f:00:5b:e1:15:54:27:d7:79:87:
dc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:28:03:D4:09:D7:D8:62:A3:E6:6A:5A:A6:6E:5B:40:1E:92:17:D5
X509v3 Authority Key Identifier:
keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:d6:e0:0a:45:84:3a:c3:d1:7e:b1:56:b7:88:51:3c:96:11:
b2:d8:4c:f6:97:22:c0:df:1e:d4:b9:23:d5:20:fe:64:54:9e:
34:c8:e2:91:3d:7c:17:3c:c5:00:89:c7:62:0f:8d:59:87:ff:
e3:81:62:f6:a2:56:45:7b:c1:ef:11:a8:f1:06:dc:60:23:8f:
e6:d0:86:65:f9:fa:d0:9e:46:0c:49:81:08:f0:cb:79:b7:a1:
3e:60:b3:6d:2b:9d:45:d4:90:74:a8:20:77:f5:a8:b8:47:e7:
5e:29:f5:cf:75:e6:24:4d:67:e0:d2:06:be:44:1d:74:76:a6:
8d:0f:fd:05:49:dc:16:e8:f7:06:59:8f:bc:e1:bc:c5:b2:61:
ca:e0:be:85:40:08:5f:fa:26:9d:0f:44:fb:b4:1f:bc:b7:be:
43:b7:15:81:77:78:1b:0d:39:12:42:a1:68:76:5c:73:63:8f:
da:e4:9c:e4:c1:f6:0e:4e:da:cb:07:da:53:da:ed:8e:fb:e9:
48:dc:82:5f:95:b7:55:e6:f9:6a:9e:22:cf:2b:eb:11:b7:33:
5b:b4:f1:cf:67:24:09:5d:86:c6:7b:ca:7e:b3:22:ca:4a:b9:
80:0b:5a:60:b3:17:6f:7e:85:5d:b1:22:b7:1e:62:14:27:2e:
8e:cf:12:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:32 2026 by rpki-client