
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json)
Hash identifier: NHwJKVFibG5JofhifnIVXLjrBQQKM9+4JP6bkYvd65k=
Subject key identifier: 97:59:0F:99:EB:DB:1C:AC:68:AE:D1:B8:56:F8:20:B2:AF:1F:D5:C4
Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF
Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF
Certificate serial: 057D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
Manifest number: 0573
Signing time: Thu 09 Jul 2026 00:25:40 +0000
Manifest this update: Thu 09 Jul 2026 00:25:40 +0000
Manifest next update: Thu 16 Jul 2026 00:25:40 +0000
Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: o09DQIayjsUi9ZiQvwoYN5TZCyL07ZPf05kKwOw/l3o=)
2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: bR2E+gd+wrOJUwU1dHm00di9g4h4d99vt7PxzQB7b14=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl
rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 00:25:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1405 (0x57d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF
Validity
Not Before: Jul 9 00:25:40 2026 GMT
Not After : Jul 16 00:25:40 2026 GMT
Subject: CN=6a4eea84-5941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fe:a8:58:27:5b:e8:5f:38:b4:0b:90:1c:c7:
21:32:fe:45:90:2f:5f:e9:79:f1:80:00:68:4c:96:
eb:f9:e9:58:11:1a:10:64:b5:5e:27:f7:27:85:75:
e8:f6:af:1a:19:9d:fb:c7:72:55:07:13:ad:11:c7:
a7:6f:00:1f:4f:a2:fc:64:07:f1:4d:f6:df:f5:4a:
96:02:12:77:6e:8c:2d:20:96:5b:df:30:41:28:67:
69:29:c5:1e:ea:78:e8:ee:eb:74:a9:33:85:f3:de:
dd:1f:19:4b:3f:ae:c7:05:f6:7f:89:ef:03:44:82:
ec:e3:ff:5b:d8:ca:30:a2:80:e5:7c:99:c2:f6:81:
a2:f7:6a:77:7e:59:8a:b5:11:92:a0:6e:cb:c4:58:
4e:0d:31:a0:f5:39:4d:95:2c:71:12:dc:af:7c:c7:
5b:98:f0:1d:77:b3:25:e9:41:ea:3a:eb:a9:fd:7e:
24:da:07:da:d3:56:4a:9f:64:57:ac:7b:68:63:65:
8a:6a:5b:cc:c7:64:26:88:15:24:4e:80:ee:8f:f9:
d1:e8:80:58:41:aa:c4:c0:79:7a:ba:a5:27:a7:aa:
d2:0a:98:f8:19:43:aa:81:5c:38:c7:3b:e7:c4:52:
0a:04:34:2b:17:d0:15:0a:1c:b6:51:a5:b2:4c:57:
6b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:59:0F:99:EB:DB:1C:AC:68:AE:D1:B8:56:F8:20:B2:AF:1F:D5:C4
X509v3 Authority Key Identifier:
keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6f:5a:12:0f:ef:83:56:72:6d:ed:e4:bf:d8:e7:bb:91:de:85:
d5:b8:1a:b9:52:3a:db:eb:43:b0:b5:ab:29:6b:f1:fd:b6:d2:
c9:4e:e7:ee:b7:5b:94:21:a2:5f:93:e9:ef:44:cb:e3:f4:40:
80:16:b3:6d:66:db:36:17:34:e7:b9:99:8e:4c:bf:dc:85:07:
9f:17:63:da:3a:0d:d8:65:6a:fc:a9:a4:64:a9:86:ee:9e:56:
4b:16:1b:e1:b6:ba:42:64:27:a7:65:8d:8d:24:4c:c4:04:3b:
99:3d:be:ac:a4:ba:01:e1:6d:9f:13:7c:b8:05:88:ca:2a:8e:
5d:a8:46:f4:fc:33:83:47:4a:a3:73:95:61:0a:2e:98:b3:a4:
7f:4c:83:a3:29:5a:c8:dd:8f:74:0f:30:d6:8f:31:af:54:cc:
93:8c:c6:f5:69:66:f3:8b:5f:ac:16:b7:49:86:a6:d6:b5:cb:
e4:bb:4f:2e:65:3d:00:4c:b1:2e:26:9e:44:db:94:62:fb:ce:
a0:c1:d5:50:1b:88:40:b7:6a:a3:a2:80:46:ea:52:39:0c:d9:
7e:e4:eb:e5:f8:f0:5b:48:2c:c3:56:3b:f8:ce:93:f0:6c:d8:
37:bd:f8:a6:91:bf:b8:81:73:dd:c7:3e:7d:10:a2:30:78:f9:
04:7a:a6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:40:22 2026 by rpki-client