
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
File: bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json)
Hash identifier: TT+2fCcqAUehUnb9Nyfn5uttW38oiK3/I1XVlfuFSpI=
Subject key identifier: 4A:1D:FA:AF:92:54:27:DD:08:DB:F8:3F:33:15:71:00:95:E5:28:9B
Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D
Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D
Certificate serial: 09D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
Manifest number: 09C1
Signing time: Sat 04 Jul 2026 20:02:46 +0000
Manifest this update: Sat 04 Jul 2026 20:02:45 +0000
Manifest next update: Sat 11 Jul 2026 20:02:45 +0000
Files and hashes: 1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: +exParoAWuqII6ga0Gh6a5SH6ZdiMJ2oqIQFbFhGSEA=)
2: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: K9ygKHUO5qXA1XG+AYxwcORvRSOsX7Vi56bxTzrxJe8=)
3: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: 3mYXKQGPTclvrVN59MFw/zfTsvZixKAABlHasf+SFZU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl
rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 20:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2515 (0x9d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D
Validity
Not Before: Jul 4 20:02:45 2026 GMT
Not After : Jul 11 20:02:45 2026 GMT
Subject: CN=6a4966e6-ce1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9f:3f:62:10:2c:0e:b3:84:41:ce:5f:7b:71:
47:af:cd:75:bb:ba:a9:77:22:46:39:8a:e8:14:a1:
88:43:15:76:6f:86:d9:75:2e:c3:e5:41:cc:48:5e:
01:90:cb:c3:72:02:b9:b2:74:70:42:6b:32:72:2a:
7f:c7:61:7a:4e:a3:25:4e:3c:f7:69:b5:39:06:6e:
9a:a0:1a:cf:d2:6c:9d:82:bb:9b:87:ac:0f:cf:71:
18:d9:78:11:b8:89:f0:8b:90:2c:8f:7b:80:29:fa:
96:3c:c3:6c:a1:4b:e7:86:37:23:22:20:27:a8:06:
de:be:61:63:da:49:ee:56:27:b9:1a:71:69:8c:69:
b9:9b:11:eb:9e:12:1e:76:ee:a5:97:75:0a:df:47:
e3:ff:ad:c8:29:f0:d3:88:d2:2d:66:9f:4f:ab:23:
ff:ab:15:ac:a9:cb:79:ef:37:73:72:83:a5:11:f2:
dd:28:57:03:87:28:3e:8a:5c:78:63:55:59:de:3d:
6a:c8:7c:46:68:24:0d:7b:23:de:56:1e:03:ab:f9:
ef:00:f0:06:94:dd:17:39:cc:09:b6:72:c1:a1:8f:
fa:67:59:e2:c5:29:28:c1:e5:d6:71:c5:d0:08:a2:
ea:a0:b6:e5:e2:85:b3:81:72:ea:03:36:9d:06:2f:
58:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:1D:FA:AF:92:54:27:DD:08:DB:F8:3F:33:15:71:00:95:E5:28:9B
X509v3 Authority Key Identifier:
keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:1b:d5:7b:57:c2:2e:40:6a:18:c0:6e:c8:0a:8c:1d:37:fe:
55:4a:d4:ff:7b:d7:2c:08:1e:4f:91:3f:d8:6f:b6:8a:f1:fe:
77:af:38:d2:87:51:57:8c:5c:e1:69:84:62:0f:c5:a7:31:cc:
58:0d:5a:28:95:be:52:ee:f8:3d:be:b4:80:23:06:d2:52:6d:
16:4c:06:a9:da:5d:4d:7a:d3:77:4b:ae:49:24:a0:ee:40:48:
40:57:da:89:2b:06:af:2f:4b:f9:92:9e:eb:86:3b:bc:50:92:
89:5d:89:d0:1a:a3:e2:75:f0:b3:13:61:d4:7a:2e:0e:be:3b:
aa:ff:bf:d0:c3:cd:0d:2c:f5:94:2b:65:76:35:59:6a:b1:39:
53:15:2f:9a:a8:c2:00:10:53:d8:00:3b:34:b1:15:79:21:33:
9f:44:75:df:19:0b:23:fc:dd:89:60:21:ab:82:f8:1c:cd:6a:
81:ec:7d:9e:94:56:79:af:64:d1:d4:e9:4a:1a:6c:c7:56:f2:
df:d4:62:52:1a:59:65:4b:5d:de:e6:7a:b0:9d:82:d2:04:1d:
cd:fd:75:a7:db:36:c7:19:3f:1f:13:80:71:02:a7:2c:60:ec:
b0:a1:42:4e:3b:c6:8f:92:47:c2:2c:61:64:46:ac:44:19:13:
d9:5f:cc:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:43:39 2026 by rpki-client