
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json)
Hash identifier: v5nJlLItJ584sO9kRo2mSddS9WDEfvgT9ykgPzFEuDc=
Subject key identifier: C8:1D:4F:91:C4:CB:71:16:53:E6:11:7B:7F:FD:D0:04:BB:BB:D6:C4
Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5
Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5
Certificate serial: 04BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
Manifest number: 04B9
Signing time: Fri 17 Jul 2026 00:27:24 +0000
Manifest this update: Fri 17 Jul 2026 00:27:23 +0000
Manifest next update: Fri 24 Jul 2026 00:27:23 +0000
Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: jFCZdkYRXD2lsjUa3DvRtAHnetkeODJ8w1Uc9Z3Qg/E=)
2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: 2diXZhIHeiTIXtGE7hgkGrF2mxwMF4mve/3rvi/DmaA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl
rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215 (0x4bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5
Validity
Not Before: Jul 17 00:27:23 2026 GMT
Not After : Jul 24 00:27:23 2026 GMT
Subject: CN=6a5976eb-3ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a6:e8:b3:86:1a:27:56:de:ba:20:91:cc:29:
2b:e5:0e:0d:c9:d2:b9:7d:3c:85:d6:93:1b:5c:28:
a6:e0:8b:00:10:01:87:79:b1:0e:21:f9:d7:3c:a7:
d4:7d:4f:a2:af:51:94:13:ff:30:9e:7b:c5:1d:3d:
ee:d0:80:7e:e9:0f:dc:b1:11:b8:1f:d4:08:a2:4d:
e3:4a:97:60:5d:91:08:c3:3b:e0:a2:f6:35:51:e2:
ff:4f:bd:3e:77:44:a8:75:40:05:5e:99:5d:ea:a9:
7a:5a:e3:5e:fe:b6:9c:e9:44:82:a8:8c:be:88:94:
66:7c:b9:f6:77:03:86:44:b0:c0:2c:1f:bd:1c:68:
41:1d:59:5f:4a:3b:9e:b6:cb:b5:91:7f:5b:ac:72:
bc:f2:e3:09:08:e4:80:3d:a1:06:b5:b8:c4:f3:48:
c3:ff:44:b0:e3:e8:76:85:09:cb:70:18:93:0c:ce:
32:b6:a5:b4:2b:c9:55:18:ed:6c:0d:08:83:5f:7a:
86:d8:af:7d:48:63:9e:fb:15:89:94:3a:2f:9a:a3:
9a:83:63:23:fa:ec:3e:7b:b0:44:f0:b3:d2:66:27:
b4:bb:45:13:0c:73:99:93:1e:e7:82:01:e8:7b:32:
3c:e9:bf:8d:f5:f1:09:fc:c0:f3:59:d7:8f:66:4c:
a5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1D:4F:91:C4:CB:71:16:53:E6:11:7B:7F:FD:D0:04:BB:BB:D6:C4
X509v3 Authority Key Identifier:
keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7f:5c:5c:3d:b2:4e:2d:93:06:e9:0e:47:49:3c:f0:cb:e1:87:
f0:32:8a:8b:90:52:9d:4e:2d:fd:95:ad:e7:20:27:cf:5d:8d:
6c:03:d4:91:b8:72:ae:1e:1f:63:1f:a2:e2:1a:f7:ac:03:6e:
f1:37:81:e1:8a:c9:19:b6:fa:f7:4f:f4:d8:56:cc:6e:54:79:
df:86:e1:73:19:d9:21:8b:bf:7b:e7:c3:eb:c7:5f:19:4e:f5:
0e:24:9f:e9:49:d8:18:2a:7b:b6:d5:34:da:0e:42:6e:71:51:
20:41:0f:11:94:e4:f8:e0:55:b8:b2:86:14:36:71:5d:69:fe:
cf:62:2c:55:96:67:e4:36:ed:45:f9:ae:2d:3a:ed:9d:f2:ef:
e3:94:c4:75:61:d4:5b:7c:1e:d7:7c:aa:ea:54:37:9f:9c:e0:
d2:10:44:d5:5d:55:1a:e6:43:14:06:c6:55:2e:b1:b4:61:eb:
57:fe:2a:f4:4d:4a:fa:90:f4:1c:27:6d:99:ff:ad:d5:76:08:
3a:61:fc:11:e3:41:15:ab:b3:c7:9c:a1:b9:ca:c8:75:a2:26:
3e:65:d3:ee:a5:7a:a2:44:18:55:79:db:92:73:ab:03:28:6b:
65:7c:b9:c0:54:36:2e:1d:93:c2:74:1f:f1:ac:b2:56:3c:e5:
d1:a3:49:aa
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2
NUFBRTFEQzUwHhcNMjYwNzE3MDAyNzIzWhcNMjYwNzI0MDAyNzIzWjAYMRYwFAYD
VQQDEw02YTU5NzZlYi0zZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsKbos4YaJ1beuiCRzCkr5Q4NydK5fTyF1pMbXCim4IsAEAGHebEOIfnXPKfU
fU+ir1GUE/8wnnvFHT3u0IB+6Q/csRG4H9QIok3jSpdgXZEIwzvgovY1UeL/T70+
d0SodUAFXpld6ql6WuNe/rac6USCqIy+iJRmfLn2dwOGRLDALB+9HGhBHVlfSjue
tsu1kX9brHK88uMJCOSAPaEGtbjE80jD/0Sw4+h2hQnLcBiTDM4ytqW0K8lVGO1s
DQiDX3qG2K99SGOe+xWJlDovmqOag2Mj+uw+e7BE8LPSZie0u0UTDHOZkx7nggHo
ezI86b+N9fEJ/MDzWdePZkylBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMgdT5HE
y3EWU+YRe3/90AS7u9bEMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG
M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI
Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu
MUJhaDdnYXpHd0ZscXVIY1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAf1xcPbJOLZMG6Q5HSTzwy+GH8DKKi5BSnU4t/ZWt5yAnz12NbAPUkbhyrh4f
Yx+i4hr3rANu8TeB4YrJGbb690/02FbMblR534bhcxnZIYu/e+fD68dfGU71DiSf
6UnYGCp7ttU02g5CbnFRIEEPEZTk+OBVuLKGFDZxXWn+z2IsVZZn5DbtRfmuLTrt
nfLv45TEdWHUW3we13yq6lQ3n5zg0hBE1V1VGuZDFAbGVS6xtGHrV/4q9E1K+pD0
HCdtmf+t1XYIOmH8EeNBFauzx5yhucrIdaImPmXT7qV6okQYVXnbknOrAyhrZXy5
wFQ2Lh2TwnQf8ayyVjzl0aNJqg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 13:32:44 2026 by rpki-client