
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft
File: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft (raw, json)
Hash identifier: 8wReu4AsU+aRHoyYrSgJGN3DMJaNT+ZySKl3zlAvyRc=
Subject key identifier: 70:26:47:89:42:D8:0B:74:63:70:73:BA:92:8D:48:62:FF:25:B5:6D
Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B
Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B
Certificate serial: 01A6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft
Manifest number: 0194
Signing time: Fri 17 Jul 2026 05:32:26 +0000
Manifest this update: Fri 17 Jul 2026 05:32:26 +0000
Manifest next update: Fri 24 Jul 2026 05:32:26 +0000
Files and hashes: 1: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl (hash: GW2Hg5qdoNAZ5PHX1I6Om/yMyOBrz8AFtFHIqB4/ePQ=)
2: A63B6120238711F08D2B4460C4F9AE02.roa (hash: CSNhoZkKt729AJAsDVCNWknT1CnJ47gjrYdcuOI20TM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl
rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:32:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422 (0x1a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9134B4A, serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B
Validity
Not Before: Jul 17 05:32:26 2026 GMT
Not After : Jul 24 05:32:26 2026 GMT
Subject: CN=6a59be6a-5c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:77:e0:44:a8:e1:9d:d6:b7:9a:cf:2d:30:
8f:60:84:d7:cb:ac:25:38:2f:60:86:3f:e7:0f:5b:
2b:df:98:71:bf:fb:8e:f0:ea:9b:ea:44:9b:ef:4a:
4d:e2:38:69:be:96:8c:9e:a4:6d:d4:98:95:2c:2a:
c3:a0:a4:02:d2:57:ed:20:37:33:ec:0a:c8:81:7c:
48:d0:bd:76:2e:05:e4:b9:6c:69:52:43:34:60:92:
88:60:0e:d6:22:55:d5:3b:aa:9b:75:13:b3:1d:77:
34:11:39:a9:ac:d9:b4:b1:90:60:10:a8:f8:f0:43:
a2:99:36:2f:13:a4:7b:ba:83:49:44:ef:2d:67:fd:
8d:e9:e4:07:66:29:0c:80:ca:b9:67:3b:c6:ee:b3:
86:ac:dd:3e:b8:86:52:9c:48:3f:e5:b5:2d:64:e3:
7e:0f:81:78:b5:30:2f:ec:ac:24:f4:5b:2b:6e:07:
35:44:dc:c3:58:f7:ba:ea:5b:18:3d:0d:fe:1c:fe:
ce:4e:bb:3c:f6:05:ea:fc:c1:86:76:49:e1:1d:37:
b4:bc:0f:cb:14:97:45:1b:d0:9e:12:9e:1b:40:e4:
4e:17:34:cd:11:49:76:8c:15:4e:7d:be:09:fd:5d:
e2:b2:25:19:1e:4b:07:e9:ed:fa:3c:82:6e:91:80:
b7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:26:47:89:42:D8:0B:74:63:70:73:BA:92:8D:48:62:FF:25:B5:6D
X509v3 Authority Key Identifier:
keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
16:90:30:c2:63:b3:68:32:2a:ef:b9:35:f6:63:2a:44:12:ef:
63:08:46:6c:03:86:e4:29:fb:cb:8b:da:a8:80:5c:31:01:52:
b4:da:d2:4f:20:3f:79:62:6b:39:67:e5:8c:2a:07:a3:15:b9:
6a:e2:74:3d:99:1b:30:99:f6:ed:45:86:ae:fb:98:be:bb:42:
7b:71:14:37:06:eb:7e:16:09:c0:b6:8e:35:08:38:f2:a6:54:
47:bf:82:4c:e6:02:6a:9c:72:42:b1:cd:4c:6a:fc:f7:95:3a:
5c:93:92:46:78:0f:5f:28:b1:49:a5:16:cb:f1:42:04:58:9b:
92:11:22:dd:e1:6d:25:09:b5:6e:5c:c0:cd:b9:4b:0b:52:a0:
34:13:8f:b1:14:e6:c0:a6:00:4c:2e:dd:1f:88:36:74:37:12:
b7:e6:39:f3:8a:09:72:12:5b:b9:a4:6b:f3:c8:f4:be:86:d1:
78:25:38:00:aa:4c:71:73:bf:fc:cc:52:87:b9:ba:d9:72:56:
8e:2b:fc:78:ac:2e:57:49:63:40:8f:0b:81:c6:d6:27:57:d9:
fb:ad:df:39:55:a5:eb:8d:01:83:63:88:21:e6:1d:cd:59:74:
32:18:dd:46:00:6a:70:e6:82:7d:37:ae:4d:cd:33:a4:95:92:
28:f4:23:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:00 2026 by rpki-client