
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json)
Hash identifier: 47vR8/SCDPYdqHnmcRx1Q7Pl+fgATrXUQVmGKNF5Nv0=
Subject key identifier: 01:00:CF:3E:84:4F:24:2B:36:5A:23:3E:6D:02:B1:82:9F:5C:42:BC
Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
Certificate serial: 0333
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
Manifest number: 032D
Signing time: Sat 11 Jul 2026 01:37:45 +0000
Manifest this update: Sat 11 Jul 2026 01:37:44 +0000
Manifest next update: Sat 18 Jul 2026 01:37:44 +0000
Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: xSs2lT4EpXBlRAr1E2dEp4C8izPSYPRWR1H6gL3YErI=)
2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: EI6GzHfnkWqNaMVXOSJiD8mcwGEHnHoi3RAZSaS8pSA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl
rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 01:37:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 819 (0x333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
Validity
Not Before: Jul 11 01:37:44 2026 GMT
Not After : Jul 18 01:37:44 2026 GMT
Subject: CN=6a519e69-b833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:9b:3d:6e:a1:33:41:ae:ef:05:81:15:d4:
6f:03:2f:14:c4:48:6d:54:8c:eb:27:45:d0:90:91:
32:5b:ed:a1:be:04:f0:96:08:19:17:a5:e0:33:ea:
57:04:e5:59:85:e5:e6:15:80:85:47:b1:0a:85:6f:
6f:72:b1:18:3a:5a:ff:5f:1b:60:c5:c3:14:4c:f3:
6d:c5:40:79:de:49:51:4c:d9:f0:76:79:a6:34:dd:
e5:a0:40:2f:6a:7c:43:b6:23:31:bc:9b:3c:41:79:
eb:28:5a:41:e9:a1:79:ff:7a:fe:99:27:aa:83:35:
ae:33:98:de:97:b3:5e:36:4d:b7:90:90:8c:34:2c:
f8:ae:34:f1:cb:85:1d:05:33:86:6a:ff:cc:a1:14:
92:8b:dc:a9:34:7f:14:ad:f1:bd:9a:c6:12:55:a9:
f3:b5:86:7e:d2:87:f4:2c:30:8f:90:6c:14:52:07:
05:a6:ef:a5:18:dd:94:5e:c5:b8:1c:f7:0b:74:3e:
7e:92:41:35:54:22:fc:47:f2:6b:14:6a:80:fb:4b:
bf:67:ae:88:43:50:39:69:d4:5a:f1:6b:2c:a8:c8:
f5:5c:11:f8:25:bd:04:c9:8e:11:ff:f7:c5:cf:d0:
92:dd:4b:f0:f7:ec:b9:4a:29:26:15:bc:e9:a6:59:
d8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:00:CF:3E:84:4F:24:2B:36:5A:23:3E:6D:02:B1:82:9F:5C:42:BC
X509v3 Authority Key Identifier:
keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:e3:aa:63:b5:3b:8b:9d:15:88:9d:f9:33:bc:74:b8:38:f4:
04:5c:6b:ea:84:14:85:dc:b3:21:dc:e8:f9:33:ed:fc:c8:06:
f8:04:97:8a:78:f8:d8:c3:0c:1e:ef:74:7a:3e:fa:a5:26:01:
1a:10:e7:a6:fe:77:85:ab:13:67:ad:46:b0:8a:29:ce:b3:20:
3d:2b:03:18:ba:9d:5e:96:49:6a:4b:5a:14:20:23:37:b1:7f:
a4:e1:7a:d8:60:f0:e4:61:63:43:b4:18:06:d1:73:e8:41:31:
62:4d:96:00:3a:87:58:42:75:27:e1:43:ea:44:0a:bf:5f:39:
da:3f:b3:26:54:64:b7:78:4f:4c:b9:50:01:d2:64:ed:d3:c4:
93:8e:82:14:82:f6:d4:28:3f:13:ea:89:1c:4b:f6:1e:18:7a:
62:06:b0:a8:b2:4b:4b:15:58:71:f8:a6:19:64:23:64:35:44:
44:e5:45:b9:cf:bd:fe:1c:ec:31:66:58:be:c9:71:72:eb:50:
0a:77:ae:60:7d:57:85:f8:0c:41:a6:ca:4f:17:d9:a2:f0:94:
e1:b3:4c:82:47:bf:d5:ba:ae:5d:86:84:4e:72:6a:cc:4e:4e:
e1:cd:f8:7c:9c:74:52:95:ca:9f:39:2f:75:49:44:c5:9d:1f:
70:49:d7:ef
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz
QkVEMTk0NDEwHhcNMjYwNzExMDEzNzQ0WhcNMjYwNzE4MDEzNzQ0WjAYMRYwFAYD
VQQDEw02YTUxOWU2OS1iODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyvmbPW6hM0Gu7wWBFdRvAy8UxEhtVIzrJ0XQkJEyW+2hvgTwlggZF6XgM+pX
BOVZheXmFYCFR7EKhW9vcrEYOlr/XxtgxcMUTPNtxUB53klRTNnwdnmmNN3loEAv
anxDtiMxvJs8QXnrKFpB6aF5/3r+mSeqgzWuM5jel7NeNk23kJCMNCz4rjTxy4Ud
BTOGav/MoRSSi9ypNH8UrfG9msYSVanztYZ+0of0LDCPkGwUUgcFpu+lGN2UXsW4
HPcLdD5+kkE1VCL8R/JrFGqA+0u/Z66IQ1A5adRa8WssqMj1XBH4Jb0EyY4R//fF
z9CS3Uvw9+y5SikmFbzpplnYzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAEAzz6E
TyQrNlojPm0CsYKfXEK8MB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4
QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js
RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW
TTRjcXlqZGlLX2M3N1JsRUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAneOqY7U7i50ViJ35M7x0uDj0BFxr6oQUhdyzIdzo+TPt/MgG+ASXinj42MMM
Hu90ej76pSYBGhDnpv53hasTZ61GsIopzrMgPSsDGLqdXpZJaktaFCAjN7F/pOF6
2GDw5GFjQ7QYBtFz6EExYk2WADqHWEJ1J+FD6kQKv1852j+zJlRkt3hPTLlQAdJk
7dPEk46CFIL21Cg/E+qJHEv2Hhh6YgawqLJLSxVYcfimGWQjZDVEROVFuc+9/hzs
MWZYvslxcutQCneuYH1XhfgMQabKTxfZovCU4bNMgke/1bquXYaETnJqzE5O4c34
fJx0UpXKnzkvdUlExZ0fcEnX7w==
-----END CERTIFICATE-----
Generated at Sat Jul 11 12:04:33 2026 by rpki-client