
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json)
Hash identifier: rQcQxiaUAx5OcHUyJjoN5JG3uysYC7eOr5HrmVoe1Fs=
Subject key identifier: 68:64:84:A2:A1:AA:40:C0:55:22:B8:57:CB:34:B3:E6:26:55:5A:C4
Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1
Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1
Certificate serial: 0825
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
Manifest number: 0819
Signing time: Mon 06 Jul 2026 21:39:08 +0000
Manifest this update: Mon 06 Jul 2026 21:39:07 +0000
Manifest next update: Mon 13 Jul 2026 21:39:07 +0000
Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: sNxa2ZU96j26qSy+PQPtGUo6UOI+nVMvYa98VoDyjww=)
2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: E6etJLs09jxCInikK/I6oSWS8vZ+7fWKirFeSQZQozk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl
rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 21:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2085 (0x825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1
Validity
Not Before: Jul 6 21:39:07 2026 GMT
Not After : Jul 13 21:39:07 2026 GMT
Subject: CN=6a4c207c-f1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8a:af:41:5e:34:90:21:ad:fa:e8:6b:f9:a1:
7b:ad:9b:5f:16:62:1a:b2:46:00:2b:6d:40:85:a9:
86:27:cc:58:bb:38:ed:69:3f:1b:6d:af:75:9d:da:
b7:47:8a:9d:fa:c1:00:b2:22:f9:43:a8:89:93:cf:
d4:2d:54:8a:91:d8:9c:5c:7a:d1:b3:51:68:fc:07:
b5:9d:41:28:7b:7a:03:53:19:f8:db:ee:c6:b7:a3:
ed:09:96:83:9f:17:ef:2d:9f:e7:8e:7a:38:c8:cf:
c0:ae:ca:f3:a9:82:0d:df:de:31:1a:12:7c:c1:b9:
00:69:76:46:d6:8d:61:4b:85:6c:4f:35:6b:de:f5:
6e:c7:ab:20:34:dd:4d:f9:fa:67:3c:28:d0:e9:63:
e9:96:0b:fa:f1:99:50:11:95:9e:fa:13:ac:e7:bf:
01:c8:e2:58:66:d8:19:fc:cc:2a:04:60:47:e6:2b:
72:6f:6e:ca:bc:e5:08:81:ef:0e:64:5a:1d:4b:f4:
bd:29:a2:e4:48:e9:c2:16:74:78:fe:72:8f:8e:9f:
2a:7c:d0:89:38:6c:9c:16:86:f0:ce:62:04:5d:97:
f8:a2:d6:e4:67:ba:c9:89:f8:b1:db:41:a6:5c:30:
7e:fe:ee:9d:85:e9:5e:02:8c:c1:37:12:33:a5:90:
3c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:64:84:A2:A1:AA:40:C0:55:22:B8:57:CB:34:B3:E6:26:55:5A:C4
X509v3 Authority Key Identifier:
keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:c7:01:4e:05:ff:d7:4e:36:7a:bc:70:a9:01:02:e2:83:6d:
c4:3e:8a:1e:9b:e2:ce:d6:1e:89:b4:02:9f:b4:bc:3b:df:1c:
38:bc:42:f8:3c:c7:fd:ea:a8:66:c7:ff:5e:cc:73:44:68:d6:
89:aa:5a:01:5d:a4:66:2e:6c:9f:aa:d9:02:0d:84:45:1a:80:
91:45:f7:74:6a:92:e1:b3:7a:90:53:1a:e3:c2:43:2f:19:1c:
5f:60:c7:3f:92:b2:f7:e9:c6:ca:34:29:06:f6:2a:5f:19:c8:
ac:76:60:b1:11:ae:c8:f3:0a:f2:3b:70:03:50:24:4d:68:db:
b4:d2:37:e5:d7:bf:6b:09:6b:f4:1c:cb:d9:d1:3c:a3:ef:ec:
ea:2a:36:07:f7:d0:48:87:7c:26:d6:76:4a:98:4c:f3:c4:fb:
fc:95:c8:17:b7:b1:03:1c:22:f7:90:b5:72:30:69:c5:2f:24:
bf:ab:55:17:d5:75:77:7c:8c:b1:f4:ee:5b:0e:e7:a2:35:83:
8e:5f:18:c1:1e:5b:f4:33:c9:60:68:e0:88:67:c9:86:bb:b9:
85:5a:d2:67:2b:61:c6:11:0c:ba:f3:ce:0e:6d:48:ae:b6:25:
34:26:d6:d6:48:68:dc:45:de:55:bb:39:58:41:19:9b:79:df:
16:57:98:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 16:52:16 2026 by rpki-client