
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft
File: 3604bKySNIOAxXSS2xjyvIScUoY.mft (raw, json)
Hash identifier: 4geE9/3e3f/HIhe22ruTELErP1PMdUmz4jP3gE48dQE=
Subject key identifier: BC:40:BD:4F:6E:FA:B5:F1:B8:96:1E:6C:A0:CF:B8:27:BC:4A:E7:E8
Authority key identifier: DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86
Certificate issuer: /CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286
Certificate serial: 0A27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft
Manifest number: 0A0B
Signing time: Sun 12 Jul 2026 19:48:36 +0000
Manifest this update: Sun 12 Jul 2026 19:48:36 +0000
Manifest next update: Sun 19 Jul 2026 19:48:36 +0000
Files and hashes: 1: 3604bKySNIOAxXSS2xjyvIScUoY.crl (hash: hj5qqZfQLw6UfQq0FdXFlrK+nlqkDAteegjgyTtOTIY=)
2: D3EAA0323F5A11F1AA7533B3A4833773.roa (hash: EWIgC3Wx3EH+woWoBUJtb6p5aUIWmHrjOLQsDMOov48=)
3: 361E40F8B7B411F09BC03F67C4F9AE02.roa (hash: ZLV8EGcNrcT7gsZ4PlTT+xsnBeM4Q23N20Z6Aox07W4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl
rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 Jul 2026 19:48:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2599 (0xa27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E36B, serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286
Validity
Not Before: Jul 12 19:48:36 2026 GMT
Not After : Jul 19 19:48:36 2026 GMT
Subject: CN=6a53ef94-00d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:92:13:b4:3c:dc:20:ba:40:ad:69:99:d0:89:
15:24:ac:0d:e5:fd:c4:1d:0a:85:30:32:cb:dc:5a:
69:e7:f0:f6:62:1d:47:80:9f:43:d5:ae:c9:30:fa:
78:b9:70:d7:2b:eb:f9:53:22:58:40:b6:46:ca:c5:
88:85:cc:a8:92:e5:1c:cc:8b:3c:86:84:79:3e:af:
a1:d6:8a:a8:43:70:4d:e5:66:fc:f1:e0:01:63:ca:
f4:a8:84:6e:21:62:3c:e5:28:32:ef:14:d7:4d:39:
4e:28:e1:96:82:c6:59:28:4b:11:eb:f0:b5:d1:85:
b7:6e:66:99:c8:8e:2c:db:1a:8e:ab:d2:62:74:7a:
b4:2d:76:c4:9c:75:2a:70:86:3f:7f:87:98:a9:16:
58:87:11:7b:83:07:cc:c9:93:b0:8b:5b:ca:b7:21:
e3:b7:ae:b4:6c:6b:0c:a2:ef:8c:ec:49:9c:6e:5c:
26:ac:ca:8e:9d:5a:8a:a5:8f:ce:9f:60:3b:98:79:
ae:c3:39:01:ff:27:3e:38:72:bd:7e:6d:79:e2:62:
ed:39:30:61:4d:ee:23:bb:e6:d8:ae:17:27:78:b4:
66:f1:93:22:7c:ce:6a:05:de:2d:56:59:17:cd:f4:
39:fb:07:34:81:ca:60:01:75:5a:91:22:0a:b6:37:
21:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:40:BD:4F:6E:FA:B5:F1:B8:96:1E:6C:A0:CF:B8:27:BC:4A:E7:E8
X509v3 Authority Key Identifier:
keyid:DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
50:cd:57:dc:5c:0e:7b:c6:6c:28:e5:73:a5:1f:67:4d:17:6a:
68:2b:df:56:b9:bb:05:24:ca:59:72:28:f0:82:bc:bf:e1:88:
2b:41:69:d2:92:d7:86:3b:78:2e:09:86:9a:05:a6:ab:77:49:
ad:f9:75:47:1c:0e:47:2e:74:e7:91:da:e8:57:df:d5:40:e1:
c9:49:02:5c:f7:e3:90:4c:2c:46:b9:c5:0d:94:34:7d:34:3f:
87:ad:7e:21:99:85:f9:8f:d4:17:69:ad:e4:46:f8:08:a2:09:
5b:70:65:5f:f4:25:8e:51:2f:15:e7:41:ad:39:66:cc:b5:0d:
be:2a:60:20:ac:c4:1f:ed:2b:8f:1d:51:71:1f:66:b9:91:ea:
74:db:b9:aa:2b:13:61:d6:08:12:af:a8:b4:9a:c3:eb:9c:1f:
1e:ca:3b:df:87:20:fb:9b:df:a9:b0:47:8d:bf:96:2e:a5:d3:
61:94:04:76:c5:7b:c2:3c:04:5c:14:ae:89:5a:d6:f5:9f:ec:
40:f7:28:2f:73:e9:b7:b8:ba:dd:36:e5:9b:f4:c1:e5:cc:cf:
08:00:cd:f4:ff:dd:12:9c:93:85:1d:fc:92:aa:5f:cb:62:57:
f3:3c:36:d0:fb:24:a9:57:01:3a:50:2f:6c:6a:9b:c1:eb:12:
30:17:4d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 09:44:59 2026 by rpki-client