
$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft
File: 9ES43awaKuycmNiYFhxzSCwu1Ig.mft (raw, json)
Hash identifier: SHN8fh6CdxBKkQ6MBixnPAvoWK/FzJgJDAB7lkDt67w=
Subject key identifier: 22:0E:74:C4:C0:1E:A5:4E:D9:AE:E3:24:1A:63:A4:9B:87:9D:EC:AF
Authority key identifier: F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88
Certificate issuer: /CN=A91427E2/serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488
Certificate serial: 014D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft
Manifest number: 0145
Signing time: Fri 17 Jul 2026 06:28:01 +0000
Manifest this update: Fri 17 Jul 2026 06:28:01 +0000
Manifest next update: Fri 24 Jul 2026 06:28:01 +0000
Files and hashes: 1: 9ES43awaKuycmNiYFhxzSCwu1Ig.crl (hash: N37O70u/P63OEyh7pPlo95J2mvs6vdRKKxEuHM9NJnY=)
2: 52EADE54935111EF98AA8C86C4F9AE02.roa (hash: VhIuGtFPo2Cv8cAGYxGtYUO/7hhyF5U43Aacg6GF4jM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl
rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:28:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333 (0x14d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91427E2, serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488
Validity
Not Before: Jul 17 06:28:01 2026 GMT
Not After : Jul 24 06:28:01 2026 GMT
Subject: CN=6a59cb71-4a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:69:96:0b:f2:7f:ee:04:f4:2e:c4:d8:f3:
fd:59:80:01:2d:e0:58:b9:00:1e:db:82:2a:d5:84:
aa:5a:b7:76:94:d9:fe:1b:05:2b:93:8e:31:48:ff:
1c:1f:17:97:ad:32:90:c1:f9:2e:41:fb:4e:11:ca:
ac:14:04:4a:0b:1b:aa:5b:f4:db:c5:f9:d5:9a:38:
7e:dd:76:b2:7d:84:2e:55:45:6d:c1:aa:ae:0e:5c:
94:39:e8:5b:ef:70:7b:73:1a:ee:2a:94:6d:0e:f1:
ed:e4:31:cd:31:95:8c:37:63:af:dd:a8:a1:56:66:
9a:64:96:23:09:c5:b4:b0:7a:0d:68:b6:71:72:5d:
be:8c:ad:f5:aa:82:bd:33:53:76:df:10:7b:c0:c1:
93:af:1f:53:58:81:b4:a2:0d:73:fc:db:19:fc:24:
fa:f8:63:73:c6:a8:12:34:23:ef:ec:a0:57:9c:0a:
fc:1c:fd:ca:50:45:ec:58:e6:31:fb:32:f8:27:ac:
33:1e:e5:64:26:94:cc:c9:90:7b:e9:83:d3:a0:ce:
dc:57:09:5a:bf:0e:a3:f7:b1:58:a7:4f:70:b8:d0:
9d:a4:fd:4c:eb:96:e0:0f:e4:e9:a7:bd:b6:c3:2a:
b9:e7:a1:46:fc:b2:ac:21:a1:f3:5e:06:0c:26:41:
f5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0E:74:C4:C0:1E:A5:4E:D9:AE:E3:24:1A:63:A4:9B:87:9D:EC:AF
X509v3 Authority Key Identifier:
keyid:F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b8:8d:6b:f4:7e:68:96:e0:2b:bf:b2:77:bb:63:45:59:70:83:
1b:1e:c8:26:0d:37:7f:4b:15:50:92:73:da:6d:93:ef:c7:80:
ee:ed:ae:5b:b5:89:4c:a3:7d:ba:fe:28:33:00:fa:a8:4a:d5:
d3:23:7f:d8:72:aa:d8:39:81:41:22:eb:c8:da:32:f5:7d:ec:
cb:c2:14:34:1c:1a:53:82:21:97:79:e4:76:fc:39:21:14:b4:
37:07:c1:fa:f0:e4:6b:d4:46:c4:b8:52:37:8b:3e:09:65:f9:
08:e7:ee:63:db:0b:d5:9f:53:09:2c:88:ed:38:42:61:ab:23:
59:cc:62:b9:15:af:39:2c:65:89:34:aa:c8:e0:86:cb:ac:cd:
7c:09:05:ac:93:cd:a8:cb:c7:e3:16:62:54:93:0f:a5:a9:66:
aa:48:26:94:54:07:03:e4:4e:c0:d3:41:f8:69:66:99:b8:53:
79:ed:e0:bf:bc:55:40:15:19:af:f6:19:a0:79:db:b0:4c:dd:
41:a0:cf:22:2a:a5:b2:3f:8b:31:cf:f8:bd:a6:36:a1:73:0a:
bb:0c:09:1e:b9:6b:7d:45:82:ba:dc:5d:05:c0:ec:25:a2:6c:
48:6b:14:30:50:42:20:f4:91:8b:35:42:c5:d9:7f:cd:8a:42:
b2:aa:ff:5a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDI3RTIxMTAvBgNVBAUTKEY0NDRCOEREQUMxQTJBRUM5Qzk4RDg5ODE2MUM3MzQ4
MkMyRUQ0ODgwHhcNMjYwNzE3MDYyODAxWhcNMjYwNzI0MDYyODAxWjAYMRYwFAYD
VQQDEw02YTU5Y2I3MS00YTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwtVplgvyf+4E9C7E2PP9WYABLeBYuQAe24Iq1YSqWrd2lNn+GwUrk44xSP8c
HxeXrTKQwfkuQftOEcqsFARKCxuqW/TbxfnVmjh+3XayfYQuVUVtwaquDlyUOehb
73B7cxruKpRtDvHt5DHNMZWMN2Ov3aihVmaaZJYjCcW0sHoNaLZxcl2+jK31qoK9
M1N23xB7wMGTrx9TWIG0og1z/NsZ/CT6+GNzxqgSNCPv7KBXnAr8HP3KUEXsWOYx
+zL4J6wzHuVkJpTMyZB76YPToM7cVwlavw6j97FYp09wuNCdpP1M65bgD+Tpp722
wyq556FG/LKsIaHzXgYMJkH1TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCIOdMTA
HqVO2a7jJBpjpJuHneyvMB8GA1UdIwQYMBaAFPREuN2sGirsnJjYmBYcc0gsLtSI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjdFMi83MDMxQTFFQzkz
NTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1eWNtTmlZRmh4elNDd3Ux
SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzlFUzQzYXdhS3V5Y21OaVlGaHh6U0N3dTFJZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
MjdFMi83MDMxQTFFQzkzNTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1
eWNtTmlZRmh4elNDd3UxSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAuI1r9H5oluArv7J3u2NFWXCDGx7IJg03f0sVUJJz2m2T78eA7u2uW7WJTKN9
uv4oMwD6qErV0yN/2HKq2DmBQSLryNoy9X3sy8IUNBwaU4Ihl3nkdvw5IRS0NwfB
+vDka9RGxLhSN4s+CWX5COfuY9sL1Z9TCSyI7ThCYasjWcxiuRWvOSxliTSqyOCG
y6zNfAkFrJPNqMvH4xZiVJMPpalmqkgmlFQHA+ROwNNB+GlmmbhTee3gv7xVQBUZ
r/YZoHnbsEzdQaDPIiqlsj+LMc/4vaY2oXMKuwwJHrlrfUWCutxdBcDsJaJsSGsU
MFBCIPSRizVCxdl/zYpCsqr/Wg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:58 2026 by rpki-client