
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft
File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json)
Hash identifier: GKfnwQHVZl0MfFcsIZpO/xupxZTgJded7goghuLyZpA=
Subject key identifier: EA:78:68:FD:EB:FA:DE:F0:B8:59:74:38:1D:5C:9D:B3:B2:38:36:50
Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D
Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D
Certificate serial: 1BB9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft
Manifest number: 1BB6
Signing time: Thu 16 Jul 2026 16:18:05 +0000
Manifest this update: Thu 16 Jul 2026 16:18:04 +0000
Manifest next update: Thu 23 Jul 2026 16:18:04 +0000
Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: 6wbV+H2UfkzYyr5kHaxRhvtWzm3ZXjUJO5pZQg5qd8U=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl
rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 16:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7097 (0x1bb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D
Validity
Not Before: Jul 16 16:18:04 2026 GMT
Not After : Jul 23 16:18:04 2026 GMT
Subject: CN=6a59043c-10d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:36:17:b7:ff:3d:78:e5:66:96:22:88:06:54:
4b:43:0b:97:e5:48:a8:09:cd:0a:99:48:94:14:f6:
64:c7:88:2a:63:c4:20:fa:ca:33:0e:3e:0b:78:ad:
04:85:0c:06:63:25:ae:3e:ee:be:98:3d:56:e0:13:
52:b2:2a:44:fa:0a:79:74:ef:12:4d:e6:98:f0:ef:
75:2e:0b:41:12:8b:56:e3:38:9d:c0:42:12:1f:27:
6f:b6:21:3e:aa:c5:3b:fd:7a:3d:26:f1:86:4d:0c:
3f:c6:ab:ce:3a:48:1e:ee:e3:f4:73:47:48:a8:87:
2c:44:ef:85:87:89:a3:b3:b8:11:28:58:ae:51:56:
20:56:9b:79:28:e4:06:f6:2b:78:2c:0f:62:fe:3c:
c3:64:6f:32:06:3e:86:e4:b2:8a:e5:5a:3a:69:57:
b3:85:78:ea:bf:09:32:dd:b8:9d:16:bd:e9:5a:5a:
56:db:04:f4:a4:9e:93:df:8e:ca:ae:63:e3:8a:25:
1a:23:ac:1e:9c:ec:a4:0e:a6:90:9d:6d:aa:f3:10:
58:71:bb:55:e2:b2:f3:fb:37:cb:9e:e9:65:32:3c:
d2:84:b1:b6:8d:8b:e6:68:ab:4d:c7:26:9d:ad:fd:
ad:de:e5:9e:39:eb:38:4e:54:8d:7d:ac:57:40:de:
2c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:78:68:FD:EB:FA:DE:F0:B8:59:74:38:1D:5C:9D:B3:B2:38:36:50
X509v3 Authority Key Identifier:
keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
36:94:e2:07:9f:76:c1:50:f3:04:27:e5:59:96:10:2a:1e:09:
03:ec:17:60:a9:86:0e:9f:54:8f:af:38:0c:ad:af:f0:b0:64:
22:57:50:33:28:67:95:20:c3:62:b8:b0:d9:86:3d:44:e2:00:
3f:55:be:42:ee:90:2c:a9:f9:37:f5:8a:2e:2e:9b:6a:31:80:
d1:03:ac:09:8b:11:f7:9d:d6:ec:56:db:20:f7:0e:36:dd:c6:
0b:37:fa:2d:dc:be:95:49:f3:5e:e1:85:61:43:16:04:46:59:
70:f8:9f:79:bb:4a:a2:7a:11:33:a1:d9:8f:65:23:05:36:e2:
94:7f:ac:66:fc:12:db:b1:19:bf:80:5d:84:0d:1e:08:fb:de:
79:10:ff:a4:0a:32:5e:6c:0b:7e:de:73:8e:7d:65:76:11:51:
fa:10:46:1b:d5:18:92:bd:42:22:8c:b2:5c:1d:16:a2:a6:85:
95:73:3e:cc:f4:66:a4:0e:8f:e8:c0:a3:1d:00:6f:97:55:dc:
de:3b:ff:91:b3:85:28:40:09:ad:6b:44:3a:70:3c:8b:82:52:
d1:4a:5d:f3:25:85:19:3e:c1:1e:d8:44:35:9d:7f:e4:dd:b1:
f1:34:39:8f:72:13:87:79:1d:ff:2b:69:fa:61:68:de:7f:48:
04:27:36:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:58 2026 by rpki-client