
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json)
Hash identifier: UzjjrqXrdPOhae4+PTjkGWU7Ail/qdlQuV9eycahUVY=
Subject key identifier: D6:35:A1:EC:E1:09:07:7F:BB:BE:8E:04:4A:8A:51:B9:0A:C2:05:C2
Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19
Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919
Certificate serial: 0135
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
Manifest number: 0131
Signing time: Fri 17 Jul 2026 06:44:53 +0000
Manifest this update: Fri 17 Jul 2026 06:44:53 +0000
Manifest next update: Fri 24 Jul 2026 06:44:53 +0000
Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: 278RgBriJJP0BiZzFopsWIYkAQFT6mt9HRBT/CXwwrM=)
2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: v6BylN14fOxA4ftijT2xm8ugkwjC+LIOM8D065x7bmM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl
rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:44:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309 (0x135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919
Validity
Not Before: Jul 17 06:44:53 2026 GMT
Not After : Jul 24 06:44:53 2026 GMT
Subject: CN=6a59cf65-9e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:0f:0b:0b:86:fa:22:90:ec:5c:d2:32:5d:
41:a5:01:23:38:0b:0d:6a:3f:c5:8a:99:d2:2a:7c:
9e:24:cf:f0:d7:58:e6:4e:a7:f0:cd:35:b7:48:b7:
c3:79:3c:8b:6d:b6:fd:70:00:42:e1:41:f4:9e:94:
3f:40:cd:c5:c7:68:ac:09:d3:5e:5a:26:5b:5b:05:
e9:bd:02:d0:6e:25:e2:79:5f:3a:55:76:32:09:ec:
fa:98:cd:0a:a3:52:37:04:8f:2e:c9:f6:81:72:9a:
0b:c6:6c:a1:ef:d1:c9:da:7a:d3:e6:3e:f5:0b:0f:
ba:e7:ab:97:32:6b:b8:e2:11:d7:3d:fa:0d:7f:e6:
9f:51:a5:61:26:b1:b1:ae:2a:e9:74:79:81:d7:56:
35:19:9c:ce:6f:08:f6:ea:d6:2b:d8:bc:59:73:fe:
2e:2d:86:78:92:8d:57:61:ff:b7:98:a1:c5:22:5b:
ba:0f:a4:08:85:b9:6a:6d:ac:fe:a3:18:28:b8:bf:
5d:78:00:38:07:a6:19:84:95:14:c6:e1:e7:e5:ab:
27:68:60:cf:6d:a1:3c:15:4c:33:6b:40:7f:a2:b3:
05:e3:71:9f:08:be:b0:3d:0a:49:71:26:9e:4f:8d:
ae:45:26:a1:95:14:86:2c:69:c9:65:8f:dc:ad:c1:
3f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:35:A1:EC:E1:09:07:7F:BB:BE:8E:04:4A:8A:51:B9:0A:C2:05:C2
X509v3 Authority Key Identifier:
keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8f:cc:e3:fd:de:12:d0:d8:50:c8:be:97:c0:66:ac:85:d4:03:
b0:e6:98:7d:bd:a2:20:36:7f:51:20:0d:45:58:0d:9c:fc:30:
7d:ef:2e:94:07:f5:1d:68:37:d2:8a:ec:5e:e3:22:3a:b8:a0:
43:8c:b3:c1:fd:26:28:4d:7d:f7:10:9a:90:eb:68:dd:07:82:
ca:42:ea:b6:7b:68:c0:8a:e5:82:d6:a3:f5:3b:55:d0:91:d8:
96:9e:d6:d3:81:aa:39:95:45:1e:50:3b:e4:f7:5d:a2:1f:45:
b6:6e:bd:58:30:8c:f5:46:6b:e2:1c:5e:f8:10:8f:ed:36:36:
ea:fa:7f:2a:f8:87:71:9e:c8:87:94:9b:dd:a6:b2:b1:79:71:
f3:5f:b0:23:ab:30:21:28:62:63:a6:3d:b3:ab:6a:76:13:a4:
cd:95:20:1e:52:62:db:e6:04:a4:5b:76:1d:1a:f2:0c:49:e2:
48:71:04:9f:33:94:8a:da:27:c8:77:5a:b7:8a:0a:7e:11:38:
ca:c2:e1:72:f1:b9:6f:c6:19:c7:7a:46:c9:ca:6a:a5:94:74:
59:5f:c3:c8:72:03:4f:ea:22:b6:81:a4:69:2e:c3:4c:95:2b:
e4:0f:be:18:17:2f:ac:00:c1:b5:51:70:fa:1f:39:57:62:22:
72:69:9f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:29:57 2026 by rpki-client