
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft
File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json)
Hash identifier: rbDGfyVv2iNwITiAmnsRVjt1XZUrQW+5W/U0LfyqwCk=
Subject key identifier: 2C:23:B3:59:AC:C1:A4:BF:4B:E6:E4:1B:8F:00:9B:E8:19:FF:C4:24
Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4
Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4
Certificate serial: FF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft
Manifest number: F7
Signing time: Fri 17 Jul 2026 07:29:39 +0000
Manifest this update: Fri 17 Jul 2026 07:29:39 +0000
Manifest next update: Fri 24 Jul 2026 07:29:39 +0000
Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 22YudNXAmP4DgzxtFj8zg3Jd3Z4tIaaIUXXAs9kLVqU=)
2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: cNFpk4xvE3+xhetFVsHGb9R/5Z63kJbCCHb2RP80z/0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl
rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255 (0xff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4
Validity
Not Before: Jul 17 07:29:39 2026 GMT
Not After : Jul 24 07:29:39 2026 GMT
Subject: CN=6a59d9e3-04d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:86:d5:86:26:fd:ae:a0:99:92:a6:c8:bc:48:
9d:31:d1:96:f7:1b:67:f7:96:d4:bb:46:e5:47:df:
e6:e7:7f:4c:d4:db:00:48:3f:3a:39:6f:e9:96:44:
64:e1:ac:29:02:38:a5:7b:19:3a:c5:e1:13:e3:7d:
a3:e7:e7:4b:6a:1c:84:cb:ab:30:35:f1:6b:88:94:
3d:e3:73:d7:84:3f:ce:b2:83:d8:81:72:fe:ac:f7:
b4:ad:df:b3:7f:ec:43:7d:6e:db:ce:af:74:f3:6c:
4c:03:2f:f8:31:7b:52:ac:45:b3:d6:5f:a3:b7:e4:
37:51:98:09:e3:de:f2:cf:d7:0c:3f:8c:f5:ae:37:
a9:71:a7:0b:56:aa:55:a5:3f:dc:0e:34:0e:11:db:
66:65:15:01:ae:84:34:df:0b:c6:7f:a0:83:83:da:
be:86:36:a6:a9:a3:89:9f:53:40:f2:35:fb:a5:48:
e0:51:93:18:8b:a7:f4:3c:f1:45:6c:e8:73:0a:c5:
26:36:57:ac:63:11:41:22:8a:89:79:54:f7:67:7c:
52:cb:28:9e:5d:7a:9c:5a:46:72:15:c5:66:a7:29:
37:c5:26:f7:7b:de:c7:c1:84:fc:d2:90:d6:55:60:
42:8b:b4:2e:aa:fe:c5:d8:42:b5:20:7e:5d:86:34:
bb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:23:B3:59:AC:C1:A4:BF:4B:E6:E4:1B:8F:00:9B:E8:19:FF:C4:24
X509v3 Authority Key Identifier:
keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:3f:4f:a9:7e:c9:4d:0f:4b:70:0e:06:b3:23:d8:2f:ae:ac:
68:9e:43:57:3d:9d:9b:77:49:36:9a:19:62:9b:a4:6e:37:55:
d8:74:df:e6:43:62:e6:11:a0:b5:c4:9d:2a:3b:6e:4f:eb:38:
27:b9:85:1e:36:4b:8b:46:cf:7f:19:b3:60:6c:29:79:e2:02:
62:15:0b:37:ea:a9:69:31:0d:ed:6e:ad:12:8f:46:91:2e:12:
fc:4a:15:c2:fe:54:4b:c7:a0:58:c2:84:cf:33:cc:b7:b4:22:
26:8e:a0:88:87:6e:ab:29:0c:78:4e:5c:c0:36:db:07:fd:6c:
ed:81:ac:50:b1:6a:df:01:50:22:f4:ac:ba:bb:c8:66:ad:bc:
6e:25:3b:81:40:8b:4b:4e:0c:c5:3e:47:d1:16:5c:7b:86:f0:
79:1f:a3:5d:0d:d9:8f:62:fe:e7:38:30:6c:98:37:d4:66:20:
4d:01:75:c2:08:d3:34:fc:26:fb:c3:c4:10:e9:de:0e:0f:6c:
aa:83:23:c8:0b:f8:a0:63:9f:8f:6f:43:86:16:84:96:c0:16:
af:4b:7f:e5:01:5c:d2:d0:6f:bd:df:ea:8c:f2:b9:27:72:83:
72:10:a7:09:66:92:ef:c2:2f:12:13:b2:22:0f:d2:52:10:f0:
2f:37:24:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:17 2026 by rpki-client