
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json)
Hash identifier: hC68d2QkhADOwqj7qvk04EIMiNG7ZtZXy+MsA9P+4ds=
Subject key identifier: 0F:D7:DE:2C:53:55:C7:BB:1E:62:2F:53:0B:E9:7B:6F:08:55:FB:71
Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04
Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704
Certificate serial: 0146
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
Manifest number: 0162
Signing time: Fri 17 Jul 2026 06:40:25 +0000
Manifest this update: Fri 17 Jul 2026 06:40:25 +0000
Manifest next update: Fri 24 Jul 2026 06:40:25 +0000
Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: Kp8NdJAfB72XRAbCr1N5BpDT/euq9cVO4es4SQk2IDQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl
rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:40:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326 (0x146)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704
Validity
Not Before: Jul 17 06:40:25 2026 GMT
Not After : Jul 24 06:40:25 2026 GMT
Subject: CN=6a59ce59-5f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:af:64:b4:64:e2:39:72:f9:b2:04:71:98:90:
65:f2:7a:b7:14:12:1c:a0:ef:17:33:ea:9e:76:a6:
36:11:5d:a9:1b:32:ce:20:8f:2c:53:c1:ca:83:61:
e9:96:2e:19:4a:80:00:7f:04:f9:14:d3:d1:8e:4d:
57:cf:56:cb:01:93:dc:e6:2f:27:07:e2:0c:ea:9a:
11:f8:7a:20:95:ef:00:3f:8d:3a:57:0c:40:53:3a:
b0:e0:8a:20:50:bc:ef:cf:8d:e8:1d:e2:fb:cf:c2:
ea:d2:d3:c0:8f:73:ab:44:bb:95:c5:f0:8b:9a:18:
ab:09:26:75:c4:a7:81:32:e5:49:e4:9a:08:f4:44:
78:e7:21:63:10:2a:e0:df:16:b3:e5:c6:0e:cc:03:
60:96:37:4d:7e:00:57:70:33:1c:77:6d:6e:d1:46:
61:28:f6:a6:dc:54:4c:58:2a:96:e8:f0:1e:9b:c7:
b2:68:3a:1f:a4:01:24:ad:2a:52:a7:d1:49:33:24:
35:0c:7e:d2:82:44:db:e9:6d:93:9a:11:0d:c8:9d:
6b:95:b9:b1:75:61:0b:92:d7:01:89:fc:22:71:20:
4f:5b:2f:da:8d:af:06:cd:81:2b:a9:d0:48:55:dd:
36:7c:fa:3f:84:9c:0b:37:02:a4:da:05:fe:94:dc:
9a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D7:DE:2C:53:55:C7:BB:1E:62:2F:53:0B:E9:7B:6F:08:55:FB:71
X509v3 Authority Key Identifier:
keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
63:0a:d1:e4:45:e7:da:fe:e3:75:09:60:e3:a4:21:d3:5b:93:
dd:b9:4d:ad:22:d7:05:bf:36:73:58:78:64:27:79:c1:92:6c:
d8:cd:4b:c8:fc:ad:b2:ed:f0:ad:5c:39:cf:28:be:8f:38:d2:
35:d8:1b:a1:2b:68:6e:0a:ce:72:e2:26:9a:78:c9:a4:7c:8e:
26:60:83:bd:2d:47:1b:f7:eb:7c:78:c6:c3:7b:31:e2:0f:a0:
c0:a1:d8:c9:21:8d:18:4e:79:09:4a:65:a2:75:ab:4b:70:03:
a9:ea:55:92:da:d2:7c:14:55:60:ad:94:11:4c:51:55:45:15:
c9:68:7e:52:04:24:7e:47:bc:c0:66:ac:ac:30:d5:33:61:c5:
95:58:b8:95:8c:d4:18:25:35:19:72:b6:63:30:9e:83:51:e2:
a5:1f:53:41:30:e7:a7:dd:7b:32:ee:39:2f:91:db:2b:a4:7e:
70:80:7e:84:bb:fe:eb:0f:37:bf:c3:7f:49:c0:77:68:6a:f5:
99:52:00:f4:a6:86:5d:18:18:53:56:8c:d7:33:99:f0:bd:cd:
eb:4f:15:fc:9f:b8:08:87:31:a3:b0:52:00:76:9a:cc:b1:3f:
67:05:fa:78:bd:fe:f2:13:13:5b:f7:2e:fc:e3:85:81:52:2f:
59:31:2b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:24 2026 by rpki-client