
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
File: UDJy2j7wq-3pU5x-JDobhoaxYfs.mft (raw, json)
Hash identifier: GUZEulmNdSwR8z65UQA9i8m+CZQGb0trE/Eu+lIx2fI=
Subject key identifier: 9A:1C:AB:D9:B0:1A:82:3C:19:52:5D:3A:E4:8A:D8:8A:12:94:7B:A5
Authority key identifier: 50:32:72:DA:3E:F0:AB:ED:E9:53:9C:7E:24:3A:1B:86:86:B1:61:FB
Certificate issuer: /CN=A9146906/serialNumber=503272DA3EF0ABEDE9539C7E243A1B8686B161FB
Certificate serial: 01C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UDJy2j7wq-3pU5x-JDobhoaxYfs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
Manifest number: 01AF
Signing time: Sun 05 Jul 2026 04:40:21 +0000
Manifest this update: Sun 05 Jul 2026 04:40:20 +0000
Manifest next update: Sun 12 Jul 2026 04:40:20 +0000
Files and hashes: 1: UDJy2j7wq-3pU5x-JDobhoaxYfs.crl (hash: zm+MyU8ZQ0MfzUIat/o0EzSJ8atk4XemINsvbwHh0Ug=)
2: C32999EE391F11EFBFAB6D66C4F9AE02.roa (hash: NwgLsmJQFQZ7JnzcAe2b4izRbdQW8izgpQyoJV+sBCM=)
3: DADBB0C033A411EF8E99B625C4F9AE02.roa (hash: CQPM9/Fl6ZbXuauzzpWSYxQSwy70daOMtjNk9KjElnI=)
4: C3A77BE8391F11EFBFAB6D66C4F9AE02.roa (hash: wuFURizk5QLGwFsHMNFlb2bZylsK126zQn7tqbHxnKQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.crl
rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UDJy2j7wq-3pU5x-JDobhoaxYfs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 04:40:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455 (0x1c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9146906, serialNumber=503272DA3EF0ABEDE9539C7E243A1B8686B161FB
Validity
Not Before: Jul 5 04:40:20 2026 GMT
Not After : Jul 12 04:40:20 2026 GMT
Subject: CN=6a49e034-50ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5d:b8:0a:66:0f:ba:1d:24:3e:d9:ba:8e:f8:
a8:1b:4c:7a:7c:f6:8f:0f:a9:43:7f:cc:e0:b6:b6:
6e:6f:81:dc:07:1a:74:61:38:44:5e:60:2b:d4:5f:
40:79:0f:33:24:85:67:5f:d3:8b:6f:c6:33:55:6e:
c5:ba:55:20:ce:48:5a:fb:ad:24:b2:fa:26:89:5b:
86:59:42:4b:77:53:22:b7:50:54:21:7f:f0:83:2f:
dc:b3:f5:6c:3e:6e:e0:9d:69:21:bf:48:88:2e:bd:
1e:bc:66:1c:61:8a:5f:75:14:4b:e5:03:2e:38:24:
54:e8:4e:38:40:ff:a3:37:83:81:ab:9f:95:81:4b:
dc:23:f5:6c:26:42:60:be:6a:7c:68:98:8c:a9:ab:
c5:84:38:ba:5a:17:5b:45:20:d9:3c:8d:76:cf:66:
e5:ee:33:b5:77:14:34:0c:8b:c9:65:71:b2:b3:33:
7f:8c:e1:de:42:06:62:35:81:11:df:49:56:fc:32:
0f:9f:db:c6:3b:9d:32:64:ee:1a:1a:0d:66:93:4c:
40:a3:bd:fc:92:d0:74:a6:e8:bb:42:19:32:f2:1f:
68:91:14:bd:cd:d7:c6:00:7a:56:fb:90:de:79:9a:
47:0f:62:d8:33:d2:db:d8:1f:12:50:bb:15:16:91:
26:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1C:AB:D9:B0:1A:82:3C:19:52:5D:3A:E4:8A:D8:8A:12:94:7B:A5
X509v3 Authority Key Identifier:
keyid:50:32:72:DA:3E:F0:AB:ED:E9:53:9C:7E:24:3A:1B:86:86:B1:61:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UDJy2j7wq-3pU5x-JDobhoaxYfs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6e:b7:c4:51:f0:19:7b:56:67:58:f7:ae:ad:1e:c8:a7:af:fa:
51:de:f2:c7:78:ff:9a:61:22:3c:d5:3b:d2:74:b5:68:9c:59:
54:da:23:22:9e:88:89:a3:53:2f:27:39:75:d5:cd:cf:53:8d:
35:23:75:09:74:c0:5c:b1:84:4f:58:42:d8:af:2d:d5:59:67:
08:84:33:ac:c7:ae:62:9b:f0:aa:d6:03:a9:a8:cd:d9:1f:0c:
3d:2e:06:13:3b:6c:15:d3:cc:45:83:12:6d:e2:2b:7e:05:40:
13:f9:6b:c7:b2:53:ce:a4:d6:a5:f4:80:4c:f6:bd:a7:2b:cd:
19:fd:ba:ab:f5:93:69:d3:8e:d3:91:d4:07:02:30:7e:75:6b:
a2:82:ed:73:06:5a:62:1b:d2:ba:9c:66:42:3d:d1:8f:c9:f7:
dc:42:e6:c7:ef:40:9b:12:51:2d:50:44:55:80:41:9f:8a:11:
c4:99:b6:da:e2:f9:f8:b1:cb:a6:39:9d:e9:13:2a:0b:b3:6c:
85:91:81:6e:6f:a8:bc:7f:c8:87:d7:b3:3a:00:05:dc:1d:08:
08:47:d3:51:ef:ab:92:e6:a1:14:79:6a:8e:e2:b0:5c:0d:27:
f9:b2:03:57:05:66:01:80:19:72:d3:28:cb:70:1c:52:e5:e3:
50:67:5b:89
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDY5MDYxMTAvBgNVBAUTKDUwMzI3MkRBM0VGMEFCRURFOTUzOUM3RTI0M0ExQjg2
ODZCMTYxRkIwHhcNMjYwNzA1MDQ0MDIwWhcNMjYwNzEyMDQ0MDIwWjAYMRYwFAYD
VQQDEw02YTQ5ZTAzNC01MGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAhV24CmYPuh0kPtm6jvioG0x6fPaPD6lDf8zgtrZub4HcBxp0YThEXmAr1F9A
eQ8zJIVnX9OLb8YzVW7FulUgzkha+60ksvomiVuGWUJLd1Mit1BUIX/wgy/cs/Vs
Pm7gnWkhv0iILr0evGYcYYpfdRRL5QMuOCRU6E44QP+jN4OBq5+VgUvcI/VsJkJg
vmp8aJiMqavFhDi6WhdbRSDZPI12z2bl7jO1dxQ0DIvJZXGyszN/jOHeQgZiNYER
30lW/DIPn9vGO50yZO4aGg1mk0xAo738ktB0pui7Qhky8h9okRS9zdfGAHpW+5De
eZpHD2LYM9Lb2B8SULsVFpEmrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJocq9mw
GoI8GVJdOuSK2IoSlHulMB8GA1UdIwQYMBaAFFAycto+8Kvt6VOcfiQ6G4aGsWH7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjkwNi8yODNBNjY4RUU3
NzYxMUVFQUFGRjNFNzRDNEY5QUUwMi9VREp5Mmo3d3EtM3BVNXgtSkRvYmhvYXhZ
ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1VESnkyajd3cS0zcFU1eC1KRG9iaG9heFlmcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NjkwNi8yODNBNjY4RUU3NzYxMUVFQUFGRjNFNzRDNEY5QUUwMi9VREp5Mmo3d3Et
M3BVNXgtSkRvYmhvYXhZZnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAbrfEUfAZe1ZnWPeurR7Ip6/6Ud7yx3j/mmEiPNU70nS1aJxZVNojIp6IiaNT
Lyc5ddXNz1ONNSN1CXTAXLGET1hC2K8t1VlnCIQzrMeuYpvwqtYDqajN2R8MPS4G
EztsFdPMRYMSbeIrfgVAE/lrx7JTzqTWpfSATPa9pyvNGf26q/WTadOO05HUBwIw
fnVrooLtcwZaYhvSupxmQj3Rj8n33ELmx+9AmxJRLVBEVYBBn4oRxJm22uL5+LHL
pjmd6RMqC7NshZGBbm+ovH/Ih9ezOgAF3B0ICEfTUe+rkuahFHlqjuKwXA0n+bID
VwVmAYAZctMoy3AcUuXjUGdbiQ==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:16:23 2026 by rpki-client