
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json)
Hash identifier: 56Ogvj0DTYCRT5QKZueM8GFDEG8cLPz/m7ekdtY6xQM=
Subject key identifier: D6:1B:63:C0:68:5F:76:72:7F:7C:2E:B3:4B:C3:A9:8E:5C:BD:33:01
Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D
Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D
Certificate serial: 068B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
Manifest number: 0682
Signing time: Thu 16 Jul 2026 23:00:57 +0000
Manifest this update: Thu 16 Jul 2026 23:00:56 +0000
Manifest next update: Thu 23 Jul 2026 23:00:56 +0000
Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: i0LRPjL0qQXNBt6gjt5TaNxPxUZLmlM8KixUuEJkZpw=)
2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: 9P+/XWI1mTR2CKwLdPvtfOBgjyqZfC7ZNyD/mGLr3KU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl
rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1675 (0x68b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D
Validity
Not Before: Jul 16 23:00:56 2026 GMT
Not After : Jul 23 23:00:56 2026 GMT
Subject: CN=6a5962a9-d982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c6:31:54:2b:1a:c0:a0:a9:38:2f:ac:f5:cf:
ca:af:9e:18:18:8c:06:0b:5c:73:1f:c7:32:69:9f:
cf:8f:c4:fc:3b:da:74:f8:1f:a1:21:09:2d:f0:9c:
68:0e:db:e6:d4:60:8e:6c:df:4e:80:cd:cb:eb:c4:
7b:be:24:a2:da:bf:79:c3:b6:46:30:97:75:83:f4:
1e:da:a9:60:08:c1:0a:0d:d3:73:de:d0:c1:41:ad:
2f:c4:dd:b2:e0:3e:22:40:bb:d0:9e:44:f1:a8:43:
55:00:b9:d5:24:cb:18:ba:f1:1f:4b:17:5a:50:38:
f2:63:70:11:a1:2f:96:7f:25:8e:05:28:03:b3:b2:
df:90:79:4e:08:51:5b:ef:31:f2:c8:90:6d:45:41:
bd:8b:54:59:ff:e3:ae:6c:17:f2:bd:1b:58:a2:8b:
af:85:5a:e2:4b:62:89:41:20:99:43:9c:e6:ac:22:
16:62:db:fe:f8:64:e1:6f:97:f9:2e:25:54:7f:2b:
0d:18:c4:f3:0d:94:81:ec:eb:04:31:a7:30:01:7d:
6e:34:73:de:b3:dc:17:3c:2e:be:14:fc:a8:f5:dd:
6a:54:a4:8e:e9:d1:8c:95:9c:2c:6a:14:39:5a:f1:
00:21:61:24:61:33:a3:67:eb:a8:25:b1:cf:d9:a6:
82:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:1B:63:C0:68:5F:76:72:7F:7C:2E:B3:4B:C3:A9:8E:5C:BD:33:01
X509v3 Authority Key Identifier:
keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
80:30:41:0b:f8:b1:38:6a:35:a2:41:1e:5e:14:73:86:20:5b:
33:58:5c:0b:b4:f4:6c:dc:88:43:06:02:d0:5d:38:ed:26:3b:
5d:0a:ec:b8:d5:82:5f:d6:af:08:9a:23:d5:ed:6d:e6:07:97:
6c:d8:53:9f:e8:7d:39:1b:01:37:55:89:b4:87:ac:f5:1e:c0:
e6:54:3b:22:4f:e1:a4:f6:35:55:bc:f1:e9:11:75:cf:9d:b2:
fa:f2:3e:10:ac:44:9f:b2:ae:08:aa:8b:d3:52:63:97:67:0c:
0d:89:63:91:75:2c:df:dd:39:9f:25:c7:88:a1:f0:5a:aa:21:
9e:a7:93:91:78:67:05:58:45:ba:cc:a8:56:52:78:11:f2:07:
59:86:fa:8d:47:1a:9f:9f:4c:69:22:ad:db:20:1e:ce:26:03:
41:6f:9b:8d:01:0e:c0:54:13:6e:1b:08:87:f8:75:1c:49:40:
a5:42:8e:36:38:c7:01:45:ad:2e:7d:2b:86:3f:bd:30:57:04:
24:1d:c0:ef:55:9e:2d:19:b1:61:3e:87:81:51:3a:2a:01:5e:
f9:c3:b0:a9:a8:15:e7:4f:50:1e:7d:31:a5:f8:68:a4:7d:54:
28:6b:50:c9:b1:8a:31:bf:70:9b:be:1e:1c:5e:0c:59:d2:52:
94:76:2e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:15:45 2026 by rpki-client