
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft
File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json)
Hash identifier: j5UzAwx5mT6vy1QCyXTD+206/D2RbpsS3/qRAnyVZX8=
Subject key identifier: F5:B7:72:9B:18:36:41:D6:B0:D1:57:5C:4F:75:3F:7E:19:08:DD:12
Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD
Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD
Certificate serial: B7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft
Manifest number: B5
Signing time: Thu 09 Jul 2026 09:07:06 +0000
Manifest this update: Thu 09 Jul 2026 09:07:05 +0000
Manifest next update: Thu 16 Jul 2026 09:07:05 +0000
Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: JuYR6dL8+JJfzSW42mZgr3OdZ+6zKCFRCz9jITCT0IM=)
2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: t3GNpUerhP0cJPbY48i/kbcLRCBSWRa0pQ+pR8/EBR0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl
rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 09:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183 (0xb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD
Validity
Not Before: Jul 9 09:07:05 2026 GMT
Not After : Jul 16 09:07:05 2026 GMT
Subject: CN=6a4f64b9-ad33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6f:3a:26:a2:de:cb:94:6d:ba:2c:53:88:ce:
03:3e:3e:a9:0e:72:29:26:7d:69:bc:f9:c5:8d:69:
31:c2:fc:98:9c:87:b2:d7:02:b1:b9:51:50:26:54:
2a:ed:5e:44:42:b2:97:b4:32:79:1f:1b:78:c0:ca:
03:49:b8:c1:de:8d:92:2c:05:cf:96:c8:49:33:ed:
d1:ee:f8:38:d2:63:d5:d3:74:d9:e4:98:33:b1:34:
00:5d:d0:8e:18:50:86:a2:a4:a9:a1:41:5e:74:ee:
28:cf:5f:1d:3b:12:c8:d2:0b:34:54:a1:94:59:cd:
4e:d7:e2:8a:5c:63:89:65:6a:7d:f0:2e:b2:de:8f:
60:20:a8:ec:1a:b8:9e:5e:49:4d:46:7d:e4:cb:7e:
58:8a:f5:e7:32:00:14:16:77:4c:6f:55:79:19:af:
03:52:a6:ee:00:3c:1d:85:19:d7:12:36:bc:58:6d:
7a:d7:de:de:37:fc:9c:9e:d0:8b:8c:f8:46:e6:58:
a2:cc:5c:5d:9c:1b:db:7a:53:ba:37:6b:c2:48:13:
3b:17:ec:fa:50:d3:24:d4:fc:1f:5b:12:cc:a9:aa:
22:b7:5c:a8:40:ef:b0:ec:de:f2:4a:54:47:e0:2a:
c7:14:70:f8:2e:ed:d6:29:2c:5e:c5:f6:3b:d4:69:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B7:72:9B:18:36:41:D6:B0:D1:57:5C:4F:75:3F:7E:19:08:DD:12
X509v3 Authority Key Identifier:
keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
41:23:13:1b:94:07:5a:bc:d0:25:92:a5:5d:bb:ca:e6:d8:72:
98:cf:c4:ba:09:56:dc:f9:ea:a6:3d:4c:76:3a:3c:c9:44:90:
a3:14:99:5c:c1:6e:89:5d:9c:53:2e:6b:73:97:a7:32:30:09:
1f:79:87:71:7c:2b:5b:e4:07:89:c8:ee:90:df:84:ed:20:a3:
35:85:7d:3f:49:77:ff:af:34:88:12:36:90:24:e5:b3:81:59:
9d:2e:0c:9b:f8:b9:d2:96:5b:5e:b2:a4:2e:31:02:d7:28:4c:
5a:9e:b7:99:81:63:2e:7d:7b:4b:e6:44:ef:7f:b6:43:98:50:
e0:91:b5:fa:7e:24:5f:b4:46:8f:52:c2:52:67:2a:6f:d5:2b:
20:e0:42:08:ca:be:7f:52:e3:23:e5:6c:08:4f:b3:1f:6c:77:
5a:e7:8a:9c:0c:d1:89:eb:79:04:e2:d0:14:1e:97:3f:78:16:
6b:13:49:ef:84:6a:42:9e:ae:98:0c:f9:ab:7e:2a:b2:78:d7:
73:be:87:26:e4:94:ba:f7:e7:c7:50:0d:67:28:7a:d0:6c:76:
fd:3f:c3:ff:97:d1:46:71:0f:0d:a4:71:3d:3d:f1:8d:37:92:
0d:90:31:90:0e:23:fd:d3:43:7b:20:5d:f5:51:1c:df:0f:b6:
6a:4d:f2:53
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDdDQTgxMTAvBgNVBAUTKEREMjgwODI4RkYwOTk2QThDQkVGMjlCRjBEOTE0REYy
NTJERjFDQkQwHhcNMjYwNzA5MDkwNzA1WhcNMjYwNzE2MDkwNzA1WjAYMRYwFAYD
VQQDEw02YTRmNjRiOS1hZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2286JqLey5RtuixTiM4DPj6pDnIpJn1pvPnFjWkxwvyYnIey1wKxuVFQJlQq
7V5EQrKXtDJ5Hxt4wMoDSbjB3o2SLAXPlshJM+3R7vg40mPV03TZ5JgzsTQAXdCO
GFCGoqSpoUFedO4oz18dOxLI0gs0VKGUWc1O1+KKXGOJZWp98C6y3o9gIKjsGrie
XklNRn3ky35YivXnMgAUFndMb1V5Ga8DUqbuADwdhRnXEja8WG16197eN/ycntCL
jPhG5liizFxdnBvbelO6N2vCSBM7F+z6UNMk1PwfWxLMqaoit1yoQO+w7N7ySlRH
4CrHFHD4Lu3WKSxexfY71GkEfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPW3cpsY
NkHWsNFXXE91P34ZCN0SMB8GA1UdIwQYMBaAFN0oCCj/CZaoy+8pvw2RTfJS3xy9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NBOC82QTlFOTE1QzZF
RTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxxakw3eW1fRFpGTjhsTGZI
TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhMMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
N0NBOC82QTlFOTE1QzZFRTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxx
akw3eW1fRFpGTjhsTGZITDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAQSMTG5QHWrzQJZKlXbvK5thymM/EuglW3Pnqpj1Mdjo8yUSQoxSZXMFuiV2c
Uy5rc5enMjAJH3mHcXwrW+QHicjukN+E7SCjNYV9P0l3/680iBI2kCTls4FZnS4M
m/i50pZbXrKkLjEC1yhMWp63mYFjLn17S+ZE73+2Q5hQ4JG1+n4kX7RGj1LCUmcq
b9UrIOBCCMq+f1LjI+VsCE+zH2x3WueKnAzRiet5BOLQFB6XP3gWaxNJ74RqQp6u
mAz5q34qsnjXc76HJuSUuvfnx1ANZyh60Gx2/T/D/5fRRnEPDaRxPT3xjTeSDZAx
kA4j/dNDeyBd9VEc3w+2ak3yUw==
-----END CERTIFICATE-----
Generated at Fri Jul 10 16:52:03 2026 by rpki-client