
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft
File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json)
Hash identifier: vpq2cKhPy/VEfz+1anGcQA6Xj/hHN9JQTR/sra4yRIY=
Subject key identifier: C2:EE:2A:88:0E:7B:4F:3B:E1:EB:C5:6A:30:F4:1A:44:6D:79:EE:01
Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D
Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D
Certificate serial: 023B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft
Manifest number: 0228
Signing time: Tue 07 Jul 2026 03:37:15 +0000
Manifest this update: Tue 07 Jul 2026 03:37:15 +0000
Manifest next update: Tue 14 Jul 2026 03:37:15 +0000
Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: +A2UAK7Gqi1qIRBEFzAHWaN+4vn1JLUeTEJmbNR9fug=)
2: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: mxJVviu3Hptch60PLa/XEKp8ctUzhsRUSvChZ9yr8zw=)
3: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: 0AY62NK98rk5TGBieSIptVBTxWIVtw7dVGDsaIJvGI8=)
4: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: GGFJyDNXeKU9lT+bTxvAzkG1O7Dgf7yckhosYzf3b1Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl
rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 03:37:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 571 (0x23b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D
Validity
Not Before: Jul 7 03:37:15 2026 GMT
Not After : Jul 14 03:37:15 2026 GMT
Subject: CN=6a4c746b-281f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ca:de:5a:af:07:22:74:8a:6d:d3:a8:ae:90:
59:11:ac:15:64:69:cf:cb:f7:47:9d:21:b8:8c:fe:
be:d9:60:ba:46:ee:32:22:08:30:8b:67:b0:cb:21:
c2:79:0b:a5:9a:62:5f:22:b6:27:06:0a:78:47:60:
6f:84:4d:1e:2e:bf:e8:6b:fe:91:a7:a9:33:f1:01:
7e:ee:fe:0a:17:68:f4:eb:8c:05:fe:d1:69:97:12:
ba:65:89:41:56:9f:07:5b:a9:22:9e:62:ea:b4:cf:
c5:41:31:e2:3a:78:91:99:e5:09:83:a6:67:e4:c4:
7a:73:9e:dc:38:6e:6f:02:58:64:71:22:06:08:d4:
c9:1d:97:3c:45:4d:65:e3:cf:8c:89:51:e2:37:c4:
ee:8a:fb:a4:2c:3f:3b:ad:fa:52:6f:8b:35:de:b6:
98:14:75:73:e4:d8:e1:14:17:bd:df:24:47:d8:80:
5e:3d:78:01:97:6d:c5:ff:2b:30:d6:bb:42:b8:41:
1a:70:7a:4c:31:c6:0c:c9:e2:d4:2b:76:28:60:73:
7f:f0:27:e9:0c:f1:9d:18:dd:33:3e:11:24:c7:d3:
c4:fc:2f:77:55:ec:6c:53:ad:da:e8:da:39:30:76:
4d:f5:d0:67:85:d8:a8:ba:a4:64:58:cf:45:2c:e3:
62:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EE:2A:88:0E:7B:4F:3B:E1:EB:C5:6A:30:F4:1A:44:6D:79:EE:01
X509v3 Authority Key Identifier:
keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5d:54:06:4b:84:6b:86:86:78:13:a4:6a:fb:99:43:54:d2:b8:
33:e0:ca:0e:37:0c:7b:33:fb:cc:7f:9c:92:ed:12:51:75:c1:
f0:4e:7f:a2:52:7f:c1:84:22:e2:e6:8f:b8:66:01:3c:c0:3f:
d1:f1:26:88:ac:c0:ba:45:53:05:06:85:a3:74:66:a8:0f:de:
b3:c0:28:a9:8d:5d:60:0f:6c:88:56:24:49:c3:d5:ec:b0:09:
ae:61:e8:4e:c7:f8:29:4d:d8:a7:36:e7:6c:26:02:aa:d4:99:
ac:ab:dd:73:ac:03:23:47:03:9f:44:dd:e8:59:5e:ca:c8:e1:
0d:8d:f1:6d:c2:65:6c:69:03:f0:dd:a8:11:17:7b:e3:94:9c:
d3:e4:80:49:52:38:62:77:d7:a1:4a:9e:69:63:fe:17:71:4c:
ac:60:60:80:a0:a2:bb:b6:4d:b3:fa:69:fa:51:b3:11:ec:02:
ac:af:d4:0b:11:74:30:83:9f:0a:45:81:f4:a9:93:23:f6:a1:
2e:11:75:91:ce:54:3e:b6:fd:2e:9b:56:50:2e:9b:18:d2:e1:
d0:40:4c:46:d7:28:4a:cc:52:6e:45:ca:a2:f2:d0:e7:b5:7f:
ad:31:37:2b:a7:26:18:d7:4d:36:2f:d7:d8:df:92:85:d7:11:
ee:48:79:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 16:52:07 2026 by rpki-client