
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json)
Hash identifier: oAxU1HmgJYBJhq3gzs7rK5q67sZH8xaQsfJF/ET10HQ=
Subject key identifier: D3:B3:78:C4:44:FC:7E:8D:1B:BB:DB:60:3C:2D:42:64:25:EB:76:9D
Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A
Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A
Certificate serial: 1C7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
Manifest number: 1C67
Signing time: Wed 08 Jul 2026 16:24:32 +0000
Manifest this update: Wed 08 Jul 2026 16:24:32 +0000
Manifest next update: Wed 15 Jul 2026 16:24:32 +0000
Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: AptlaykHQjdMxDhqiQFcr4CRx8M6YDRH9Oeal6dHtmY=)
2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: fv4oRIQ4Gxh8CoHiTKL/BcGQRnYE0nj0QiSPtWSrjAM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl
rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 16:24:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7292 (0x1c7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A
Validity
Not Before: Jul 8 16:24:32 2026 GMT
Not After : Jul 15 16:24:32 2026 GMT
Subject: CN=6a4e79c0-141a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fa:57:c8:9e:6a:75:26:18:1f:db:94:14:2c:
1d:50:4a:fc:48:ae:c9:94:e0:7c:1a:fb:09:4e:84:
bd:ef:17:21:87:10:f1:c1:f3:4f:cf:16:71:05:4f:
a8:11:0f:05:ba:98:40:cf:7c:33:33:24:a1:5e:45:
45:ca:7a:0a:50:69:5f:80:93:05:8c:39:d6:5b:15:
94:53:ae:1a:20:3c:35:8d:a3:b4:ba:5e:0e:83:9a:
f5:b2:a8:b9:63:b9:e3:9a:3f:67:98:ac:57:16:5a:
e7:c1:1d:15:72:a1:ba:cb:42:b9:37:8c:dc:da:60:
45:2f:f4:82:06:d0:b5:ab:64:5c:70:a0:bb:dd:a5:
23:ec:13:3b:dc:00:a1:dc:5e:a8:1a:0f:4e:f1:e7:
cd:b9:c4:4f:84:74:bb:f6:40:e7:3f:83:be:ee:8b:
88:2e:fd:02:9f:87:58:ba:a6:f8:a2:99:5f:07:77:
36:3d:a2:52:e8:a3:7e:c6:a8:c1:bc:e5:12:72:dc:
b4:e1:de:42:d3:bf:91:66:75:9c:e7:87:4e:a6:f7:
25:97:41:00:11:64:37:3e:f7:67:6c:da:17:54:ed:
45:6f:45:ba:98:c7:6e:2e:38:a2:81:af:8e:83:2b:
ae:94:f3:c7:15:31:a3:2d:98:5f:5b:3d:33:46:4e:
43:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B3:78:C4:44:FC:7E:8D:1B:BB:DB:60:3C:2D:42:64:25:EB:76:9D
X509v3 Authority Key Identifier:
keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
78:49:f7:37:70:1a:64:3d:9d:e4:f0:3a:5f:06:04:a8:93:8f:
05:c9:3b:1b:7d:70:eb:cd:0b:a1:b1:ed:08:ba:97:06:20:07:
e5:09:a0:4c:43:ed:61:3a:e3:04:7f:3d:e8:36:9b:d6:ea:3f:
92:a4:5a:96:b6:50:35:69:14:ce:36:3d:b3:89:09:75:37:1d:
90:a0:db:98:0f:b1:70:cc:c0:09:b0:f2:e3:63:a0:27:24:65:
86:5f:3c:45:47:1e:3d:d3:6b:68:2b:e6:8f:06:07:1e:93:18:
61:d7:28:fc:c0:4b:36:e0:29:de:72:e1:df:c3:35:4f:7f:96:
52:00:4c:b1:75:6a:8f:05:1f:fb:e8:5c:82:8d:55:a0:5f:f1:
71:9b:1e:7b:92:af:1f:1d:d7:c7:40:b8:1c:63:77:6a:3b:c5:
ad:fe:e6:15:d7:09:39:0a:3a:22:2b:eb:45:e0:b1:c0:7a:d3:
a5:d2:3a:d9:bd:93:c9:c6:30:64:41:d9:6c:01:66:57:54:7a:
32:75:11:99:97:6b:a7:c3:8d:8a:a8:bb:3e:df:e2:c0:6f:0f:
28:03:f1:1e:a1:d2:f3:dd:b9:98:bd:23:b5:52:6f:3b:03:26:
da:e2:ad:52:28:35:cf:6b:7b:10:4a:da:b5:cc:ee:cc:ff:3a:
d3:d5:1c:ec
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICHHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3
NUU0ODg5MUEwHhcNMjYwNzA4MTYyNDMyWhcNMjYwNzE1MTYyNDMyWjAYMRYwFAYD
VQQDEw02YTRlNzljMC0xNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv/pXyJ5qdSYYH9uUFCwdUEr8SK7JlOB8GvsJToS97xchhxDxwfNPzxZxBU+o
EQ8FuphAz3wzMyShXkVFynoKUGlfgJMFjDnWWxWUU64aIDw1jaO0ul4Og5r1sqi5
Y7njmj9nmKxXFlrnwR0VcqG6y0K5N4zc2mBFL/SCBtC1q2RccKC73aUj7BM73ACh
3F6oGg9O8efNucRPhHS79kDnP4O+7ouILv0Cn4dYuqb4oplfB3c2PaJS6KN+xqjB
vOUScty04d5C07+RZnWc54dOpvcll0EAEWQ3PvdnbNoXVO1Fb0W6mMduLjiiga+O
gyuulPPHFTGjLZhfWz0zRk5DLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNOzeMRE
/H6NG7vbYDwtQmQl63adMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4
NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp
Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt
Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAeEn3N3AaZD2d5PA6XwYEqJOPBck7G31w680LobHtCLqXBiAH5QmgTEPtYTrj
BH896Dab1uo/kqRalrZQNWkUzjY9s4kJdTcdkKDbmA+xcMzACbDy42OgJyRlhl88
RUcePdNraCvmjwYHHpMYYdco/MBLNuAp3nLh38M1T3+WUgBMsXVqjwUf++hcgo1V
oF/xcZsee5KvHx3Xx0C4HGN3ajvFrf7mFdcJOQo6IivrReCxwHrTpdI62b2TycYw
ZEHZbAFmV1R6MnURmZdrp8ONiqi7Pt/iwG8PKAPxHqHS8925mL0jtVJvOwMm2uKt
Uig1z2t7EEratczuzP8609Uc7A==
-----END CERTIFICATE-----
Generated at Thu Jul 9 16:35:58 2026 by rpki-client