
$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft
File: DAmet3to0aLfVJLHMbZNVB9VmwI.mft (raw, json)
Hash identifier: 1/WSbmYkKVBX6myLykH2910ABnwlDrK/x3fpF1btMN8=
Subject key identifier: 41:47:94:A9:81:4E:6E:B5:7F:91:71:46:F6:E3:02:13:0C:80:9B:1C
Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02
Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02
Certificate serial: 03E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft
Manifest number: 03D7
Signing time: Fri 17 Jul 2026 01:12:31 +0000
Manifest this update: Fri 17 Jul 2026 01:12:31 +0000
Manifest next update: Fri 24 Jul 2026 01:12:31 +0000
Files and hashes: 1: DAmet3to0aLfVJLHMbZNVB9VmwI.crl (hash: WtgEatnE4tpG8FVJlD6uXmaHe2GFlo5R7ZeNWs4nByg=)
2: 300D92DA802811F19145777464A30FBC.roa (hash: BZrmj19f3nsaseDZZ2rqDYsNZXS/mNgBDpcmxDu49UE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl
rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:12:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 998 (0x3e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91509A4, serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02
Validity
Not Before: Jul 17 01:12:31 2026 GMT
Not After : Jul 24 01:12:31 2026 GMT
Subject: CN=6a59817f-7c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:33:3c:36:a1:63:45:5a:73:c0:e5:45:f4:12:
ac:78:7f:9d:e2:48:2f:39:89:a7:54:93:71:24:6a:
36:44:4b:ec:dd:c3:da:83:69:e6:c0:51:b4:61:42:
48:74:ae:05:7f:80:bd:a7:08:61:40:f6:31:be:82:
35:ea:ca:ea:af:9c:10:41:9b:8e:51:0e:a6:31:70:
30:05:d6:ea:c0:34:09:ac:bf:24:ee:f4:a4:f5:14:
da:d2:1a:15:2d:04:f6:83:75:cc:42:e8:2d:65:1c:
a2:23:6e:68:5e:e6:ab:a0:a5:77:d1:26:b9:02:31:
5d:5a:71:4a:59:00:98:56:0e:1c:97:81:8b:f4:02:
0e:a6:c2:40:64:d7:29:72:41:90:a9:0d:ca:69:17:
43:b8:53:e2:3a:b4:83:83:6c:96:1e:9c:97:64:85:
86:9a:f6:d9:29:61:32:57:52:c9:90:fd:16:b4:24:
6f:ad:bf:41:35:1c:e3:40:05:a6:29:69:14:af:12:
5c:f8:e5:db:5b:73:68:44:ab:07:ff:5e:6c:ac:d6:
b0:0d:e0:db:90:09:51:f1:cb:6f:a5:f8:26:e3:9e:
36:ca:3d:0f:28:0d:56:e5:18:56:d9:87:79:8f:73:
b4:4b:fd:5b:16:5b:a0:9f:d2:50:9e:c1:51:bf:54:
e3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:47:94:A9:81:4E:6E:B5:7F:91:71:46:F6:E3:02:13:0C:80:9B:1C
X509v3 Authority Key Identifier:
keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
16:69:ed:84:74:90:64:d5:c0:1e:98:ce:bc:5d:61:3f:39:ec:
31:f0:7e:1d:6f:31:28:c4:a5:b7:2f:13:60:9c:b4:69:12:f4:
d9:3f:06:c9:85:00:d8:09:eb:c2:57:cc:77:c5:a9:ba:11:e5:
4c:a8:14:71:be:c9:a5:20:e9:1b:4b:22:2f:74:43:ba:94:31:
bd:d4:98:b8:f0:ea:0b:2a:ee:45:9f:b1:4c:11:65:93:68:39:
d0:e8:57:01:e1:36:45:25:04:9b:ea:1d:8b:02:de:e8:c3:da:
21:6a:18:95:61:16:60:2d:08:12:0a:f0:66:74:ce:14:fe:26:
3a:40:20:9b:aa:a4:f6:65:77:55:29:87:b4:04:24:e4:8a:a6:
38:55:6d:ef:93:ae:da:f9:a3:1b:df:ae:fa:13:6f:41:5c:47:
3d:0e:3c:44:3d:55:d1:bc:22:91:2c:79:1a:59:2f:ca:51:c9:
b0:90:71:65:94:0c:a5:07:3a:d8:c8:6a:5f:4a:b4:b1:61:88:
4f:b9:bc:dd:13:43:d5:40:62:33:3f:ce:06:10:6a:99:0f:80:
fe:96:e2:fa:21:cd:46:56:d3:b8:18:4f:15:be:a0:4b:c0:a1:
64:27:80:89:17:27:f5:a2:ae:e5:5e:e9:e6:a5:f1:c0:b4:96:
f2:e0:6f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:55:07 2026 by rpki-client