
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json)
Hash identifier: YpfmZP21F0we2hQdzko4kXlCktc2ZkDoUTpcQBYZgdk=
Subject key identifier: 00:9F:DD:2E:BB:ED:6B:C9:36:E3:00:00:B8:2C:17:C0:23:7C:8E:CD
Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D
Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D
Certificate serial: 3553
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
Manifest number: 3550
Signing time: Sat 04 Jul 2026 15:07:43 +0000
Manifest this update: Sat 04 Jul 2026 15:07:43 +0000
Manifest next update: Sat 11 Jul 2026 15:07:43 +0000
Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: qs9k63sPPisFS1yIv7RuLMIkmYjGq6pN4NRz3w3HPto=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl
rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 15:07:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13651 (0x3553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D
Validity
Not Before: Jul 4 15:07:43 2026 GMT
Not After : Jul 11 15:07:43 2026 GMT
Subject: CN=6a4921bf-3e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e8:cc:d7:91:5a:8d:7b:df:be:2c:5c:b9:fd:
e5:54:71:18:14:ed:19:85:5a:fc:2b:4e:b9:12:19:
ba:f6:2e:b0:f3:0c:84:51:c3:e7:e8:27:c7:08:de:
d9:d7:bb:48:a5:d5:6e:9e:37:d9:dc:ea:a8:5f:8e:
8c:8c:6f:84:f1:28:0c:bb:04:7e:09:00:d6:b7:38:
ef:e8:b4:a1:23:dd:5a:55:e6:1d:f7:69:80:a4:f8:
dc:91:dc:39:99:04:d4:d3:05:da:8c:d6:28:a0:42:
c4:fb:84:c2:52:ec:06:fd:60:6f:94:92:ba:0b:2b:
e3:0c:d4:e7:f1:a0:dd:96:4a:b5:a1:bd:bf:de:3f:
65:42:15:98:d6:da:3f:0e:a1:36:be:42:74:fe:c4:
2c:74:d3:bf:56:7c:fc:12:aa:98:10:1a:d9:28:90:
6f:de:df:7e:1a:e6:1a:bf:9b:6f:ac:22:bf:d8:6f:
99:69:e0:58:91:d6:e4:ea:cb:6d:07:07:62:af:13:
5e:ec:73:f3:69:07:30:65:30:1f:7e:fa:6c:c3:3b:
4d:dd:ee:5a:fa:ee:0f:90:eb:ac:ef:0c:05:dc:06:
d7:cd:d8:ca:6f:ec:11:8c:30:01:6a:26:ee:e3:c9:
7a:af:23:de:96:c9:9d:2c:28:44:2e:f3:15:95:91:
f1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9F:DD:2E:BB:ED:6B:C9:36:E3:00:00:B8:2C:17:C0:23:7C:8E:CD
X509v3 Authority Key Identifier:
keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c1:62:08:22:b3:2b:4c:a5:ca:10:07:ed:f5:75:23:c9:ee:c6:
48:08:65:24:de:79:ce:76:7c:f8:40:d5:01:20:85:9d:13:19:
8f:9d:18:67:7b:18:b9:41:c8:2f:f9:1c:46:60:7f:8a:4b:72:
e9:97:da:55:9f:28:db:44:32:55:f3:a5:51:5c:ba:a5:96:b2:
e8:c1:b2:48:8e:50:4d:39:f6:1f:26:e7:55:ff:8e:3c:43:f3:
bc:80:2a:a0:58:ba:c3:e7:88:1c:ef:f8:21:09:94:d5:17:08:
3e:f8:a9:52:87:e6:a3:d7:ae:da:ca:c2:10:7b:41:58:25:f1:
2b:b3:30:a3:19:4d:e3:3d:71:92:8b:ce:25:e9:4b:ec:08:e7:
5b:d3:c0:47:e4:bb:21:ee:1a:c2:0c:d6:68:b4:d3:a8:3b:7e:
0c:bd:c7:b4:b5:55:d4:20:10:5d:10:ec:2a:b4:08:a4:ec:aa:
92:ce:fc:98:86:9e:0f:36:04:ec:a6:77:f2:c5:77:56:22:bf:
42:eb:28:53:b7:f1:f8:bd:71:9d:4e:0c:84:3b:a8:b3:b5:42:
04:42:2c:6a:51:4b:a5:3b:9e:59:c5:3b:ab:0f:41:05:ef:f3:
66:22:46:9f:4f:a4:23:67:b9:fa:d1:09:88:e7:3a:4c:ff:0a:
4b:e3:44:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:54 2026 by rpki-client