
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json)
Hash identifier: mOFrpC1sSjLTEp7HjTJqMDFaG1+8BpSFi5kRTz2Z9fk=
Subject key identifier: BF:FB:C1:64:01:10:D4:94:63:71:15:7F:46:96:6D:C5:57:A4:2D:64
Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F
Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F
Certificate serial: 0151
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
Manifest number: 0148
Signing time: Fri 17 Jul 2026 06:25:00 +0000
Manifest this update: Fri 17 Jul 2026 06:24:59 +0000
Manifest next update: Fri 24 Jul 2026 06:24:59 +0000
Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: 8FkcCVZ8cmVafXgE5CHN1g7VwHQMt1dL+ZJ5xhCyqwM=)
2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: XEgsmSONdO5QmyZ+W6pwM4gqDm2Ruw04W/Sgse84F1I=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl
rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337 (0x151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F
Validity
Not Before: Jul 17 06:24:59 2026 GMT
Not After : Jul 24 06:24:59 2026 GMT
Subject: CN=6a59cabb-65d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:47:3f:35:40:5f:e4:e7:83:b3:bd:4c:27:8b:
87:7b:7e:9b:c9:50:13:fa:5d:db:0f:27:a1:d7:ba:
42:7d:a1:6a:cc:8b:da:b8:4c:cc:2d:d9:11:5e:1d:
4c:6c:a7:7a:0c:6b:9c:8d:6d:18:34:0b:5f:09:3b:
2c:aa:e3:a9:06:6b:44:cf:c6:cc:b7:54:ae:93:52:
36:38:be:bf:ee:a4:1e:47:62:9b:cf:31:88:fa:90:
26:b6:98:a7:68:c1:81:15:b6:c1:1d:ca:51:1a:86:
b0:70:b9:d8:88:1d:62:28:1c:ef:63:08:5b:c7:8e:
9e:57:96:ac:42:56:a4:7b:c3:86:70:68:bb:10:63:
3e:92:f8:4a:1e:d5:90:ae:2e:4f:bc:75:cd:c6:6a:
41:9c:ce:d5:77:d9:77:86:f2:da:73:84:e5:ea:73:
af:8f:1a:cf:98:1e:90:af:1d:7d:a7:0d:2a:92:3a:
22:43:ee:16:15:6b:87:13:91:f3:9f:a7:2b:62:33:
1f:4e:d8:ac:42:44:62:21:a7:9b:bf:33:1f:25:5c:
b4:bc:75:35:1b:2e:68:3b:3c:e9:57:ec:a4:8d:c8:
d7:7d:73:f3:f7:eb:8b:8d:18:19:fb:4f:72:39:ac:
dc:96:c9:c7:d0:23:08:53:a3:07:91:f3:6c:99:92:
19:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FB:C1:64:01:10:D4:94:63:71:15:7F:46:96:6D:C5:57:A4:2D:64
X509v3 Authority Key Identifier:
keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
07:1f:32:76:37:ec:72:f4:e9:98:a8:51:48:4a:80:95:1e:60:
bd:a6:f5:5b:a9:9a:d8:e9:76:f9:8d:92:95:2f:df:f6:0a:05:
98:63:a5:c2:ec:b2:ba:c1:88:48:1a:36:86:24:4f:4e:0f:e7:
8d:ea:1a:4f:a0:82:42:69:25:e7:91:ab:18:40:ce:88:09:f8:
df:9b:94:15:bd:0b:c6:3c:90:22:4f:fa:a7:4b:88:00:57:84:
d6:8d:dd:96:d1:cd:c1:ec:28:aa:d8:0d:4c:e0:6d:75:b0:4b:
dc:fc:7c:3a:e6:fa:1c:bc:1a:21:1e:27:02:93:6b:03:56:4c:
3e:cf:0a:68:6d:19:e0:7a:63:53:0b:2d:4e:c5:db:f8:85:81:
20:9e:33:b6:89:fe:18:91:11:70:fa:ce:62:2c:58:1e:f1:cb:
7a:73:2f:71:6b:8e:8e:17:ca:6d:be:1a:87:6c:a7:e8:19:f3:
8d:c2:0e:7b:2b:7b:c7:c2:f3:69:24:68:33:7a:58:f7:76:2f:
4e:8a:4c:9d:4c:be:82:2b:24:81:6c:e8:b2:89:c8:d6:bd:cb:
92:ea:d6:d4:8a:80:8a:2c:da:fc:2c:70:e3:e4:69:d2:66:4e:
0d:0c:7a:34:f9:62:31:f7:27:61:32:af:5e:64:21:26:3d:5b:
00:34:20:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:34 2026 by rpki-client