
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft
File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json)
Hash identifier: GJYqUya108+DDXxCQvChDZlxdCSptfmuDdlsSbhJlgc=
Subject key identifier: 79:0F:68:62:36:22:53:B7:88:AD:6E:81:8F:FD:13:D7:B6:D0:1B:AA
Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51
Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51
Certificate serial: 0349
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft
Manifest number: 0343
Signing time: Fri 17 Jul 2026 01:40:55 +0000
Manifest this update: Fri 17 Jul 2026 01:40:55 +0000
Manifest next update: Fri 24 Jul 2026 01:40:55 +0000
Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: GsdNVrrUhSvDenyAWu5HBGPK4K8yCrKfBPyjZnWP4V4=)
2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: 4mLtegRFgk9fbTWJTkH5s5qPTSUzFVGI3R7GNiZDMVU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl
rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:40:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 841 (0x349)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51
Validity
Not Before: Jul 17 01:40:55 2026 GMT
Not After : Jul 24 01:40:55 2026 GMT
Subject: CN=6a598827-a466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f4:05:a0:63:fb:60:3c:71:d4:cc:0f:5b:ed:
ca:70:1d:53:a6:67:a4:06:e4:37:a0:9f:48:a0:1d:
1e:b9:d7:9c:12:d3:ab:ea:24:5d:cf:b7:79:c9:5d:
5f:83:08:da:a4:bb:d6:f9:d3:13:c1:48:f1:26:ff:
5b:1b:3a:15:7e:75:c7:27:d5:00:37:dd:08:95:44:
db:01:79:df:96:1e:20:ed:c0:68:39:47:6d:1f:db:
37:f5:a6:b3:97:c5:79:85:a8:cf:6b:f5:b1:4b:d6:
34:94:ca:7e:e8:aa:12:46:0b:3d:f4:72:3b:b0:b2:
65:36:76:6c:f4:88:a1:fa:41:3b:9f:1a:f1:be:f5:
4c:3c:e3:01:96:ae:50:95:a5:a6:f4:62:33:67:a4:
44:6a:e9:b6:3a:02:64:cb:b2:c7:f2:8e:93:d8:00:
4a:0c:87:dc:30:f2:cc:e8:c4:7e:08:32:c5:e1:56:
76:4e:e6:23:6c:fb:58:df:89:87:ca:c2:3e:96:7d:
51:95:85:02:2f:cb:01:f2:a6:25:ce:0a:52:a6:01:
b0:52:34:b5:c1:a1:0f:a5:4b:a3:b3:ac:6e:62:94:
b0:65:6e:b5:45:aa:68:5c:2c:52:3d:6a:f7:f5:ed:
c4:5a:a0:b0:8f:37:bc:23:e0:a7:26:e5:d0:9a:89:
e8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0F:68:62:36:22:53:B7:88:AD:6E:81:8F:FD:13:D7:B6:D0:1B:AA
X509v3 Authority Key Identifier:
keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:4f:e6:b4:e7:91:dd:37:5f:b3:c4:4d:e3:30:18:4c:7c:42:
4d:19:ce:34:85:60:b2:dd:7c:06:55:8e:02:0c:87:88:41:ca:
03:30:59:e8:8c:14:23:8b:69:73:4b:81:fb:ff:b9:aa:dc:71:
fe:6b:b8:f7:81:dc:b8:de:5a:46:18:e1:5c:e2:66:5e:d0:99:
58:ca:ff:2f:09:42:b0:21:02:90:70:fb:6c:23:f0:09:2d:9f:
5b:33:0d:7d:13:d8:d1:49:8d:44:53:7a:48:5d:cf:ce:cc:15:
5f:31:8b:48:55:2f:61:ba:f3:01:ad:37:04:7e:9d:8c:56:cf:
4f:9e:01:bb:32:3c:db:3f:d4:b6:a1:81:32:4c:d8:1b:a3:d9:
13:9d:fd:0d:e0:89:6c:ef:74:41:1b:76:54:9e:20:2f:39:a5:
ac:ab:bd:4a:04:7b:75:4d:e3:4d:7a:c4:25:31:d9:21:52:ca:
cd:8b:5e:5b:41:03:94:ec:20:ea:d6:43:8f:7d:49:d9:32:e1:
15:36:7f:25:e0:44:9e:2e:49:e2:c4:59:76:fc:a7:2f:9b:c4:
09:a4:a2:0f:3f:26:95:fd:7c:3a:20:dd:63:a8:3b:c1:e6:0a:
42:ef:88:94:3e:48:dc:47:b8:81:3f:25:ec:72:cd:eb:71:70:
81:83:43:90
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICA0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2
M0U5QzRFNTEwHhcNMjYwNzE3MDE0MDU1WhcNMjYwNzI0MDE0MDU1WjAYMRYwFAYD
VQQDEw02YTU5ODgyNy1hNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxfQFoGP7YDxx1MwPW+3KcB1TpmekBuQ3oJ9IoB0eudecEtOr6iRdz7d5yV1f
gwjapLvW+dMTwUjxJv9bGzoVfnXHJ9UAN90IlUTbAXnflh4g7cBoOUdtH9s39aaz
l8V5hajPa/WxS9Y0lMp+6KoSRgs99HI7sLJlNnZs9Iih+kE7nxrxvvVMPOMBlq5Q
laWm9GIzZ6REaum2OgJky7LH8o6T2ABKDIfcMPLM6MR+CDLF4VZ2TuYjbPtY34mH
ysI+ln1RlYUCL8sB8qYlzgpSpgGwUjS1waEPpUujs6xuYpSwZW61RapoXCxSPWr3
9e3EWqCwjze8I+CnJuXQmonoTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHkPaGI2
IlO3iK1ugY/9E9e20BuqMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw
RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU
bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS
NkNxazR0Y2hjOHBqNmNUbEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAaU/mtOeR3Tdfs8RN4zAYTHxCTRnONIVgst18BlWOAgyHiEHKAzBZ6IwUI4tp
c0uB+/+5qtxx/mu494HcuN5aRhjhXOJmXtCZWMr/LwlCsCECkHD7bCPwCS2fWzMN
fRPY0UmNRFN6SF3PzswVXzGLSFUvYbrzAa03BH6djFbPT54BuzI82z/UtqGBMkzY
G6PZE539DeCJbO90QRt2VJ4gLzmlrKu9SgR7dU3jTXrEJTHZIVLKzYteW0EDlOwg
6tZDj31J2TLhFTZ/JeBEni5J4sRZdvynL5vECaSiDz8mlf18OiDdY6g7weYKQu+I
lD5I3Ee4gT8l7HLN63FwgYNDkA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:21 2026 by rpki-client