
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json)
Hash identifier: d8FmOMPqX8v4G3bNLhDEdIT9d+7ueTEp2fWf0UYeE2s=
Subject key identifier: FF:7B:3F:75:8B:1A:7C:38:6C:C3:B5:2F:BF:EF:79:D5:96:2A:7B:6D
Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F
Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F
Certificate serial: 0104
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
Manifest number: F1
Signing time: Thu 09 Jul 2026 08:28:27 +0000
Manifest this update: Thu 09 Jul 2026 08:28:27 +0000
Manifest next update: Thu 16 Jul 2026 08:28:27 +0000
Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: 5P9UBeMccHY0vk0c6taZ81uYaWKoRlYEJryZ5J4vSuc=)
2: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: gciNcDUVUCgw2qH2N78KovAnzOQWySARLNLA0rYt0Qc=)
3: 57AE76BA76D711F19DF4999C7BA30FBC.roa (hash: 6wRayQcINiwIUCo58JgrG1mNFg6i7e/wwz7+kqUH+lc=)
4: 4693C4A276D711F19E795C9A7BA30FBC.roa (hash: PfN9tequr7/Zu4xPf/Z2ZvqOuMMu0qCRpIUVkg6sAek=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl
rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 08:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260 (0x104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F
Validity
Not Before: Jul 9 08:28:27 2026 GMT
Not After : Jul 16 08:28:27 2026 GMT
Subject: CN=6a4f5bab-157a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:21:10:49:37:3a:f4:35:7f:68:ba:f4:ec:9e:
43:74:16:86:d8:11:10:51:fd:9e:72:51:0a:4f:4e:
ba:5c:6c:1c:d5:49:e5:dc:c1:dd:5a:40:f1:ad:ea:
61:23:ad:74:cd:50:64:38:62:dc:46:51:12:85:a3:
77:3a:7e:13:3f:af:31:e7:2a:81:15:96:ef:51:d5:
55:f5:eb:23:dd:5a:86:60:8f:ca:6c:f1:ff:9d:0b:
f1:b3:2c:b4:b8:a8:44:5c:ec:a0:9d:97:61:da:13:
2c:a1:dc:65:2b:17:d4:2c:0a:b9:9a:e9:01:83:48:
23:36:22:bc:e8:cb:5c:16:33:e2:1d:55:c4:3d:b0:
68:63:5c:48:b1:dd:b6:a3:a9:61:6e:8b:e3:a9:3a:
3c:e7:49:60:f6:f1:c7:c4:e4:5a:1a:90:36:14:12:
cd:73:b0:dd:5f:f8:8f:8e:02:a8:c4:3c:13:94:da:
25:00:ff:f3:6e:0d:a4:ba:3c:49:bb:98:60:98:cf:
b2:7b:42:cc:d1:ca:15:81:d9:82:95:64:0f:27:72:
73:a7:ba:00:57:44:61:40:ee:db:cb:c6:23:97:ee:
95:b4:3a:b5:04:2b:f3:c8:49:53:38:79:80:7f:3b:
5a:aa:ec:5b:03:4d:80:7c:7d:ad:c6:66:98:a4:64:
42:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:7B:3F:75:8B:1A:7C:38:6C:C3:B5:2F:BF:EF:79:D5:96:2A:7B:6D
X509v3 Authority Key Identifier:
keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8e:00:dd:a5:f4:b9:33:c7:d7:20:74:17:50:c5:42:81:3c:57:
8a:2e:6e:7e:4f:dd:ca:0d:5f:dd:97:4e:6d:99:07:d7:87:75:
8b:e2:4f:46:44:f4:ba:10:c7:d3:98:c9:b5:a5:bb:c5:ff:fc:
00:a1:63:cb:7d:d9:d8:de:98:d7:2c:c9:42:74:b8:b5:d5:58:
c8:0a:8f:73:60:e9:93:73:45:0c:4f:05:0a:43:2f:bf:b9:1d:
e7:72:b1:9a:27:50:c1:9b:7d:d3:0a:93:49:1c:29:86:b1:c4:
11:01:b8:6d:aa:4e:d7:04:66:21:c6:ac:93:d6:af:9d:fe:f5:
71:43:4c:78:13:bb:01:59:9e:3a:e8:e0:7c:d0:82:c7:c5:55:
a1:c2:a7:9f:3f:00:c6:46:72:40:3f:59:9c:11:93:81:5e:f1:
be:16:39:cc:4b:fc:ad:13:9a:03:a5:37:aa:44:2b:64:93:75:
8d:c0:a3:86:bd:12:24:f4:89:15:39:9f:3d:c1:8c:39:a3:85:
2c:3e:ec:4f:7a:79:b8:60:2a:9c:d4:89:98:18:c2:2b:99:3e:
11:df:37:e1:ca:9c:79:eb:fc:1f:76:32:61:63:c1:9a:16:fd:
f4:e2:1b:2e:2e:46:cf:31:e6:b9:ed:a7:7b:f8:5c:fe:48:ce:
a0:c6:d1:35
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3
MjFEODA3NUYwHhcNMjYwNzA5MDgyODI3WhcNMjYwNzE2MDgyODI3WjAYMRYwFAYD
VQQDEw02YTRmNWJhYi0xNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6SEQSTc69DV/aLr07J5DdBaG2BEQUf2eclEKT066XGwc1Unl3MHdWkDxreph
I610zVBkOGLcRlEShaN3On4TP68x5yqBFZbvUdVV9esj3VqGYI/KbPH/nQvxsyy0
uKhEXOygnZdh2hMsodxlKxfULAq5mukBg0gjNiK86MtcFjPiHVXEPbBoY1xIsd22
o6lhbovjqTo850lg9vHHxORaGpA2FBLNc7DdX/iPjgKoxDwTlNolAP/zbg2kujxJ
u5hgmM+ye0LM0coVgdmClWQPJ3Jzp7oAV0RhQO7by8Yjl+6VtDq1BCvzyElTOHmA
fztaquxbA02AfH2txmaYpGRC/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP97P3WL
Gnw4bMO1L7/vedWWKnttMB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1
RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC
MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW
U1dYdl83eG1TOTF5SFlCMTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAjgDdpfS5M8fXIHQXUMVCgTxXii5ufk/dyg1f3ZdObZkH14d1i+JPRkT0uhDH
05jJtaW7xf/8AKFjy33Z2N6Y1yzJQnS4tdVYyAqPc2Dpk3NFDE8FCkMvv7kd53Kx
midQwZt90wqTSRwphrHEEQG4bapO1wRmIcask9avnf71cUNMeBO7AVmeOujgfNCC
x8VVocKnnz8AxkZyQD9ZnBGTgV7xvhY5zEv8rROaA6U3qkQrZJN1jcCjhr0SJPSJ
FTmfPcGMOaOFLD7sT3p5uGAqnNSJmBjCK5k+Ed834cqceev8H3YyYWPBmhb99OIb
Li5GzzHmue2ne/hc/kjOoMbRNQ==
-----END CERTIFICATE-----
Generated at Fri Jul 10 20:34:42 2026 by rpki-client