
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json)
Hash identifier: LL7mrk/1TXiDP4/FmzFw2FdAOHHjzQmjKFPtB54r7tk=
Subject key identifier: 97:87:E6:5C:40:1B:B4:51:64:72:19:3C:7A:AB:2F:C0:79:38:AA:EB
Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07
Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07
Certificate serial: 01E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
Manifest number: 01C8
Signing time: Fri 03 Jul 2026 04:31:03 +0000
Manifest this update: Fri 03 Jul 2026 04:31:02 +0000
Manifest next update: Fri 10 Jul 2026 04:31:02 +0000
Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: L78OWdQ2ZRQzB/MgDcNGUl7X9H9VbR7zS/Rt+dIivKU=)
2: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: owQYw9h+uccODUhkikEdlCDKK/hYVX6MWumcBf31Hrw=)
3: F4E2989683AC11EF9F80F70FC4F9AE02.roa (hash: 0E4qYTpBck7zqd7XOVsdpYAiDLiP6vH0ev4CSQjnfXI=)
4: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: /8Gd5gZ758sNArtTS8yRpNug05q/Okyd5D7W2BUqcNk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl
rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 04:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481 (0x1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9156334, serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07
Validity
Not Before: Jul 3 04:31:02 2026 GMT
Not After : Jul 10 04:31:02 2026 GMT
Subject: CN=6a473b06-51b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6a:51:cf:9b:0c:42:b4:d4:fc:9b:c9:19:28:
02:2f:83:f9:4a:69:08:2e:98:03:d1:7c:28:1d:1a:
52:ce:6f:95:d8:6c:20:6d:d6:f0:e3:1c:33:c7:56:
3d:c1:3a:e7:95:56:68:b8:21:ad:47:63:60:03:0b:
55:30:85:1b:ca:ef:02:e4:8f:94:cc:52:88:8d:ff:
be:35:58:3d:4a:a7:1a:38:d1:47:04:90:9d:bd:2b:
17:63:25:cb:c3:e7:a4:b5:5a:78:42:e1:31:6e:cb:
e9:b9:13:e9:04:cd:57:33:a2:3f:03:fd:c3:8a:07:
19:14:37:d1:4e:d6:62:63:c7:08:8a:94:66:08:61:
99:df:58:9e:c4:2c:b2:77:6c:9c:7c:39:a8:aa:d3:
d1:35:e4:18:10:70:3a:ed:83:c4:9e:dc:00:f9:11:
63:52:24:2e:65:6c:0c:fe:19:57:77:89:77:30:f6:
59:28:dd:3a:97:da:05:9e:7a:25:08:10:ab:73:e7:
d2:86:b3:5c:b6:13:25:0e:89:f0:f8:dd:ec:b7:07:
6c:cd:53:c0:b9:95:cc:34:6e:b6:45:20:73:0c:08:
72:96:fc:3e:52:c3:1a:a1:7f:7d:65:18:64:9b:da:
46:56:5c:61:9f:b9:ec:f6:5c:e9:0a:42:bb:61:75:
4f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:87:E6:5C:40:1B:B4:51:64:72:19:3C:7A:AB:2F:C0:79:38:AA:EB
X509v3 Authority Key Identifier:
keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
26:df:36:6f:39:67:de:a8:2b:ba:68:c4:60:51:4b:3a:68:de:
13:47:aa:90:8f:0b:92:65:01:af:2d:98:58:ad:31:1a:05:66:
87:8c:08:9e:b3:ff:6b:18:11:9d:34:cc:b1:4a:45:e8:cc:87:
a9:bf:7d:b9:c0:12:82:cd:04:90:ad:18:c3:24:e3:eb:5d:fb:
d0:00:c3:90:3d:67:3d:ab:b7:cb:a4:b3:e5:0c:32:e3:c0:2b:
35:9c:bf:52:31:08:fa:f1:c7:e1:50:44:06:b6:d2:a0:eb:83:
6b:87:e8:4b:83:97:53:23:aa:fd:3f:6c:7b:8f:d2:df:76:2b:
af:70:46:d3:61:b5:ab:c9:6c:57:fe:b7:23:22:a9:70:5b:25:
29:8b:23:d6:af:7f:0b:7f:39:44:51:e9:e5:99:a7:ac:de:f2:
ca:a9:c7:24:cc:a4:1d:b2:5b:81:00:61:c6:f7:bb:43:91:9c:
04:de:e7:f8:73:ad:ea:63:de:8f:5a:d9:1f:12:97:1e:85:7d:
0b:5b:f1:ec:39:49:76:83:39:aa:8e:6e:03:a7:a9:8d:c3:92:
c6:24:01:dc:cb:29:13:05:67:76:dc:03:bc:20:e6:60:82:58:
4c:5b:e3:ab:99:67:a1:0a:fb:f4:48:e4:65:62:28:64:f5:e6:
e3:8e:46:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:45:25 2026 by rpki-client