
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft
File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json)
Hash identifier: GK3QYgYmZPDLdjLebng9138owUl1MtgXTn6v0w4MmE8=
Subject key identifier: 5B:9F:86:CA:2F:E2:CF:93:3C:CF:42:97:9A:3D:E7:ED:2F:4D:28:4F
Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC
Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC
Certificate serial: DB
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft
Manifest number: D7
Signing time: Fri 17 Jul 2026 07:50:22 +0000
Manifest this update: Fri 17 Jul 2026 07:50:22 +0000
Manifest next update: Fri 24 Jul 2026 07:50:22 +0000
Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: s4bm8E3hr63wx4SpOT7NGaRMQP5uUxY9mTNpIOTYm6E=)
2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: j7nDmBZXblO/tpvpaih+MGRhVNByB2VTssko4z3YvKQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl
rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:50:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC
Validity
Not Before: Jul 17 07:50:22 2026 GMT
Not After : Jul 24 07:50:22 2026 GMT
Subject: CN=6a59debe-19a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ed:36:52:c5:6d:f3:87:59:d5:8e:e7:8c:bf:
6a:0e:fc:88:31:70:a6:a0:6a:d2:49:f2:d9:50:04:
69:5a:ce:54:65:a9:e5:30:a8:54:7a:11:66:9b:43:
bf:e9:10:4b:fb:23:77:a0:8e:6d:55:c3:d4:a4:26:
6a:6c:05:a4:7a:66:08:d5:56:48:d5:c8:4e:04:d6:
35:78:4c:97:68:39:fb:cd:1e:a5:20:4e:ce:63:9b:
ff:74:ba:72:99:07:14:df:8d:41:0c:78:64:8f:39:
09:f6:be:2f:00:44:95:d5:38:ad:aa:4e:15:eb:a0:
b0:05:ac:62:44:13:0c:07:d3:54:65:ff:3f:a8:8f:
97:15:35:12:d8:09:bd:4b:d6:73:61:c7:15:b5:0d:
af:f1:55:b2:4a:e7:2f:a9:86:d9:47:4d:53:da:ae:
e8:f1:9a:ce:87:46:1f:01:b9:31:c3:13:04:eb:01:
7d:04:12:09:2a:27:59:bd:73:60:05:54:25:b4:f8:
48:f3:79:7d:15:91:6d:3c:83:0c:0d:29:2f:6a:5b:
c6:5f:97:bd:05:7d:7d:0e:00:c7:34:ff:b3:79:06:
bf:4e:e9:3e:78:cc:ff:23:bb:8d:42:c7:e8:02:eb:
9d:84:6f:4b:3e:61:cb:5b:ee:2b:06:7e:99:f3:e0:
93:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9F:86:CA:2F:E2:CF:93:3C:CF:42:97:9A:3D:E7:ED:2F:4D:28:4F
X509v3 Authority Key Identifier:
keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7f:6e:cd:40:fe:2d:95:73:2e:79:b1:fe:76:27:a3:f8:9d:cc:
6e:05:34:8d:e2:24:03:2e:78:bf:44:ce:cf:35:6f:a7:75:b6:
17:ac:94:9f:4e:68:57:5b:1a:ca:b8:2a:9b:3f:5b:42:c8:74:
32:8e:13:3c:d4:95:b7:42:d6:ea:46:62:69:e0:25:54:e6:06:
e1:62:aa:74:0e:f9:40:b6:50:c4:14:94:27:8d:ed:7c:31:7a:
29:7e:0c:09:73:fc:7c:91:0c:f7:b4:88:70:c7:98:8f:26:d7:
3a:62:f6:ce:21:ce:7f:b0:bf:5b:64:3b:01:04:c0:2c:6c:2b:
03:72:49:8d:e4:fa:3a:da:30:12:bc:ce:ae:2f:cb:ae:f8:fa:
ae:40:38:43:9d:15:04:a5:4d:16:8a:94:40:13:c2:c1:f0:41:
02:69:b3:65:74:02:f1:8c:91:1c:83:d3:5a:79:7a:3f:ed:2b:
54:b2:be:cd:8e:0e:7d:9d:0e:ee:9a:2a:57:2c:e3:14:a7:21:
0e:b7:78:8c:64:41:df:dc:71:6a:b0:1b:15:ab:a8:f9:cc:67:
67:07:ab:a7:20:32:ed:64:34:eb:00:76:57:c8:e9:47:a0:48:
a4:cf:28:8c:00:95:7c:10:78:43:c1:de:46:b5:63:e7:d2:64:
77:a5:14:fc
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTdCNzQxMTAvBgNVBAUTKEUyQ0I5NkYzQjA1QTYzRTlFNTQ3OTY1MjZFQ0NFOTRB
MzU5MUU1RkMwHhcNMjYwNzE3MDc1MDIyWhcNMjYwNzI0MDc1MDIyWjAYMRYwFAYD
VQQDEw02YTU5ZGViZS0xOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6+02UsVt84dZ1Y7njL9qDvyIMXCmoGrSSfLZUARpWs5UZanlMKhUehFmm0O/
6RBL+yN3oI5tVcPUpCZqbAWkemYI1VZI1chOBNY1eEyXaDn7zR6lIE7OY5v/dLpy
mQcU341BDHhkjzkJ9r4vAESV1Titqk4V66CwBaxiRBMMB9NUZf8/qI+XFTUS2Am9
S9ZzYccVtQ2v8VWySucvqYbZR01T2q7o8ZrOh0YfAbkxwxME6wF9BBIJKidZvXNg
BVQltPhI83l9FZFtPIMMDSkvalvGX5e9BX19DgDHNP+zeQa/Tuk+eMz/I7uNQsfo
AuudhG9LPmHLW+4rBn6Z8+CTJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFufhsov
4s+TPM9Cl5o95+0vTShPMB8GA1UdIwQYMBaAFOLLlvOwWmPp5UeWUm7M6Uo1keX8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3NC9BRjY0RTUxMDNC
QUExMUYwOTY0MjgyMUNDNEY5QUUwMi80c3VXODdCYVktbmxSNVpTYnN6cFNqV1I1
ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVmdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
N0I3NC9BRjY0RTUxMDNCQUExMUYwOTY0MjgyMUNDNEY5QUUwMi80c3VXODdCYVkt
bmxSNVpTYnN6cFNqV1I1ZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAf27NQP4tlXMuebH+diej+J3MbgU0jeIkAy54v0TOzzVvp3W2F6yUn05oV1sa
yrgqmz9bQsh0Mo4TPNSVt0LW6kZiaeAlVOYG4WKqdA75QLZQxBSUJ43tfDF6KX4M
CXP8fJEM97SIcMeYjybXOmL2ziHOf7C/W2Q7AQTALGwrA3JJjeT6OtowErzOri/L
rvj6rkA4Q50VBKVNFoqUQBPCwfBBAmmzZXQC8YyRHIPTWnl6P+0rVLK+zY4OfZ0O
7poqVyzjFKchDrd4jGRB39xxarAbFauo+cxnZwerpyAy7WQ06wB2V8jpR6BIpM8o
jACVfBB4Q8HeRrVj59Jkd6UU/A==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:15 2026 by rpki-client