
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft
File: v4hgssA3e7Xv7b461A8c8YnyrLI.mft (raw, json)
Hash identifier: ow+HicJ6tqM6MUqJcg8BLgB2uo1zPcpjGnqTh3f3xWo=
Subject key identifier: 61:CC:70:3F:0A:E3:02:E8:91:01:CD:C1:AA:FC:5D:2F:B0:61:BB:B3
Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2
Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2
Certificate serial: DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft
Manifest number: DA
Signing time: Fri 17 Jul 2026 07:50:20 +0000
Manifest this update: Fri 17 Jul 2026 07:50:19 +0000
Manifest next update: Fri 24 Jul 2026 07:50:19 +0000
Files and hashes: 1: v4hgssA3e7Xv7b461A8c8YnyrLI.crl (hash: hP4s7dd9A+kufNL2iqwGDz1agGkIJSkelJPNUvuInJ0=)
2: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (hash: Z9wsNscGW8jTuOrPcKnc3KiOXLu3fKLaOWy4uh1nNqc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl
rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:50:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222 (0xde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2
Validity
Not Before: Jul 17 07:50:19 2026 GMT
Not After : Jul 24 07:50:19 2026 GMT
Subject: CN=6a59debb-f2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:6d:cf:d0:f1:c3:4f:cb:4a:35:7e:3e:4e:
f8:12:67:69:0b:aa:43:b4:53:91:56:bf:ff:d7:76:
5f:57:be:29:83:ab:b2:0d:b3:4c:45:be:b9:de:30:
7c:8a:ab:75:9e:2d:81:a0:50:0c:50:5b:cb:5f:e1:
71:01:35:ea:7d:0f:a2:08:54:3d:55:51:60:fc:2e:
0a:e7:08:d1:5e:64:49:7d:f9:33:e8:e8:3e:48:0f:
9c:0e:dd:14:1e:f9:b7:56:d9:89:20:83:e1:4f:1d:
27:72:e0:a9:2d:e1:a4:40:e5:be:53:1b:c2:e2:47:
09:7c:06:9d:47:54:16:80:ec:aa:bc:c5:07:e7:1f:
0e:46:d6:85:c8:c2:bb:52:ad:f3:14:45:d4:2c:c3:
ea:08:3a:67:a7:36:0f:14:a3:42:b5:ee:94:b6:ae:
11:2b:8f:58:c9:66:8b:79:75:93:09:48:00:f7:3e:
ae:5a:d5:73:83:3c:e2:bd:67:c3:80:05:89:e3:16:
b1:ab:b4:38:79:32:ec:46:44:e9:f8:1a:ce:bd:af:
af:ea:86:37:19:85:4a:e9:7b:a0:3c:9d:43:e6:5a:
cf:38:be:3d:2b:f4:0a:cb:bd:52:40:04:54:00:cd:
30:fe:a4:4f:9f:3f:03:b7:e2:86:e9:f3:32:5c:71:
85:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:CC:70:3F:0A:E3:02:E8:91:01:CD:C1:AA:FC:5D:2F:B0:61:BB:B3
X509v3 Authority Key Identifier:
keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e6:08:29:36:ad:23:ec:02:0a:e5:09:34:93:1f:37:94:22:
e6:df:46:8d:41:8b:51:e5:9b:6d:c4:c0:57:a5:aa:03:20:b9:
c7:a0:c4:5a:c5:58:c1:0f:55:db:74:97:39:58:c7:46:f5:f4:
a7:2a:f8:2c:6c:af:7e:f6:2c:e8:cd:91:94:2d:e0:75:d0:13:
67:76:1d:e8:6c:61:46:d4:08:ca:d7:7c:af:79:36:8a:eb:b9:
31:0f:8d:40:55:4a:4a:d5:48:9a:6b:6e:2b:d6:8f:a5:de:1b:
97:14:7c:61:80:e6:c0:d1:d5:21:16:f7:af:db:3d:c7:77:8c:
99:db:c5:8b:0d:cb:15:62:b8:3e:15:20:05:56:99:66:37:2e:
35:e3:de:62:b3:45:0b:1b:4a:9a:ad:29:69:34:3c:8b:aa:05:
b3:c6:8d:7a:1f:6a:6b:19:10:83:cd:81:e2:1f:c0:42:a8:2c:
9a:00:8e:82:1b:6c:22:76:9b:e8:c8:89:cd:44:f6:ff:5b:4e:
b3:5d:6a:61:d2:47:8f:33:23:fa:87:7b:92:7f:02:ef:d7:a7:
51:49:83:40:22:47:2d:82:27:78:ef:44:37:41:9f:38:50:40:
6c:cc:db:6c:d1:82:38:82:c5:67:e3:8f:42:0a:f0:04:77:69:
e3:63:8b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:43 2026 by rpki-client