
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft
File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json)
Hash identifier: AQrV6Vu9Nwpv/H+50yFVBVZVB9JnQlC2Tu483Y04fc8=
Subject key identifier: 67:80:3D:48:73:A6:34:E3:E4:8E:6C:C6:DF:29:49:65:C0:F1:77:02
Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6
Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6
Certificate serial: 012B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft
Manifest number: 0120
Signing time: Fri 17 Jul 2026 07:07:26 +0000
Manifest this update: Fri 17 Jul 2026 07:07:25 +0000
Manifest next update: Fri 24 Jul 2026 07:07:25 +0000
Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: +oRDlMxjVQPbp4xtC/OaOl/lAtsPJ/00P7MmHyeGbP8=)
2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: +tOM25MCKNoZft+0ItL3rfD0x3Jm3+5ljYXYPQKuHQA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl
rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299 (0x12b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6
Validity
Not Before: Jul 17 07:07:25 2026 GMT
Not After : Jul 24 07:07:25 2026 GMT
Subject: CN=6a59d4ae-3d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ac:a7:c9:80:c7:19:aa:1a:b8:f3:5a:41:2b:
1d:94:a3:21:23:4a:89:63:64:70:16:00:6f:07:de:
64:08:7a:7f:87:2c:89:df:42:98:9e:65:f7:5b:8a:
dd:a3:1b:68:de:b6:c5:8b:64:ca:fc:a2:ed:91:50:
4c:6a:06:f6:e4:2b:4c:e8:f7:03:93:1e:74:2a:6d:
37:24:ff:5c:b7:04:e2:14:42:2d:f8:88:3c:91:ad:
8f:6b:5c:61:8b:06:3d:45:90:b4:29:57:31:8a:c5:
98:55:a3:e5:88:3c:7d:13:f7:3a:14:71:88:c5:75:
ae:a5:d6:3c:92:87:4a:b8:b0:19:7f:58:3b:a5:b8:
4c:66:36:5c:7d:08:bc:29:19:cb:db:73:dd:24:d9:
e1:ac:48:a6:1a:84:e9:cd:fa:5f:0a:b6:99:03:11:
29:d7:74:de:8e:0c:fa:06:25:96:45:56:11:4e:32:
16:b9:44:7e:9c:99:03:a4:29:8a:27:71:45:ba:be:
44:0f:2b:9b:61:4b:e3:9c:c1:f9:2a:c1:f6:4f:9f:
c3:a2:11:5d:79:8f:4e:97:ad:43:a5:15:f4:87:1c:
c3:99:d2:01:26:de:60:7e:90:0f:8e:26:44:48:bf:
5a:e5:b8:cb:fb:43:a2:02:20:cb:94:db:9c:c0:6b:
77:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:80:3D:48:73:A6:34:E3:E4:8E:6C:C6:DF:29:49:65:C0:F1:77:02
X509v3 Authority Key Identifier:
keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
35:0a:c1:d4:45:84:2c:da:a7:ce:63:49:0a:4e:88:28:39:b9:
52:1f:bb:c1:3c:10:94:42:a8:9f:0b:72:6e:63:46:ff:e8:98:
c6:10:56:27:26:39:f1:c6:95:db:6d:b8:af:aa:43:00:fb:55:
fe:0e:ac:fd:52:06:58:d5:45:ab:9f:0c:53:02:04:b3:0f:22:
7f:d0:c7:d6:d7:5e:3f:a9:d2:67:34:ff:68:2f:86:82:a7:72:
e4:76:ec:fa:dd:3e:f4:d3:dd:5a:4e:99:a6:4a:9f:65:ac:d2:
d9:b7:fe:37:65:0a:e9:a6:f3:9c:4d:fe:fd:3d:e5:0f:cf:85:
e5:e3:65:b7:6c:26:c2:f3:e2:b3:75:0a:f3:7a:46:0f:86:e5:
bb:d1:84:d0:2e:07:35:90:f3:0d:b3:5b:15:09:11:ca:af:47:
c0:10:96:99:26:25:72:52:64:aa:db:3c:4f:84:40:44:ba:1f:
1a:44:a7:3e:e0:31:63:c7:f0:66:ad:96:83:e9:1e:79:01:25:
44:d5:83:4e:26:e0:2d:39:b2:ee:5c:10:cc:50:1a:bc:cb:5b:
bd:46:83:af:0c:33:50:55:4b:ca:c6:93:bd:d1:d1:0d:99:6f:
90:24:7a:ab:0a:67:71:07:dc:1d:a4:bc:99:90:e0:1e:9f:d2:
7a:fa:71:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:16 2026 by rpki-client